Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5m3aCkZMuY4jCF9o4XDQJ81aXoE.roa
File: 5m3aCkZMuY4jCF9o4XDQJ81aXoE.roa (raw, json)
Hash identifier: WCaVLW8OSFykQ9o7muqdneKpMEs5TzCJAhusCGUcjqM=
Subject key identifier: E6:6D:DA:0A:46:4C:B9:8E:23:08:5F:68:E1:70:D0:27:CD:5A:5E:81
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5m3aCkZMuY4jCF9o4XDQJ81aXoE.roa
Signing time: Thu 15 Sep 2022 02:41:49 +0000
ROA not before: Thu 15 Sep 2022 02:41:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E66DDA0A464CB98E23085F68E170D027CD5A5E81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:13:91:96:ef:87:b8:68:ec:69:5e:35:17:0d:
02:a0:41:65:24:81:4b:7c:7e:56:00:e8:53:45:be:
de:b0:f8:b9:73:a9:e8:62:93:68:ce:db:0b:f7:c0:
5e:85:4c:d3:70:85:36:46:bd:30:6d:e9:e5:3a:48:
22:a7:47:9a:15:cd:9f:1e:22:c2:08:5e:a8:8a:15:
89:f3:80:49:fb:40:44:e3:43:bf:f1:82:06:98:0a:
9e:8f:5e:5f:32:cd:e5:f2:b1:78:ca:35:f8:6a:cb:
8b:9c:b4:36:2b:44:7d:56:36:b5:b3:69:ab:b1:1b:
ff:d9:16:6b:53:fd:83:e0:33:64:34:7d:9b:d0:0a:
c3:ff:4a:ff:d6:5d:8d:e3:ee:32:5c:88:84:7f:d5:
98:9d:21:eb:e6:f1:4d:0b:b8:dd:e9:a4:ab:93:dd:
51:c7:b3:50:98:c4:41:ba:05:23:1a:40:c8:f9:a4:
e4:5a:64:32:10:e0:66:7c:fc:21:c9:16:23:2a:38:
79:42:ab:b9:21:53:67:5d:cb:03:1f:74:10:f0:fa:
c2:ab:5c:1f:bb:6a:5d:55:62:e3:c7:db:1f:ab:9e:
31:98:44:e1:c9:3e:8f:4c:18:3a:8d:ff:04:42:19:
cc:67:b8:a3:66:e0:41:9e:bd:ec:0a:f6:bd:e4:7f:
d7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6D:DA:0A:46:4C:B9:8E:23:08:5F:68:E1:70:D0:27:CD:5A:5E:81
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5m3aCkZMuY4jCF9o4XDQJ81aXoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
51:88:42:40:f5:f1:fa:bf:93:2e:42:c2:33:5d:ad:12:d9:85:
9a:95:3f:9c:97:34:a7:a6:b8:c0:c2:51:95:ae:67:2d:c5:89:
fd:0c:90:d4:4b:bd:bc:7a:9b:1a:1a:b3:5e:c5:99:11:d5:ff:
c4:5f:2b:67:1a:f9:57:6b:b9:d6:43:3e:e9:1a:4f:86:e5:5f:
63:fc:96:31:57:8a:79:a8:d7:d9:42:df:26:12:81:7c:5b:c8:
2c:ad:de:ba:aa:58:1a:ae:57:68:4c:b5:ad:2f:8c:1c:75:b1:
0c:c5:d5:ea:6a:f4:60:59:c5:1a:fa:cc:5a:dd:9d:9e:e2:db:
31:60:f7:7d:9f:9d:a6:03:a2:58:88:11:c4:68:4b:1f:67:b3:
d9:d0:5f:b0:97:1f:13:c2:28:87:25:11:8e:38:cf:97:73:ba:
d1:ed:ef:cb:73:bc:5d:06:04:d2:cf:e7:f7:53:b2:6d:32:a1:
dc:2e:69:e1:26:3c:e3:f8:1d:f3:5b:ba:c2:e0:02:39:50:88:
0a:66:f0:77:2a:88:fe:b1:a6:be:48:87:af:5a:96:b0:43:18:
42:d0:78:b7:87:64:12:bc:1a:c8:92:b0:54:a7:83:32:9e:b0:
e9:cc:57:88:6c:de:2e:9e:c8:f4:3e:ed:04:08:e9:19:aa:a2:
e8:04:b4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:51 2023 by rpki-client on console-ams.rpki-client.org