Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jkeVFc2kfXDuSa2CnvPHnddQZYw.roa
File: jkeVFc2kfXDuSa2CnvPHnddQZYw.roa (raw, json)
Hash identifier: mi3HWgQQ3zuOcbdtj/2H1WTYUlB+qcsHIhWlbLTlzU0=
Subject key identifier: 8E:47:95:15:CD:A4:7D:70:EE:49:AD:82:9E:F3:C7:9D:D7:50:65:8C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jkeVFc2kfXDuSa2CnvPHnddQZYw.roa
Signing time: Thu 15 Sep 2022 02:49:46 +0000
ROA not before: Thu 15 Sep 2022 02:49:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 61.61.80.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8E479515CDA47D70EE49AD829EF3C79DD750658C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:3e:06:97:d5:67:4d:69:cc:0a:16:d7:d3:
d9:fb:52:e1:d5:9b:88:43:96:24:f1:a8:6e:12:85:
b7:d8:51:b6:ab:6a:f9:79:95:78:21:1f:14:9d:e4:
f8:35:ac:ba:be:d9:01:4e:f3:91:8c:0b:ab:4e:2f:
05:17:93:c8:4c:24:76:32:e6:fe:dc:99:56:ad:3e:
dc:66:0f:23:98:4c:cc:ba:83:64:c6:d0:e6:3f:86:
a0:4d:91:59:78:50:ff:c0:e5:02:11:1a:0c:4a:c3:
45:f4:af:a4:ed:3a:18:9e:cf:81:03:17:aa:1e:da:
05:58:c8:3b:5e:10:dd:f3:32:98:ee:ca:14:cf:ce:
4a:c3:5b:ab:59:fc:08:30:aa:b2:fa:fd:69:51:a9:
d4:3d:30:5f:c5:c6:96:bd:14:c5:0f:59:e2:88:e5:
50:54:25:45:bf:da:79:e6:68:2e:96:9a:95:8a:fd:
d8:2b:52:69:f4:8e:c0:0e:44:3d:66:0d:a3:21:84:
25:9b:8b:dc:50:cf:62:5c:08:73:ce:e9:3c:8e:6b:
13:4f:3c:90:ef:92:83:d8:28:f4:af:af:16:70:40:
87:81:ee:15:29:71:91:40:a0:bc:8d:76:b4:bf:1f:
de:e5:6a:1a:d0:e0:9b:83:c7:d8:fb:37:00:31:ea:
ea:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:47:95:15:CD:A4:7D:70:EE:49:AD:82:9E:F3:C7:9D:D7:50:65:8C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jkeVFc2kfXDuSa2CnvPHnddQZYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.80.0/20
Signature Algorithm: sha256WithRSAEncryption
45:b7:af:0e:f3:73:52:6d:4e:8c:14:b3:86:ee:b0:df:69:09:
f3:e7:bc:cd:0a:33:6b:dc:ff:a0:92:46:6a:67:b7:71:44:3f:
7a:f1:b3:d9:fb:8f:c4:1e:92:47:2c:58:86:0c:e2:48:38:6a:
53:fe:5b:54:2b:57:1a:ea:e8:82:d6:5b:d2:89:02:f9:17:3a:
49:06:c0:bb:84:79:83:f2:63:b4:20:34:1f:02:db:f7:0d:8c:
6e:4f:dc:10:60:36:48:b7:9d:da:91:20:ca:9e:f6:f9:7a:21:
27:bc:f0:9b:6f:ca:65:25:a6:ae:18:ef:01:0b:a0:eb:c1:f6:
0d:73:1b:65:5f:70:24:b3:20:30:67:85:9d:cc:a9:6d:91:aa:
bb:e5:d3:27:16:7b:50:68:ff:40:a7:f1:46:f8:fc:e3:10:cf:
c6:47:d7:7b:6d:0a:22:ba:25:8a:ed:c9:a2:bb:6f:c7:10:5f:
3b:53:89:50:ff:06:fc:b7:48:c4:d5:f0:15:ba:ad:23:cc:bf:
ab:50:7c:e8:01:3a:fb:a3:98:25:e7:50:cd:09:d3:05:aa:d8:
c9:19:e6:8c:93:ed:f6:ea:30:5a:cb:fd:f5:55:de:d8:ab:94:
68:a4:de:f9:d9:92:bb:54:aa:c2:2e:45:b7:0f:20:a5:ea:20:
69:d3:90:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org