Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ObfbFecxAgDg-7Q_f6QcXsRVnZI.roa
File: ObfbFecxAgDg-7Q_f6QcXsRVnZI.roa (raw, json)
Hash identifier: ohUlE3RwXAzGfagJrKebXn1A7S4QGOFRHs8xaUFPnb0=
Subject key identifier: 39:B7:DB:15:E7:31:02:00:E0:FB:B4:3F:7F:A4:1C:5E:C4:55:9D:92
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ObfbFecxAgDg-7Q_f6QcXsRVnZI.roa
Signing time: Thu 15 Sep 2022 02:39:37 +0000
ROA not before: Thu 15 Sep 2022 02:39:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 103.224.204.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=39B7DB15E7310200E0FBB43F7FA41C5EC4559D92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5a:6c:15:9f:45:b0:a8:69:a3:c1:c9:ea:fc:
94:f1:78:ec:d2:7a:e1:b0:d7:bc:94:07:13:18:f1:
3a:2b:78:ff:2f:7f:a1:41:90:98:d1:22:aa:25:3f:
c3:a1:56:96:cb:3f:49:77:54:de:b6:96:aa:47:d7:
2c:25:51:93:eb:13:31:f8:22:30:d7:bd:6e:3f:3c:
9d:f0:7b:31:b2:06:10:5b:c3:c1:c4:11:33:45:f6:
e5:89:cc:24:52:05:1d:69:91:f8:6d:b0:01:2d:24:
87:25:6e:c7:95:62:27:28:96:1e:26:a6:9b:79:29:
ef:eb:e6:3e:47:08:e3:21:27:8a:74:0a:9f:6c:75:
cc:3b:a4:69:c0:40:ac:f8:c0:15:c5:71:42:ef:ca:
04:7a:f7:e8:6c:42:b4:0e:15:7e:af:dd:b0:5d:ed:
83:13:d2:76:d4:39:e6:d9:89:6d:a0:4c:00:44:73:
5a:b7:00:6a:cc:44:f0:b5:f4:82:ac:3b:fa:2a:45:
c1:e6:b1:7e:1b:bf:56:c2:2d:de:08:0b:0c:b6:25:
da:16:a1:db:b6:6e:90:89:3e:fd:5c:c3:fb:58:68:
a1:54:71:f4:e3:33:d4:29:2f:78:dc:47:b2:33:48:
b7:26:20:84:1a:36:e6:9d:db:98:ef:66:77:20:25:
41:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B7:DB:15:E7:31:02:00:E0:FB:B4:3F:7F:A4:1C:5E:C4:55:9D:92
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ObfbFecxAgDg-7Q_f6QcXsRVnZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.204.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:98:a9:31:3a:19:57:f8:0b:19:35:61:e8:10:9c:10:7b:9b:
80:16:7f:a2:56:15:80:e4:70:08:88:62:dc:ee:37:2f:b5:95:
da:91:bc:cd:53:b3:95:5d:64:cd:84:c9:9f:23:7d:ea:e9:b6:
4c:4a:81:f6:d0:3e:07:68:08:77:ba:28:5d:3f:3d:08:6b:2a:
9b:ff:47:0b:8e:86:04:f9:42:ae:2c:1c:0b:62:cf:3b:f2:f9:
7e:c7:24:32:e0:5f:dd:36:31:91:e2:44:15:7b:23:19:ee:92:
ed:19:88:6b:ed:20:88:f7:81:5c:4e:58:87:37:ee:e3:bb:ae:
32:37:6f:65:95:2d:d2:e7:80:1c:3f:65:f1:a4:1b:ab:ff:ed:
2c:e1:6b:ca:91:8b:0d:53:f2:09:bc:0a:27:48:74:a2:5b:af:
2b:8b:5d:c4:2a:a0:4a:c9:20:9a:8c:53:b5:58:d4:44:a5:28:
e9:75:2b:cc:c0:c5:e4:41:d1:31:8f:69:88:84:7d:fd:ca:a5:
79:ef:25:1c:73:46:d1:22:a4:59:c4:d8:ed:09:b9:bc:78:5e:
33:17:c1:6f:75:26:b1:4a:be:89:db:5c:7d:c8:89:b7:a0:23:
ea:8a:a8:75:46:3f:80:16:61:d8:f6:c8:e4:e9:86:ee:86:08:
be:9c:58:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org