Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/Ta4uOIx5ezANVyTKB3N-PRggM2M.roa
File: Ta4uOIx5ezANVyTKB3N-PRggM2M.roa (raw, json)
Hash identifier: vxvEyS3UbApTBBOx5GRn+YNTo2Oh4CwVH4GyCiMJDnc=
Subject key identifier: 4D:AE:2E:38:8C:79:7B:30:0D:57:24:CA:07:73:7E:3D:18:20:33:63
Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Certificate serial: 0A38
Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/Ta4uOIx5ezANVyTKB3N-PRggM2M.roa
Signing time: Thu 15 Sep 2022 02:42:36 +0000
ROA not before: Thu 15 Sep 2022 02:42:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131611
IP address blocks: 103.100.164.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2616 (0xa38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Validity
Not Before: Sep 15 02:42:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4DAE2E388C797B300D5724CA07737E3D18203363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bc:45:30:48:44:97:ed:02:0e:69:de:27:ed:
9e:94:e4:79:42:b5:e2:82:f8:85:cb:6c:cf:5a:69:
ce:21:4c:75:af:39:99:24:fe:9e:3d:7d:00:36:a6:
73:a5:ee:36:72:e3:5e:f0:fa:2d:15:05:71:4d:56:
fb:72:60:d4:91:fe:d3:2a:9f:d4:96:53:a2:77:ce:
7f:6e:1d:9d:76:c5:e4:cf:ec:8d:c8:c3:f8:17:36:
91:d0:96:ac:26:a2:fa:3b:c9:5a:6c:4c:b6:3e:ee:
32:63:2e:c1:5c:a6:5b:3f:fe:4f:59:bb:7f:7b:cf:
b0:50:ae:d9:ef:e6:cc:11:6a:d1:44:cf:82:5a:9a:
74:9b:a2:5e:1b:92:af:5f:01:c8:aa:2d:3c:75:47:
6d:d4:4a:b1:ef:65:f0:36:8f:6e:f8:a1:f6:9d:92:
43:7a:7e:40:dd:bb:a7:b9:ec:bb:6e:00:08:f7:f4:
dc:4f:55:77:32:a5:90:b2:00:8a:f3:e9:7f:22:43:
65:e3:2d:6a:e1:39:75:6a:fa:57:24:8f:63:bb:fa:
ad:c9:20:9b:0e:9b:93:84:c1:fa:68:54:33:37:a3:
4a:8c:d4:53:e2:fb:e1:24:74:1f:99:79:30:79:40:
24:a3:aa:bf:8e:28:da:ca:70:26:aa:05:58:fa:6f:
c8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AE:2E:38:8C:79:7B:30:0D:57:24:CA:07:73:7E:3D:18:20:33:63
X509v3 Authority Key Identifier:
keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/Ta4uOIx5ezANVyTKB3N-PRggM2M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
65:99:2e:ae:c2:d4:18:73:14:89:04:e1:6d:3e:59:17:a8:7d:
cb:48:ba:ad:5d:37:f5:30:16:3d:ae:08:5c:c7:bf:7e:4d:f4:
2c:06:88:a8:49:36:f0:3e:d5:dd:ff:ed:42:58:be:99:1a:64:
0b:fc:0b:ad:d0:4f:0c:7f:35:0a:25:dc:3d:aa:a0:f4:7c:a4:
68:1d:9d:f8:fc:23:7a:1c:64:61:aa:bc:dd:7f:37:e3:93:ea:
d3:c9:6a:8f:e1:84:f1:98:f3:c8:a3:81:38:79:20:32:86:a3:
64:c3:03:a2:73:b6:cb:7d:4b:55:cb:eb:46:c8:0e:45:d2:50:
b0:a8:c4:c2:97:4f:a8:6b:a9:9c:a4:af:83:87:d4:6c:33:38:
7b:f6:b7:26:f7:b4:7b:eb:20:2f:56:dc:92:2b:9a:72:21:ae:
7a:1b:c9:f9:33:46:fc:c1:d2:b4:84:ea:09:c5:9e:03:27:d9:
b3:d0:c1:03:81:f3:d2:fe:be:29:0b:1c:48:ab:84:df:54:df:
a2:a4:03:5e:a9:70:b5:de:d5:cf:1d:94:88:f1:eb:ef:f7:35:
f2:57:32:aa:a6:38:34:13:59:f1:6e:a0:71:ad:16:c4:4d:1d:
0c:d1:4b:5e:15:46:d3:21:69:37:ad:f2:4f:fa:03:6e:88:7c:
5f:c3:58:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org