Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/2wy1nCyqbSJP1h2ExJPZA2-h0Hg.roa
File: 2wy1nCyqbSJP1h2ExJPZA2-h0Hg.roa (raw, json)
Hash identifier: EuMmHwYzqZVX9TDgNYI66cCwl9CN5khv9sh7lE3o+iE=
Subject key identifier: DB:0C:B5:9C:2C:AA:6D:22:4F:D6:1D:84:C4:93:D9:03:6F:A1:D0:78
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/2wy1nCyqbSJP1h2ExJPZA2-h0Hg.roa
Signing time: Thu 15 Sep 2022 02:39:34 +0000
ROA not before: Thu 15 Sep 2022 02:39:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 61.63.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DB0CB59C2CAA6D224FD61D84C493D9036FA1D078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:ef:a7:5f:b8:87:7d:83:6d:10:dc:9e:2a:
93:45:2a:84:f8:68:57:4c:92:50:45:4c:8f:76:f0:
56:1c:76:9e:e1:a6:66:b1:46:e6:92:7d:64:bf:0f:
47:b4:b8:b0:ce:b4:d3:a5:f9:3b:ea:f8:2d:13:d0:
e8:4a:af:a5:96:c5:20:a1:2e:f5:ce:df:a6:2a:10:
ef:7e:c0:6b:1f:42:e2:fa:c6:64:5c:a9:46:1d:4d:
24:41:fc:97:f3:19:d4:c9:4a:74:56:14:04:8e:1e:
c9:5a:8e:d5:0d:d9:9d:60:9d:ee:aa:82:46:8d:a4:
b5:2a:69:cd:e9:94:9d:09:7a:b1:95:ef:33:5f:b1:
55:ca:5f:1a:52:ae:e4:b7:49:76:99:9b:27:2f:5b:
af:2a:94:bb:3c:23:9b:f2:b8:7f:8d:83:8e:a7:e7:
43:67:b7:ae:79:ef:f3:d0:9c:dc:ed:d6:18:1b:92:
5f:e0:71:48:a0:0c:7e:88:9b:ea:6c:33:4c:52:0a:
d8:13:07:6e:c2:7b:c5:42:69:11:f6:5c:59:a6:42:
8d:4d:69:5b:37:ed:ed:06:f2:b6:f1:1f:6b:f0:5d:
38:d6:15:4a:f9:c8:19:55:61:9e:a7:55:6c:11:5a:
75:b8:df:05:0d:7f:44:60:81:83:c7:40:d2:de:f2:
d3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0C:B5:9C:2C:AA:6D:22:4F:D6:1D:84:C4:93:D9:03:6F:A1:D0:78
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/2wy1nCyqbSJP1h2ExJPZA2-h0Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
16:0b:91:30:b9:91:15:5a:5b:61:e5:2a:88:2b:c9:df:54:08:
6c:65:50:73:80:7b:fe:f2:cd:e9:4c:9a:fb:ff:b3:c6:cc:04:
e9:e3:1d:d6:62:ba:7a:50:2e:d9:3f:ef:e1:d2:43:78:b8:7c:
1e:c3:88:84:c3:2a:83:fb:42:c3:7b:06:0e:74:a6:ac:ee:f4:
18:c7:1f:b6:a6:7d:f3:9a:7e:8f:e8:dd:30:ab:2c:57:a9:67:
ef:38:dd:13:76:bd:26:2e:19:c3:7f:03:37:d7:25:04:fb:e3:
7d:b8:4b:f5:47:43:46:5e:aa:7c:d6:1e:48:a8:fe:8f:ac:d3:
12:67:74:49:d5:a1:6e:fd:c3:87:19:7f:59:0e:36:a8:b6:21:
b6:3d:64:f8:f4:b8:04:8a:ba:2d:3b:82:79:e5:4b:2d:fe:9a:
9a:86:af:6e:62:30:85:95:24:42:21:9c:bd:3a:24:cb:1a:18:
8d:fe:94:b7:80:13:04:98:9c:55:02:12:69:1d:db:1d:b6:46:
d3:20:4e:3a:9c:90:60:52:93:0e:c3:83:cd:ad:65:16:05:50:
a6:26:a9:be:92:99:80:1e:11:53:a7:ee:c8:b9:84:46:1f:1e:
87:bc:f3:d3:21:81:80:46:67:5a:82:c2:b0:2a:74:e5:92:34:
27:9b:8b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org