Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/82a_A15gxlJwiqb5snCe2N6H7lc.roa
File: 82a_A15gxlJwiqb5snCe2N6H7lc.roa (raw, json)
Hash identifier: HFWx8Q6Wz+RhCSoJ06lPxhY6wtXEz7HX1eaIzlxGThA=
Subject key identifier: F3:66:BF:03:5E:60:C6:52:70:8A:A6:F9:B2:70:9E:D8:DE:87:EE:57
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/82a_A15gxlJwiqb5snCe2N6H7lc.roa
Signing time: Thu 15 Sep 2022 02:50:45 +0000
ROA not before: Thu 15 Sep 2022 02:50:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 2914
IP address blocks: 61.58.32.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F366BF035E60C652708AA6F9B2709ED8DE87EE57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1f:59:4b:ce:20:f5:04:7e:96:ea:57:c1:0f:
ae:c6:6a:bb:bf:8d:06:ac:a9:35:03:57:e4:7b:ec:
2e:db:89:f7:a6:f5:07:03:1e:18:7f:48:b6:50:55:
6d:85:9d:67:76:20:e7:c3:30:fb:83:c5:d7:49:6f:
15:df:86:34:33:d7:fe:c7:1f:de:c4:ac:36:33:b3:
bf:b2:b9:cf:fb:b2:a0:e0:2c:26:a9:a6:04:7e:90:
d0:5e:a9:43:aa:11:cd:42:d8:2e:01:8c:af:93:5a:
20:cc:4b:53:b6:ea:ad:4d:e3:f5:12:f7:b4:53:68:
73:74:ad:25:48:1b:13:81:17:4c:25:4c:b6:2c:c1:
c7:88:33:33:ca:aa:de:72:4c:c2:b6:15:49:6a:51:
85:02:b0:ca:82:43:b8:19:4a:62:28:d7:7c:a3:98:
f4:d9:11:b6:dd:f0:98:64:9c:04:d8:1d:49:40:bb:
19:78:ef:ce:e0:14:0d:5d:9e:3b:6d:ad:7a:a7:3e:
ad:ac:0c:48:46:25:dc:16:e2:38:8a:e6:fd:22:03:
66:28:6d:f4:5b:d8:c2:64:2f:10:8e:fc:ee:f5:12:
7d:ea:43:fd:52:75:2d:4e:39:36:fd:38:64:c1:e7:
16:ad:ee:ac:91:53:9b:69:7a:34:d3:9c:41:62:2e:
07:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:66:BF:03:5E:60:C6:52:70:8A:A6:F9:B2:70:9E:D8:DE:87:EE:57
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/82a_A15gxlJwiqb5snCe2N6H7lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.32.0/20
Signature Algorithm: sha256WithRSAEncryption
6a:8d:a0:cd:81:95:01:4d:00:6e:a6:c7:ae:ca:18:86:f4:d9:
9f:42:f4:78:37:1b:b7:24:19:92:b0:27:5d:e2:41:7d:c5:4e:
0c:e7:28:2d:bb:81:67:18:e0:19:94:23:54:bc:a4:cb:ba:bc:
48:ce:40:3f:35:40:bb:a8:a8:7f:80:70:fd:b8:0b:0a:fc:b9:
16:6d:12:69:47:00:39:ba:a5:78:0d:00:39:0c:fe:65:1e:b2:
4d:6a:ea:aa:10:cb:34:4f:dc:29:8c:63:d4:fa:a4:ae:7c:2a:
ff:40:90:42:53:ca:9b:a6:a9:b9:88:68:89:91:89:3a:65:73:
de:f4:e4:23:1c:c6:9c:cd:8a:14:14:05:05:e5:34:ed:ed:09:
a0:38:cc:3c:1e:34:dd:67:db:0c:0f:99:7e:f5:43:59:27:71:
9f:4c:c8:b1:30:25:6e:d2:97:45:d3:73:76:fd:fc:38:fb:1c:
b0:8b:68:64:f6:b9:0a:2e:59:97:d3:10:dd:6b:e5:a1:38:a8:
ac:d3:31:85:b2:9b:0b:ff:16:37:6e:d7:bf:77:c2:97:50:78:
98:06:a5:de:d6:bd:3e:70:74:2e:82:6b:9b:00:da:01:74:8e:
f2:44:a3:24:f6:cb:14:2e:27:70:fd:bf:8a:8e:10:7c:6d:a2:
f0:fb:55:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:37 2023 by rpki-client on console-ams.rpki-client.org