Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tqJkxX7VXOSsyZgqP2GB0Wkhqzo.roa
File: tqJkxX7VXOSsyZgqP2GB0Wkhqzo.roa (raw, json)
Hash identifier: iQmfdHb7h5yTsi0q3iLt2d6Jexc5oDl7o2XQpMzVArA=
Subject key identifier: B6:A2:64:C5:7E:D5:5C:E4:AC:C9:98:2A:3F:61:81:D1:69:21:AB:3A
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tqJkxX7VXOSsyZgqP2GB0Wkhqzo.roa
Signing time: Thu 15 Sep 2022 02:39:34 +0000
ROA not before: Thu 15 Sep 2022 02:39:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B6A264C57ED55CE4ACC9982A3F6181D16921AB3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:21:68:95:11:81:0f:f6:95:66:5f:24:69:31:
a8:2f:00:d1:a3:1d:7b:0d:ac:90:0b:48:f3:a5:2b:
7c:67:05:92:c4:a6:0a:91:ed:31:3e:f6:dc:38:de:
2f:2b:5a:12:d3:cf:68:e9:62:5a:1e:c5:5e:4a:6c:
4e:cf:dc:5c:9b:03:52:7f:c9:44:82:da:db:cb:91:
82:6d:cb:38:03:ec:7c:c5:a5:d9:51:6c:67:fe:be:
d1:8c:0f:68:9b:1d:b2:86:22:cd:a0:66:ee:b2:07:
b5:13:04:da:33:ae:a2:05:01:7e:0b:7c:62:c0:a2:
76:52:01:69:6a:cd:29:41:cd:54:13:9e:b1:0b:39:
06:2a:8a:bb:8e:5a:de:e6:d9:07:b0:1e:d4:24:eb:
ae:60:cc:15:19:1b:94:37:4d:cf:c5:8d:91:4d:bd:
73:3f:ae:1e:d8:24:3c:a5:ff:ad:01:53:ba:0f:e8:
17:00:4b:5f:5a:db:97:57:fa:86:8e:ec:75:64:41:
29:de:f5:ec:ed:88:c4:bd:61:63:a4:e6:e4:e9:5c:
88:68:bf:2c:aa:50:35:74:c0:a5:74:26:b4:08:6f:
9c:a5:02:ad:bc:1a:c8:ad:06:46:45:5a:aa:58:ee:
30:f5:9c:44:8a:10:7c:0b:fb:90:8b:00:30:1e:22:
e8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A2:64:C5:7E:D5:5C:E4:AC:C9:98:2A:3F:61:81:D1:69:21:AB:3A
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tqJkxX7VXOSsyZgqP2GB0Wkhqzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
87:09:78:b2:7e:63:28:72:f0:a8:1c:e2:fc:7a:f0:c1:f2:bc:
4d:55:14:07:d2:b0:92:65:37:4e:fb:7d:b7:9e:2c:a2:b9:63:
82:d2:55:ec:09:0a:29:56:b3:ae:f1:18:50:64:bb:67:a0:d1:
37:62:39:65:45:9e:c5:fc:96:a0:5a:55:3e:29:3d:e5:01:17:
0b:38:fc:10:a4:2d:c0:01:cb:12:f8:ab:85:24:08:2a:82:dc:
63:b8:21:f9:55:26:a6:1a:0e:3e:4d:c5:e1:76:1a:78:ab:0f:
c4:a6:ff:a8:22:49:d1:43:91:26:78:52:eb:6f:d2:53:ce:1e:
a4:47:02:55:aa:6d:71:62:e5:59:bd:7a:69:a0:a9:e8:2a:ff:
f2:e8:82:c1:3b:3d:b9:3a:0c:c4:b5:70:ba:5e:88:2d:6f:98:
35:3e:b6:9f:f1:27:87:e3:98:b7:c8:d0:85:bc:7a:da:ad:5c:
bb:60:e2:84:b8:f6:b2:2f:54:3d:97:bf:33:7d:8b:6b:61:24:
06:0a:28:98:ec:2c:e7:d2:69:7d:59:73:8f:8e:53:14:ec:4b:
5d:91:9f:10:4a:c3:0f:8a:0c:b1:14:a5:c3:6e:b6:5a:9c:35:
0e:1a:58:2d:c2:9d:d9:13:8d:cf:b0:37:b3:fa:70:ea:b1:67:
7a:6c:91:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org