Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/StcM5zs3wuoaiZ4ts90hKKDrnwA.roa
File: StcM5zs3wuoaiZ4ts90hKKDrnwA.roa (raw, json)
Hash identifier: 8AScHyEsayxb0+V5UIALP0NutW5dHZe9VzpY5bhieG0=
Subject key identifier: 4A:D7:0C:E7:3B:37:C2:EA:1A:89:9E:2D:B3:DD:21:28:A0:EB:9F:00
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0A49
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/StcM5zs3wuoaiZ4ts90hKKDrnwA.roa
Signing time: Thu 15 Sep 2022 02:50:23 +0000
ROA not before: Thu 15 Sep 2022 02:50:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 203.145.200.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 15 02:50:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4AD70CE73B37C2EA1A899E2DB3DD2128A0EB9F00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cc:23:a6:ec:78:bf:fa:6a:78:56:1e:09:ab:
2e:57:27:b7:2e:16:f0:5e:4f:15:a8:6c:54:81:80:
6e:98:16:2c:e4:d2:56:c1:b0:3e:13:3a:da:ed:3b:
44:fa:08:dd:16:f5:5f:98:51:f3:a7:30:3c:79:d8:
e6:d4:7d:b8:6f:69:9e:1f:27:2f:c7:b8:17:62:bc:
03:b7:f6:d0:5c:2d:a9:7d:66:74:83:ff:8c:bc:4a:
67:09:c2:37:da:e8:86:c4:dc:05:00:43:c8:3f:ce:
94:53:f6:84:dd:de:af:94:bb:6b:8f:12:fb:b5:8e:
28:45:ba:97:05:31:65:48:02:9b:e6:bf:1a:5f:b9:
29:44:88:b7:86:64:8a:3f:b8:6e:d9:aa:f3:1f:07:
c5:ef:41:d0:5d:cf:5d:fc:2c:96:c1:42:5e:11:e0:
c6:90:d6:94:ad:80:80:9e:74:cc:a0:ed:d5:69:9e:
b2:ee:ea:33:f7:24:69:f3:4c:af:cb:cb:d7:f9:e8:
0a:1a:e1:fe:fc:6a:c0:e5:d5:4a:46:f6:f2:e9:e5:
48:8f:90:70:dd:4f:72:95:76:a7:5c:3a:27:47:80:
1a:92:7f:57:87:56:66:6a:69:59:05:68:c0:f5:cf:
e4:2b:cb:45:3e:cc:e2:e3:bc:67:cc:cf:46:b5:34:
ca:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D7:0C:E7:3B:37:C2:EA:1A:89:9E:2D:B3:DD:21:28:A0:EB:9F:00
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/StcM5zs3wuoaiZ4ts90hKKDrnwA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.200.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:86:9e:df:5e:3d:75:0a:b7:3a:5c:b6:07:d6:ff:99:4b:8d:
96:ec:f0:91:2c:b1:1e:70:7e:70:bc:61:81:37:b6:9c:12:c6:
3d:07:88:dd:19:b8:d9:4a:3f:31:67:2c:cd:5b:e8:f8:53:76:
10:7e:b4:23:45:b3:8d:ae:55:ec:d6:7d:c4:a2:58:90:72:2f:
b4:af:e6:85:38:52:98:9b:6d:58:6c:e8:ca:70:3c:b0:96:b8:
1f:dc:a1:9f:f6:28:7f:69:af:ea:71:4d:b2:95:21:68:a2:25:
39:52:39:e9:dd:e7:af:6f:1b:cd:54:2e:ce:b7:0b:58:e8:c9:
de:a7:13:8e:c9:a7:1a:87:f4:94:d2:f1:c5:c6:d0:7f:5d:21:
0b:f2:fa:1b:b2:29:bb:01:88:0f:65:28:49:18:28:86:67:0e:
e2:70:c4:d1:e7:b8:cf:f5:0f:b8:b8:52:f2:ec:5f:81:b7:ba:
b7:26:d4:ea:d7:13:22:f4:b2:97:eb:aa:d3:df:43:2c:d8:ae:
e7:5a:fd:9e:3e:88:41:f8:79:c2:96:64:27:34:da:9f:a2:ae:
59:f4:d9:af:37:fe:64:c5:f7:76:23:90:3a:06:98:86:ea:b6:
97:72:50:b6:d7:f6:d4:37:e7:b6:49:95:51:15:8f:ea:9f:24:
1c:54:dc:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org