Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/wYrYBK2U9hFPOX0bXTTh7oGwnfE.roa
File: wYrYBK2U9hFPOX0bXTTh7oGwnfE.roa (raw, json)
Hash identifier: dGyWiilQoIOhBbIrXfhljNKX4Ldn7tSOJzyOLwvBSKM=
Subject key identifier: C1:8A:D8:04:AD:94:F6:11:4F:39:7D:1B:5D:34:E1:EE:81:B0:9D:F1
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/wYrYBK2U9hFPOX0bXTTh7oGwnfE.roa
Signing time: Thu 15 Sep 2022 02:49:47 +0000
ROA not before: Thu 15 Sep 2022 02:49:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 61.61.144.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C18AD804AD94F6114F397D1B5D34E1EE81B09DF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:51:4c:4e:ec:bc:fd:9d:01:8c:7b:21:6b:77:
97:d6:83:a1:b0:02:f9:a4:d9:39:51:27:69:a7:1a:
4f:be:a0:c4:a5:03:58:7a:4b:d1:0c:df:d6:b8:ac:
02:02:5e:8a:4d:a4:10:09:0b:11:77:68:72:b5:c3:
0c:33:16:b3:85:0a:ac:93:5c:e7:20:02:bb:11:95:
36:37:f1:ed:e6:81:52:ef:53:7f:c2:2d:6a:34:16:
e3:49:a3:dc:2f:2c:03:3f:a8:f3:fb:2b:d1:50:8d:
fc:e8:42:dd:09:f0:66:fa:62:57:d9:ad:4f:14:55:
f6:a1:fa:33:58:66:e3:d0:b7:2d:0a:ad:11:20:a7:
98:55:f7:83:fa:f1:15:d2:0d:e9:9f:e3:62:fa:93:
ab:15:96:43:7c:3c:22:fb:1a:ab:01:00:63:68:a1:
ff:21:9b:2d:40:90:d7:f3:ee:d7:b1:5c:d3:08:15:
e2:11:d5:12:32:d1:d5:18:80:49:66:5d:06:6d:16:
5d:3f:61:c0:15:e0:80:ce:91:f8:d5:68:dc:4a:6b:
93:17:28:6a:ee:32:3d:43:a8:21:ed:51:5a:a6:e4:
be:da:bc:cb:d3:cc:ad:76:46:48:d2:4b:89:74:11:
60:8a:63:d2:7f:38:eb:be:1c:4a:12:34:20:13:82:
d6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:8A:D8:04:AD:94:F6:11:4F:39:7D:1B:5D:34:E1:EE:81:B0:9D:F1
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/wYrYBK2U9hFPOX0bXTTh7oGwnfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.144.0/21
Signature Algorithm: sha256WithRSAEncryption
30:9c:59:a0:77:d0:bc:c8:5d:58:59:af:12:94:26:9b:a6:74:
99:87:4e:d6:f7:df:0f:f8:ff:2d:25:1f:d4:62:72:b3:e4:7e:
e4:d1:ce:1e:4c:b0:42:62:a1:b2:a2:58:55:a2:fb:20:72:c6:
c4:c3:9f:b8:6e:1a:cd:46:7a:65:2f:82:80:ec:ef:30:30:3f:
2d:0e:a2:30:38:46:d6:41:f8:b2:93:ee:54:85:a2:91:66:cf:
3d:79:c5:a7:2b:b6:de:66:99:e3:eb:d2:ac:87:e9:45:3b:a7:
f8:52:43:35:cb:4b:4a:9b:7a:a3:81:b5:1b:94:3c:d5:a4:ff:
42:43:85:12:0b:e9:df:3a:c0:b5:67:71:08:88:f3:76:a6:33:
65:c8:73:ed:8d:15:d8:70:07:11:94:5b:41:d7:de:44:99:bc:
30:fb:a7:78:21:e0:46:97:88:d1:b1:27:52:c2:3d:13:b2:98:
42:bf:84:5e:2f:88:a1:97:29:9f:9d:d1:08:34:e1:14:32:ee:
99:03:d8:6b:0e:6a:35:33:39:a3:6e:3c:e9:fb:dd:79:c3:10:
f0:4d:ca:10:62:19:af:89:82:9e:f6:cf:ad:57:7b:9c:83:a1:
16:40:d4:35:1c:c8:be:ec:9a:21:23:67:f7:21:24:23:1a:cd:
8a:11:bc:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org