Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/o9RDIBOaB90vgZ61xVRDx7cym14.roa
File: o9RDIBOaB90vgZ61xVRDx7cym14.roa (raw, json)
Hash identifier: Kcz2sOvKWnG6WSBXpIMVlurQKgHnkE2f2G0XI4P5hA0=
Subject key identifier: A3:D4:43:20:13:9A:07:DD:2F:81:9E:B5:C5:54:43:C7:B7:32:9B:5E
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/o9RDIBOaB90vgZ61xVRDx7cym14.roa
Signing time: Thu 15 Sep 2022 02:42:23 +0000
ROA not before: Thu 15 Sep 2022 02:42:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A3D44320139A07DD2F819EB5C55443C7B7329B5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:33:db:52:2c:9c:07:cc:ab:19:58:40:73:1f:
f5:6e:86:48:83:13:a0:49:34:f9:9a:ca:96:fe:75:
4c:07:6c:6f:68:fe:f7:73:a7:04:a3:0b:ea:2b:c9:
e3:5d:bc:3f:df:3e:78:d7:cd:5a:c4:87:7f:9c:44:
a8:1f:ce:0b:79:fd:5c:71:3c:bd:41:22:e7:bf:d4:
0e:e8:4a:2d:ea:a6:32:a4:7d:52:9e:d5:41:56:85:
09:67:55:03:61:56:01:66:87:9d:62:f1:e8:c9:3c:
9e:19:cf:58:f1:25:42:8a:80:bc:5e:39:3d:54:b4:
5f:9c:45:cd:a1:d9:6e:e2:e5:b5:65:09:8c:f7:e9:
85:c8:b7:38:5a:12:16:84:55:09:6e:cb:9c:1d:59:
15:a7:76:46:9f:c9:5b:f7:37:fa:88:d2:03:f4:ef:
6d:ae:47:51:35:02:0f:94:65:bd:42:30:3c:41:b1:
b5:74:68:21:f2:bc:76:2a:b0:25:e9:b4:46:49:e1:
c1:f0:94:ca:30:59:04:cf:61:ca:5c:2c:9a:16:d4:
4c:59:6b:80:7b:23:2b:c5:8d:08:7a:c4:50:8c:33:
20:b7:2e:cc:88:18:19:80:2c:b6:d2:a5:ed:c1:1f:
0c:5c:0c:66:4a:9b:2d:9b:1f:97:c4:6e:11:e1:a8:
df:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D4:43:20:13:9A:07:DD:2F:81:9E:B5:C5:54:43:C7:B7:32:9B:5E
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/o9RDIBOaB90vgZ61xVRDx7cym14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.51.0/24
Signature Algorithm: sha256WithRSAEncryption
22:4a:2b:ec:b9:28:13:1b:7f:37:11:65:93:33:ea:5b:28:bf:
15:03:69:b2:48:2b:8f:e4:76:a8:87:9d:b0:07:f9:a3:69:d8:
33:af:0c:6e:1a:60:d9:42:98:64:f3:3e:89:6a:df:f4:af:55:
2a:88:87:ff:a8:4c:77:d5:44:08:ab:d5:7a:ac:5d:22:0d:01:
7c:09:7f:7a:64:b8:ac:14:0d:f4:5f:e1:0f:83:b1:53:c1:f5:
f1:31:36:33:a0:3f:f2:93:19:6a:b8:5c:07:de:ee:a4:2d:06:
8d:f5:b7:9c:83:03:de:e4:c7:a4:b1:63:0d:d5:58:66:25:7c:
dc:da:dd:1a:3e:f1:21:87:8c:68:2e:be:ca:13:47:2d:d5:ea:
ae:9b:fa:b6:49:57:9c:04:af:ad:06:e1:d7:76:90:30:b8:28:
92:c2:94:87:04:c5:5f:1b:a7:f9:3c:f1:e6:22:82:4b:1f:fd:
66:db:b3:58:1b:74:e4:28:c7:5d:1d:ad:66:c7:2a:68:33:ec:
ac:58:06:c3:64:65:bd:79:02:57:bf:6c:da:18:f5:9a:d5:3b:
a8:f8:fb:5f:a3:13:25:42:d6:69:ba:fe:91:96:99:cd:00:3b:
8e:af:e3:05:40:9f:26:ee:21:97:a2:77:6f:07:b0:c1:4b:98:
8a:60:3c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org