Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/0dTQtjbrbIavNgZgrLTi95vm_8M.roa
File: 0dTQtjbrbIavNgZgrLTi95vm_8M.roa (raw, json)
Hash identifier: T1tO3KAg7RVYt3JYKkzAVmk40gTrHio7dTvysnqhCYE=
Subject key identifier: D1:D4:D0:B6:36:EB:6C:86:AF:36:06:60:AC:B4:E2:F7:9B:E6:FF:C3
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0A49
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/0dTQtjbrbIavNgZgrLTi95vm_8M.roa
Signing time: Thu 15 Sep 2022 02:50:24 +0000
ROA not before: Thu 15 Sep 2022 02:50:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 203.145.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 15 02:50:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D1D4D0B636EB6C86AF360660ACB4E2F79BE6FFC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0d:42:74:f8:bb:3e:fd:74:62:f2:95:78:82:
19:60:8a:0e:a9:4e:88:e2:d8:f4:35:c5:f7:68:7d:
a9:80:8f:52:66:a3:b9:7c:80:0c:a5:20:c6:32:02:
a6:fb:65:fa:7b:c3:e6:02:ca:35:9a:c3:cc:6a:14:
c0:4a:b5:c6:74:e5:e7:84:63:40:ef:f3:18:e7:e2:
f0:72:c4:c8:02:3f:2e:93:ef:ef:a8:a1:6c:b8:ec:
e8:05:95:ae:2a:0e:97:a9:43:92:e9:55:52:d3:73:
4b:47:15:6c:d5:47:0f:6e:3a:28:fe:f8:63:75:15:
fe:34:c2:f9:45:27:64:38:f4:7a:04:9d:79:93:ad:
5c:a9:e4:2d:ae:f8:4b:83:de:64:a0:49:36:14:75:
30:7b:b6:f7:6f:a2:1c:72:ca:25:2f:21:33:29:21:
2f:70:08:fc:a2:4d:a8:56:1c:22:d2:3e:a7:ea:4b:
5c:0d:93:cc:0d:b6:e3:d3:07:b9:dc:a7:94:15:b7:
3e:35:0b:e5:16:92:c9:0f:0d:56:a0:95:7c:77:11:
7c:4f:30:d8:6c:c3:ac:9e:70:a7:50:33:48:64:2b:
7c:14:ce:66:c3:df:f6:3d:4f:1d:85:22:93:ff:b0:
0f:ad:51:85:61:f2:50:2e:7f:95:54:97:92:c4:87:
7e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D4:D0:B6:36:EB:6C:86:AF:36:06:60:AC:B4:E2:F7:9B:E6:FF:C3
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/0dTQtjbrbIavNgZgrLTi95vm_8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.208.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:19:61:1e:85:e0:30:f1:5d:94:ec:1a:4e:42:a8:e9:ed:a2:
51:89:a6:ed:fc:7a:d7:36:3d:6e:8e:3f:f8:6c:fc:8c:af:c9:
13:66:06:79:7d:c1:2c:8f:9e:64:f2:9f:a2:ea:79:24:0b:7e:
c1:8f:37:7b:02:30:e4:77:b4:e6:f1:7c:75:56:d2:25:b3:24:
b8:8e:fe:81:19:cf:a4:ee:95:1e:4d:f0:d2:3b:4d:ed:f2:4d:
e8:51:8b:7b:6d:5c:98:ff:12:be:2a:fa:a2:be:ea:df:e5:f4:
3c:c8:a5:49:4b:d8:f3:58:2d:f9:9d:d3:98:ab:60:68:34:ec:
bf:90:a4:99:ec:7a:88:5b:27:b7:f5:0e:05:7e:2d:46:96:e9:
2d:6f:90:f6:b9:51:b5:bb:02:db:c9:2e:5e:b7:1a:06:31:25:
34:9c:f7:24:03:2e:c3:58:44:b1:71:71:72:fc:5b:d4:6f:99:
21:68:4e:0d:df:bf:02:f4:b8:91:9e:a8:b3:e5:67:8b:e1:77:
d3:a5:24:bd:4d:91:bf:59:81:94:c6:2b:7d:89:7a:7a:32:45:
83:ae:a2:9c:92:e8:9a:9e:f9:77:6d:de:eb:3e:12:2d:8f:a5:
4e:df:87:5d:e2:1d:b2:68:df:59:6e:1d:06:99:51:49:33:89:
5c:e0:b4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org