Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hSjoK-FWZldxqUbECW_OsRdW6Zs.roa
File: hSjoK-FWZldxqUbECW_OsRdW6Zs.roa (raw, json)
Hash identifier: CXJ5rNwD8MKLZ9kQuHhlhK2ohoXvD0EQIqveJ2N1ZJc=
Subject key identifier: 85:28:E8:2B:E1:56:66:57:71:A9:46:C4:09:6F:CE:B1:17:56:E9:9B
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 01B4
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hSjoK-FWZldxqUbECW_OsRdW6Zs.roa
Signing time: Fri 21 Apr 2023 19:15:47 +0000
ROA not before: Fri 21 Apr 2023 19:15:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18428
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436 (0x1b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Apr 21 19:15:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8528E82BE156665771A946C4096FCEB11756E99B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:91:85:fa:a4:29:ba:37:cc:c4:9f:b4:d7:9f:
e9:44:dd:80:96:d4:7d:b4:5a:e1:97:68:54:19:03:
ba:bd:88:5c:79:71:a0:fe:eb:d7:0b:74:1c:b3:30:
8b:86:8b:39:4f:60:20:39:75:27:14:13:31:2f:5e:
f3:e8:c2:d0:e0:ea:1c:8e:2a:10:8f:f9:fd:ba:4d:
e7:e4:0d:22:7f:64:fe:7d:f1:32:a9:37:36:2e:c9:
0c:50:f1:d9:75:f8:b4:d1:43:61:a1:d7:2d:37:1f:
88:ad:84:e6:b8:3a:7a:4f:43:00:5c:82:61:3e:f9:
db:97:1c:15:33:b2:88:35:9a:03:36:07:52:ac:6a:
a8:a7:f8:40:f4:c0:d6:eb:57:f9:83:66:b0:cb:81:
24:a0:5c:02:a3:69:cd:0b:31:2f:02:b8:b6:79:fb:
a6:a5:52:c1:9b:a0:99:4f:e7:6e:93:14:6c:66:8a:
3f:5d:3a:20:79:1b:7f:cf:76:21:97:f8:fb:eb:6b:
18:b7:b5:20:5e:28:47:b7:cb:e4:2a:26:b0:a6:3a:
ba:44:b5:8d:bc:97:ee:64:3a:a8:6c:c8:d9:db:91:
83:ed:02:b5:e6:15:ab:d7:a0:8c:a5:2b:5c:4d:34:
15:f2:58:c4:db:f7:d6:2b:53:c6:5e:26:57:a1:01:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:28:E8:2B:E1:56:66:57:71:A9:46:C4:09:6F:CE:B1:17:56:E9:9B
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hSjoK-FWZldxqUbECW_OsRdW6Zs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
72:57:42:64:82:46:9a:13:74:e9:c7:a6:10:de:52:44:0c:d2:
9e:0c:b3:30:67:e0:8b:a5:04:f9:24:de:2a:a5:93:94:34:c8:
b4:46:65:20:d4:0c:6c:0d:9f:d7:fa:ba:02:84:da:a8:f7:c4:
d4:be:31:1d:99:31:47:b6:2a:20:9a:a8:99:d4:51:c9:03:1e:
05:a1:2f:e8:9e:95:f7:ee:1b:48:04:c9:9c:c9:b4:eb:97:3b:
1b:c1:ec:82:e1:6d:c6:d5:a7:63:60:be:83:e6:1f:04:22:99:
ec:d5:bb:b2:ee:70:91:e1:04:9b:51:a6:3a:14:90:b7:48:3f:
8f:9f:55:99:ad:7c:b9:11:38:a3:9f:2a:50:ed:28:c0:c5:8b:
18:7e:30:da:68:ae:03:e0:c7:43:34:3d:43:1a:c9:6e:43:cc:
3a:09:81:91:d1:58:55:6b:0e:d7:5f:49:e9:78:84:aa:54:ef:
50:2b:d7:48:62:61:25:89:2c:f2:84:f1:e0:f2:00:40:c6:39:
c6:fb:3c:fd:31:0b:71:df:44:ad:0f:bc:bd:35:0c:4b:7c:a6:
ac:76:05:a6:9d:18:04:42:50:85:a9:94:b9:f8:5d:9e:92:f5:
34:81:cc:2e:e0:cc:d3:fa:2a:42:eb:cf:0c:7a:50:e6:a4:40:
c8:ad:d4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org