Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa
File: KdVTSIoZQqXGjOTnjVF66HNfHO4.roa (raw, json)
Hash identifier: viSWQmndgZHWPjZ0h0DpKAzd12UOHeJSs+VkNKfzs+8=
Subject key identifier: 29:D5:53:48:8A:19:42:A5:C6:8C:E4:E7:8D:51:7A:E8:73:5F:1C:EE
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 0F45
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa
Signing time: Thu 15 Sep 2022 02:47:38 +0000
ROA not before: Thu 15 Sep 2022 02:47:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 399626
IP address blocks: 103.127.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3909 (0xf45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: Sep 15 02:47:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=29D553488A1942A5C68CE4E78D517AE8735F1CEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0c:89:38:4d:ff:a4:f7:8a:69:02:1d:6c:d1:
93:95:d2:bc:93:fb:9e:0a:f2:11:08:87:8d:8c:1e:
86:37:ac:04:0a:cf:93:76:c3:13:3b:27:df:ea:a3:
23:03:81:6f:78:49:33:ea:7b:71:19:d1:5c:74:ee:
52:32:25:68:d5:a2:cb:76:84:69:34:10:37:a3:8f:
8e:a0:e9:5b:e2:7c:62:d4:53:7c:4a:f7:1d:66:81:
c7:13:e8:7f:46:32:65:d5:c9:66:f8:01:82:c5:c0:
18:71:0a:5c:39:b1:fe:18:9e:e6:25:04:2f:df:ed:
59:70:43:5e:c2:74:d7:c0:b6:87:98:84:7d:7c:0d:
cb:7f:20:5a:88:d6:ad:e7:c7:52:2a:6f:02:46:34:
43:03:38:43:b8:09:a0:37:a3:f8:49:c8:21:d2:5b:
27:70:e5:e9:5f:a5:74:9e:d6:f9:8d:2a:67:0d:51:
e6:da:5e:b6:8f:74:86:f2:45:c6:d4:2f:a7:f2:b4:
59:d6:1e:04:a1:0d:2b:21:a4:3f:8f:d2:55:39:75:
58:d7:cc:cc:bb:bd:33:57:11:87:63:73:ca:47:63:
e8:25:5d:81:1a:82:73:e9:3a:53:b8:2d:39:f8:87:
f4:59:c4:a7:75:18:30:2f:14:e3:7a:a3:e6:63:bd:
49:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D5:53:48:8A:19:42:A5:C6:8C:E4:E7:8D:51:7A:E8:73:5F:1C:EE
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.236.0/22
Signature Algorithm: sha256WithRSAEncryption
75:f1:c2:dd:aa:bf:b7:9a:b6:6e:a1:4d:5a:41:11:73:22:61:
45:b4:83:0d:74:f1:e1:26:e5:69:0b:d2:23:5f:7e:5f:30:64:
82:64:a7:2a:80:a3:16:e6:c9:21:a4:9e:ee:94:fb:a6:5c:94:
56:97:4d:1a:3d:4f:d8:1c:19:13:51:e5:d4:29:11:12:4b:c4:
64:78:ab:29:f9:bd:ef:01:43:a9:99:8f:3e:cc:f3:bf:d3:ae:
78:cf:4a:99:56:13:0f:62:6b:51:67:e6:b3:fc:e6:da:1a:73:
eb:d4:3f:f4:16:6a:9f:31:f1:e0:b5:5a:0b:e0:5a:75:74:58:
51:32:dc:2e:65:91:27:d0:7d:f5:4e:5e:a4:5e:58:ed:21:23:
9b:ea:8c:d9:86:d7:43:89:44:c2:01:60:3a:41:34:9a:f3:fe:
6b:5c:99:93:35:f5:af:5d:78:2e:cf:e0:f8:c2:e6:8d:ca:a0:
3e:fc:7d:c5:d7:bb:f8:8b:8e:78:bb:c2:01:45:8d:23:10:8e:
ae:83:7c:3f:25:aa:ed:00:5e:7a:ef:37:eb:05:3b:d8:64:f2:
30:1e:38:5b:f5:bd:36:9c:f5:c7:4e:51:9b:d5:58:80:e1:da:
83:0e:5d:f6:ed:c3:34:f7:e3:49:db:a8:64:8e:7e:76:58:69:
cc:da:66:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org