Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Q_dzqx52rK-LZYo4B5T60hSZdVI.roa
File: Q_dzqx52rK-LZYo4B5T60hSZdVI.roa (raw, json)
Hash identifier: zpJmsy4PHv3uUldXWrVByyQyXvG+EhNIem82AVZHJ7o=
Subject key identifier: 43:F7:73:AB:1E:76:AC:AF:8B:65:8A:38:07:94:FA:D2:14:99:75:52
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1952
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Q_dzqx52rK-LZYo4B5T60hSZdVI.roa
Signing time: Sat 22 Oct 2022 06:06:23 +0000
ROA not before: Sat 22 Oct 2022 06:06:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 119.77.188.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6482 (0x1952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43F773AB1E76ACAF8B658A380794FAD214997552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:99:84:f4:8b:d2:9e:99:81:21:ec:bc:d0:95:
34:ea:e6:98:c8:02:04:30:25:e6:9d:d1:d1:0b:95:
dd:be:71:92:cc:56:c0:d9:b6:da:ed:2e:83:33:07:
e6:79:f7:71:36:65:78:da:e1:4b:6f:e9:49:2f:ef:
25:ed:a4:42:12:f0:e5:00:54:f3:8f:cb:e6:52:06:
4d:fe:7a:ad:08:95:23:0e:3d:8b:07:4f:d9:e5:9a:
c4:f8:a8:bc:16:73:d3:b1:81:a3:cc:e4:e3:92:1b:
1f:e5:d9:fc:00:7d:64:03:bf:27:47:cf:69:1d:3e:
fe:50:5c:8b:71:e5:71:00:02:c3:1f:7f:5d:13:fc:
77:1d:c8:50:8f:5a:87:6a:cc:cb:24:4e:cd:ad:a5:
9a:37:db:a5:e6:81:f7:67:0b:42:42:ed:57:2d:73:
06:73:e1:7f:13:fe:b2:83:1c:f8:2d:6b:22:f8:98:
1a:6d:b3:b4:ae:65:fa:31:8e:03:2f:2f:e3:cc:3e:
27:97:a7:4a:1b:19:de:97:fe:72:e8:e3:73:b9:ff:
f1:31:c3:ed:40:fc:3f:e8:71:b4:65:6f:45:0b:b6:
cb:7b:df:28:06:88:5e:ac:57:48:b3:32:93:7b:41:
7f:0c:ab:9f:b4:e1:b2:a7:89:2e:3e:72:ba:bb:10:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F7:73:AB:1E:76:AC:AF:8B:65:8A:38:07:94:FA:D2:14:99:75:52
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Q_dzqx52rK-LZYo4B5T60hSZdVI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.188.0/22
Signature Algorithm: sha256WithRSAEncryption
00:39:5b:c7:fa:05:b2:51:59:e6:8a:a0:d5:0a:a3:84:0f:e4:
70:97:0a:30:24:08:85:48:83:bb:6f:a5:7d:3e:67:e1:bd:73:
71:ae:8d:c0:55:b0:b1:da:56:e4:8e:3d:43:98:c2:69:e5:35:
8f:21:0c:1a:b6:d0:f6:da:2f:9a:35:3b:b0:67:b7:56:67:e0:
a4:59:e1:62:aa:5a:f4:09:0b:dc:66:d8:79:97:3a:3b:b6:4e:
cc:33:a4:e0:ce:96:01:0e:8d:7d:39:9c:ac:c8:0b:8a:75:b6:
67:f4:d6:5a:f5:fd:8b:65:8e:c4:54:77:02:a3:fa:2b:b5:98:
5a:e2:3d:76:e1:cc:49:df:3f:8c:2a:6a:89:8a:4c:ca:bf:55:
ed:85:43:71:f4:76:0f:d9:86:b5:d6:17:61:70:e6:0d:6c:b3:
12:02:28:83:fb:ce:1b:ac:4b:f0:29:2a:e0:a9:66:80:6a:b0:
7e:f0:4f:4b:9f:fd:f2:d2:26:d3:37:25:87:c9:5b:0b:b8:04:
d5:6d:16:d6:8e:d5:2d:0e:31:b4:2f:dc:f8:2e:f3:ee:b5:60:
21:6c:6f:58:1e:d5:b6:b6:05:d7:06:f3:94:5e:48:5f:ea:bc:
9e:d9:93:7c:19:79:b0:bc:d4:78:ea:e9:f0:af:de:ba:75:f9:
c8:53:8f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:39 2023 by rpki-client on console-ams.rpki-client.org