Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/nVU5SfbN08RhzSwaXCSZo62vZhs.roa
File: nVU5SfbN08RhzSwaXCSZo62vZhs.roa (raw, json)
Hash identifier: fzAZEyWG7rQWhnZzReA0GnB9zUSWwfT4/8d030x/JDU=
Subject key identifier: 9D:55:39:49:F6:CD:D3:C4:61:CD:2C:1A:5C:24:99:A3:AD:AF:66:1B
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nVU5SfbN08RhzSwaXCSZo62vZhs.roa
Signing time: Thu 15 Sep 2022 02:49:49 +0000
ROA not before: Thu 15 Sep 2022 02:49:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.64.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D553949F6CDD3C461CD2C1A5C2499A3ADAF661B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c6:0f:4c:6e:30:09:a7:02:dd:be:f6:e3:88:
c8:c8:0b:92:6b:6f:12:b0:c5:d8:c5:ce:d1:59:52:
a2:c2:62:6d:b0:fe:b0:26:01:6e:f6:f0:89:da:84:
e0:45:4f:5b:d4:0d:59:96:d4:48:f9:55:0b:e8:35:
59:80:23:8a:90:14:a4:46:32:6e:aa:9c:d8:a6:2e:
49:5a:f3:b4:4d:e9:08:37:15:63:a8:53:06:7b:b0:
0e:db:b2:98:4a:11:44:3a:6f:91:61:c2:5b:57:8e:
56:d3:e2:aa:17:db:a6:a6:e3:dd:30:bb:4a:87:f7:
c1:7c:32:b0:49:df:00:1f:e6:81:01:2c:8c:57:32:
62:8b:b8:8b:0d:9f:c8:c8:83:74:f6:58:03:44:0d:
b1:f8:87:3d:f7:57:82:94:cf:cc:05:04:b3:dd:62:
77:e5:a0:ae:9e:d8:a8:85:e0:44:87:02:d4:45:da:
57:81:e0:4f:a4:a7:32:3b:c2:f9:4d:a5:ac:05:50:
09:4c:9e:15:a8:0e:cd:e1:aa:9e:d9:1b:95:ee:f4:
0b:58:a1:c5:a7:13:a9:63:59:7e:13:60:8d:97:05:
14:70:de:80:fb:31:99:70:92:ea:82:10:cd:11:b9:
de:79:47:9a:5a:b8:a6:25:83:3d:51:ff:01:a6:72:
a6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:55:39:49:F6:CD:D3:C4:61:CD:2C:1A:5C:24:99:A3:AD:AF:66:1B
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nVU5SfbN08RhzSwaXCSZo62vZhs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.64.0/22
Signature Algorithm: sha256WithRSAEncryption
68:2c:f0:63:90:9a:93:b7:8c:ab:13:30:eb:e6:19:17:4b:dc:
85:4c:3c:c6:75:a1:23:58:72:e7:9e:f6:61:eb:b0:55:45:e3:
c4:c4:b1:51:dd:ed:61:08:71:31:a3:91:b6:74:0d:4f:02:88:
71:6c:df:63:f4:7e:2b:cb:49:fb:c4:fa:76:c4:76:73:38:0f:
df:6f:06:f8:c4:3e:cb:f1:f4:ce:6e:59:39:a9:38:59:49:c0:
e3:2c:5f:ca:e0:9f:1e:a7:05:2a:88:f5:e1:dc:fe:58:16:6f:
3f:28:4d:f8:db:f8:38:28:cd:14:8d:a2:50:f4:93:a7:b7:db:
ac:92:c7:9d:81:2d:4b:d0:cb:f1:1d:f7:6a:fb:eb:92:86:9d:
88:10:e4:eb:45:1a:74:97:cb:9a:53:2b:6a:5e:ff:4d:16:72:
22:a3:5c:bd:57:f8:6b:a6:88:2c:23:5a:9e:7f:0a:50:0a:74:
9b:a0:29:8f:1d:c0:8c:cf:d6:5d:b8:bc:3c:1f:c5:cc:a1:c8:
9b:55:7b:e6:01:3d:1b:60:a6:64:19:22:bf:06:f0:30:3d:a4:
35:d8:d6:75:78:4b:52:09:e0:5a:a6:41:c3:c0:c3:b3:cf:2f:
38:7b:0c:84:80:64:b0:b8:0e:d7:0b:e5:34:4b:0d:e6:b7:93:
9c:81:fb:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org