Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/nWwbUETAECCJdlIy-glmYuUcAcg.roa
File: nWwbUETAECCJdlIy-glmYuUcAcg.roa (raw, json)
Hash identifier: qmIKCuk0uGgUofBSG/Kpx7v5yjqc/6dv52hEhvBs3CA=
Subject key identifier: 9D:6C:1B:50:44:C0:10:20:89:76:52:32:FA:09:66:62:E5:1C:01:C8
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0A61
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/nWwbUETAECCJdlIy-glmYuUcAcg.roa
Signing time: Thu 15 Sep 2022 02:38:35 +0000
ROA not before: Thu 15 Sep 2022 02:38:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131590
IP address blocks: 103.227.226.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 15 02:38:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D6C1B5044C0102089765232FA096662E51C01C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:f3:84:d0:fc:78:5f:8f:5a:01:56:ea:a1:
5e:9a:95:b6:87:56:73:06:75:86:e1:e2:fb:58:91:
00:e5:8b:a9:bf:e8:05:ef:90:93:5e:e0:a3:34:0f:
9e:22:1b:62:5f:6f:3a:ef:f0:11:35:33:98:00:9b:
0a:cd:bf:89:e5:b6:b8:4e:43:73:05:de:63:b9:bd:
48:29:3f:2e:2b:eb:16:8b:06:e5:8a:5b:02:7b:5a:
ae:cb:d6:fb:ba:25:38:67:12:cb:cc:79:d7:be:27:
02:87:21:1c:44:56:a3:02:65:16:fa:eb:ae:17:0d:
ff:e1:fa:15:56:43:16:29:84:d2:b5:6c:e8:19:93:
99:cc:47:8d:51:4a:c6:14:44:f7:d6:45:aa:08:68:
79:65:2c:50:12:89:9e:34:5c:da:c6:2d:7a:ad:9c:
70:c5:13:c7:c4:30:cc:3d:60:40:77:49:43:6b:32:
d0:09:72:32:fa:8e:12:3d:da:b7:06:65:69:37:6e:
8d:61:cd:e3:e6:c8:9a:e5:52:6e:e6:7d:c4:a4:d8:
ca:0e:92:03:2f:2e:25:18:f6:0c:29:8c:2f:a6:01:
5d:13:1d:bb:5b:ee:f9:d8:b6:ef:47:ed:34:ec:87:
57:8d:28:6a:b8:26:59:94:cb:cb:77:b1:d8:7f:3a:
8a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6C:1B:50:44:C0:10:20:89:76:52:32:FA:09:66:62:E5:1C:01:C8
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/nWwbUETAECCJdlIy-glmYuUcAcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.226.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7e:1a:f0:10:eb:d9:5b:15:d6:38:69:c6:79:6d:48:1f:06:
35:e7:25:a6:d9:38:36:c6:64:7d:79:aa:2d:b0:44:fc:52:63:
cf:45:78:41:16:c9:83:f6:60:85:83:20:52:63:7b:e3:0e:cc:
37:59:4a:cc:94:05:04:63:04:39:91:41:1b:90:91:9c:8f:73:
f8:70:97:48:b6:41:b7:4c:9f:95:22:bb:19:70:40:d4:1d:98:
56:8c:8c:d7:cc:ac:d9:b0:c8:07:73:d5:79:2c:dc:9f:23:05:
08:d9:2e:ea:d2:50:ff:65:a5:84:bd:93:35:5b:f5:40:32:37:
d1:9b:36:2b:15:5f:15:45:e9:dd:ac:30:b4:b1:a9:7e:64:1b:
37:44:49:7d:8a:c6:1f:37:0e:20:50:b0:ee:bb:13:8e:a3:52:
ee:2c:12:a4:a3:bb:08:55:14:b5:78:cd:1f:bf:3f:df:ec:31:
2d:88:8b:3d:48:04:41:7e:2b:86:62:77:ec:fd:c2:5a:3f:a2:
54:91:24:33:08:59:71:9f:5f:04:99:7e:ce:1a:f7:ca:7e:58:
31:51:0b:8b:86:4d:14:69:dd:60:19:74:2b:ae:db:3a:62:53:
91:b5:f7:a6:90:cc:c1:05:d6:88:22:96:10:6f:76:d1:a0:9e:
f1:c9:1e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:18 2023 by rpki-client on console-ams.rpki-client.org