Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/7mc4U_LQaEO24WeWPSUYRlpSnpg.roa
File: 7mc4U_LQaEO24WeWPSUYRlpSnpg.roa (raw, json)
Hash identifier: NHMTjVYs4mTaNQlM9n3TveXPryrJZmPSvM5WoVJQSKU=
Subject key identifier: EE:67:38:53:F2:D0:68:43:B6:E1:67:96:3D:25:18:46:5A:52:9E:98
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/7mc4U_LQaEO24WeWPSUYRlpSnpg.roa
Signing time: Thu 15 Sep 2022 02:34:47 +0000
ROA not before: Thu 15 Sep 2022 02:34:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7480
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EE673853F2D06843B6E167963D2518465A529E98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:d0:a4:68:f7:a3:7b:92:1f:89:46:f8:a5:
5d:b2:24:95:97:7d:18:65:ff:b5:b6:3f:1d:8a:89:
04:ce:a4:f3:74:c3:a6:5e:a2:99:f0:42:f2:98:b7:
65:3b:c0:a6:1f:5d:2b:d5:2e:c5:23:14:80:4f:c9:
21:7d:62:09:e5:4b:18:f8:8b:a8:7e:20:c0:3c:c4:
80:98:12:75:b3:d5:3e:a0:a6:79:54:ef:6d:f3:46:
41:7f:ee:7e:a2:04:fd:98:19:7f:ae:47:9a:82:9e:
be:5b:bb:15:0e:a3:19:6e:fd:8f:94:0c:32:6e:5e:
fe:d8:c1:39:da:8c:1b:02:10:68:9e:06:ca:e3:a8:
08:06:37:d6:b0:63:d0:9f:ed:b3:09:98:ed:83:63:
ad:9a:eb:36:12:5c:b3:a3:06:6e:8c:6b:11:2a:a6:
19:eb:ca:7c:43:e0:93:90:bb:0c:dc:c4:27:c2:5b:
ac:5f:9a:81:54:14:4e:4d:7b:6b:37:51:18:57:39:
7c:d9:32:98:34:cf:65:f4:e9:26:cb:89:c0:5b:d5:
48:72:9b:14:56:ec:dd:a9:c0:78:67:34:9e:96:22:
47:2a:73:6e:3e:2a:b9:45:6b:48:ed:fc:55:ef:be:
d7:23:53:22:75:c8:d8:76:3d:8b:42:29:0c:24:99:
a9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:67:38:53:F2:D0:68:43:B6:E1:67:96:3D:25:18:46:5A:52:9E:98
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/7mc4U_LQaEO24WeWPSUYRlpSnpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
70:5a:5d:28:9f:3a:b6:c4:62:08:bf:27:b4:f2:02:9c:91:04:
a7:b7:dc:55:bf:2d:63:64:67:16:89:e2:d8:9f:69:83:1f:1a:
df:81:79:e6:f9:e4:cc:da:53:ae:12:14:44:68:b0:2b:73:d9:
f4:e2:8c:5a:a9:18:b5:90:4e:1c:a2:c4:d2:05:7f:a8:88:f0:
e4:af:9b:6f:e6:4d:e7:16:95:3b:15:91:0f:fc:2a:ba:4c:a5:
dc:e2:9b:63:01:ec:78:3c:71:35:9b:da:05:18:96:fd:82:21:
54:1b:34:97:cb:81:cf:f7:9e:e1:05:86:42:2b:9d:90:d8:84:
0f:16:dd:2c:fa:7b:9c:cc:c6:12:bf:ad:04:44:05:07:56:67:
f3:19:37:af:3b:34:11:0e:bf:7c:23:5a:f9:46:35:dc:9c:9d:
1e:e4:a4:b0:ca:76:f5:e8:bf:c4:a9:fa:d4:64:b4:59:86:e5:
2e:2e:36:cf:8b:1f:21:0a:81:d5:9a:eb:6c:08:78:ca:d1:80:
fd:0c:4c:7f:da:c8:5e:b3:d2:2a:38:80:fb:95:f9:82:5a:02:
e7:f3:7b:9c:2b:33:52:f8:6a:53:7a:10:d1:4c:41:98:ce:0b:
9d:e8:e6:74:aa:0a:96:3e:10:69:8e:a4:f5:22:0c:90:f9:4b:
84:d4:8f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org