Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/g4qBZRtJmu9NS0c3aaUmgHDrLJE.roa
File: g4qBZRtJmu9NS0c3aaUmgHDrLJE.roa (raw, json)
Hash identifier: VRmQ8pCq+20NeJtVpPsDY4xgC8QS0e+LY4IrCXc8Q2Q=
Subject key identifier: 83:8A:81:65:1B:49:9A:EF:4D:4B:47:37:69:A5:26:80:70:EB:2C:91
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0DA4
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/g4qBZRtJmu9NS0c3aaUmgHDrLJE.roa
Signing time: Thu 15 Sep 2022 02:41:42 +0000
ROA not before: Thu 15 Sep 2022 02:41:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 103.133.152.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3492 (0xda4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 15 02:41:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=838A81651B499AEF4D4B473769A5268070EB2C91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:83:9d:58:55:83:da:ab:10:36:3e:66:f9:
53:4f:31:e5:20:27:8c:b8:e9:30:c5:91:1a:72:11:
b1:27:96:b7:46:eb:28:3c:19:58:72:87:3b:aa:db:
20:75:2e:cb:48:e2:2f:ad:a2:5e:62:57:18:a8:1d:
ef:2e:c0:3c:04:81:d7:72:15:12:b7:a3:18:8b:c4:
38:34:94:4f:88:9e:ff:15:fc:5b:6c:ff:c0:a9:a8:
97:c2:00:b3:58:27:80:22:24:44:06:a9:65:1e:55:
0d:00:53:e2:ac:e1:e0:80:ba:95:7a:f7:90:93:47:
d8:3a:c1:1b:ab:74:a5:27:66:3f:36:81:de:45:68:
a7:c9:46:2a:fd:f7:3f:f9:09:ca:99:57:a3:cf:1f:
1e:54:5a:f8:81:15:1e:28:a3:fd:5c:78:2f:e6:47:
46:73:b7:8d:db:71:21:78:1d:10:6a:44:47:cc:38:
cf:3b:97:92:62:29:5f:aa:98:24:af:b8:31:a8:96:
dd:d8:cd:ac:80:b4:ba:b4:2f:b6:a1:b1:09:96:1b:
9e:93:df:74:ff:f8:2c:37:60:69:e0:54:77:4d:f4:
9b:47:00:65:0d:9b:36:24:00:63:37:33:43:d2:72:
71:26:d9:b8:f4:b1:37:bc:4f:43:8a:c9:fe:dd:fa:
51:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8A:81:65:1B:49:9A:EF:4D:4B:47:37:69:A5:26:80:70:EB:2C:91
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/g4qBZRtJmu9NS0c3aaUmgHDrLJE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.152.0/22
Signature Algorithm: sha256WithRSAEncryption
66:54:72:ef:f6:a4:55:2e:5b:7d:d4:6c:fc:b8:fe:79:b6:cf:
1e:50:e3:a8:c1:b9:c1:98:06:8f:84:12:c5:6d:03:47:28:c4:
ea:0a:8e:e7:97:2a:10:10:64:32:fd:6f:1c:ab:43:5b:f9:d5:
d5:82:33:4d:9e:c7:87:72:d1:5e:94:2f:2a:dc:02:96:d5:5c:
19:63:79:39:96:8d:c7:0e:b2:94:c5:d4:8c:63:6b:f5:fc:8b:
43:01:e2:1e:57:75:38:de:88:8d:4a:cc:3b:45:7e:3b:21:2a:
a0:16:19:3d:87:72:92:e5:f8:8a:c9:d1:bc:0b:a9:61:20:2f:
80:fa:65:ee:b9:de:e9:9a:58:66:86:7a:ea:68:fb:0d:8a:73:
f9:21:38:ec:56:e2:cc:13:93:be:6f:a4:90:b7:69:2d:21:f9:
36:69:34:0b:04:4b:8f:0b:4a:4d:bc:bd:f7:0f:b6:82:36:f4:
04:eb:3f:22:0f:ec:2b:1a:91:18:d1:c1:2f:f3:7a:b8:74:4c:
7a:7c:24:67:aa:b7:9d:1a:01:5b:6f:67:ae:4c:2b:e8:25:27:
f3:71:c8:ef:ec:0d:3f:57:bc:13:b7:ef:07:a6:7d:4a:bf:59:
5c:23:b0:f7:f9:c9:1f:fb:71:e9:cb:c7:d6:6c:8f:94:57:d5:
96:58:03:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org