Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Vhw2f8In7Cmj3-nj6xqocNJJkzQ.roa
File: Vhw2f8In7Cmj3-nj6xqocNJJkzQ.roa (raw, json)
Hash identifier: eVYmwyjFF48aIbvRK3qlUJ4qoAWbnIqGZDrKqzdQiGw=
Subject key identifier: 56:1C:36:7F:C2:27:EC:29:A3:DF:E9:E3:EB:1A:A8:70:D2:49:93:34
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Vhw2f8In7Cmj3-nj6xqocNJJkzQ.roa
Signing time: Thu 15 Sep 2022 02:42:23 +0000
ROA not before: Thu 15 Sep 2022 02:42:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.49.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=561C367FC227EC29A3DFE9E3EB1AA870D2499334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:74:30:f3:f9:c3:66:21:75:e7:96:33:0d:61:
c7:7b:ab:41:b2:49:97:f6:b4:60:3e:dc:52:dd:1f:
88:db:a9:88:08:4d:96:d4:75:6e:5e:f9:3d:e9:e0:
a2:a7:e3:23:73:cf:7c:ba:48:5e:61:bd:e3:2c:e9:
6f:df:f2:cc:5b:84:8a:49:0d:00:08:e0:69:d4:c4:
99:61:e6:47:51:37:79:37:1b:91:8f:5d:66:18:1c:
af:b2:26:a6:43:df:5a:00:9f:c5:29:ee:08:41:7d:
8b:9a:63:9f:4b:4c:39:ca:82:76:e5:f6:4d:dc:55:
c7:0e:5f:92:86:57:50:a2:a2:06:f6:66:88:5c:a3:
a8:c2:15:c7:7b:70:8f:45:a1:ac:46:58:3f:d8:c1:
cf:4f:24:67:14:f7:f2:9b:a5:73:53:05:3c:c0:53:
dc:d4:b0:fe:ed:87:17:ab:cf:f2:e2:ac:c6:8d:3a:
36:8d:bb:41:26:44:3e:10:c7:9e:09:48:d6:65:e6:
ea:53:39:2c:a2:8a:0d:d5:61:4d:54:62:07:21:5c:
c1:06:87:4f:20:13:3d:fc:ef:50:36:94:cb:14:40:
32:20:f2:89:8a:a2:da:40:4e:a8:67:64:e6:f5:a2:
3d:2b:e1:8a:61:7d:24:be:0b:54:e1:3b:6a:96:8e:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1C:36:7F:C2:27:EC:29:A3:DF:E9:E3:EB:1A:A8:70:D2:49:93:34
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Vhw2f8In7Cmj3-nj6xqocNJJkzQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.49.0/24
Signature Algorithm: sha256WithRSAEncryption
78:79:0f:a4:5e:b0:bc:c8:17:30:24:f8:2a:59:d1:68:5f:88:
8f:35:44:65:9e:c6:fc:ff:78:94:79:b5:31:26:51:9b:3f:cd:
73:17:04:05:6d:eb:2f:c7:9a:c9:71:ec:8b:a1:b9:66:80:ab:
ab:f0:40:09:fe:78:14:fe:c7:78:eb:f2:24:52:df:5f:41:44:
e9:9e:c7:70:a5:81:33:dc:48:e1:d7:a1:47:29:05:e7:68:51:
b2:a3:af:13:1d:be:c2:0f:56:61:da:21:a1:3e:a6:f5:8f:85:
82:1f:6f:ea:f5:41:07:5d:f0:c9:56:95:67:5e:a6:12:f8:ef:
3b:26:c5:57:43:ae:00:c5:b2:a3:dc:4c:af:a2:17:d3:3d:89:
99:06:f4:ea:f7:d1:60:60:ca:7a:82:26:c6:51:57:cf:2b:b8:
00:f6:c4:be:7d:69:2b:bd:80:dd:12:f8:15:55:e2:7b:4f:ba:
0e:bd:2c:ac:f4:e4:62:3d:e8:13:88:e4:43:96:fc:5b:43:78:
0a:54:ca:15:23:05:12:fb:a4:17:2c:bc:bd:86:d1:d7:d7:d2:
3a:7b:a0:e9:4f:bd:5b:10:9f:0a:ed:ea:e2:c3:16:c3:d9:0e:
f2:44:04:57:32:81:a6:9c:2e:cc:43:2d:bb:63:f8:4b:69:15:
e3:fd:c3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org