Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/WfuD0IXOXhHpg4X_LefAeYTemOA.roa
File: WfuD0IXOXhHpg4X_LefAeYTemOA.roa (raw, json)
Hash identifier: 288gpo5wnt9JQIFpAKZ2tYVz1e7/IaYEMNbEzPi7sws=
Subject key identifier: 59:FB:83:D0:85:CE:5E:11:E9:83:85:FF:2D:E7:C0:79:84:DE:98:E0
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0385
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/WfuD0IXOXhHpg4X_LefAeYTemOA.roa
Signing time: Fri 06 Jan 2023 05:34:58 +0000
ROA not before: Fri 06 Jan 2023 05:34:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 205329
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Jan 6 05:34:58 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=59FB83D085CE5E11E98385FF2DE7C07984DE98E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1c:e9:15:c7:63:ee:1f:1b:da:c6:c2:bd:9a:
bd:24:4e:a0:af:a2:8e:67:b1:97:d8:a4:03:cf:9b:
7a:2b:a5:fa:0a:39:eb:e0:c4:19:f2:18:23:c2:ed:
80:5e:ee:b4:30:c5:3e:d0:27:ee:c9:ef:41:8f:81:
89:a3:7a:76:f1:56:d7:72:c7:75:90:17:c1:89:3d:
0e:27:df:29:04:df:f1:04:89:94:57:e4:b7:08:42:
f6:e1:a4:d6:c8:d9:be:8f:46:ec:fe:45:0d:1c:71:
ee:18:71:1c:5f:a8:45:db:74:6a:c8:5b:a5:a4:56:
7f:47:ca:cb:da:66:fc:22:4b:c4:e6:37:d0:b1:b4:
ab:87:84:b5:17:99:1a:f7:b3:4f:f4:2c:f1:f2:1b:
3c:7c:76:ec:c8:a2:a0:75:89:57:30:94:d1:a7:ed:
7d:4a:17:d0:fb:79:55:fb:56:17:9c:be:ee:eb:a8:
00:29:f7:6a:32:e4:4e:96:7c:da:05:ab:93:b2:6a:
31:c4:08:e6:d5:dd:c2:d4:f8:57:bf:77:16:8b:8b:
bc:29:d9:79:02:8a:33:03:79:af:b1:cc:8f:59:71:
79:5e:f1:c1:39:ca:1d:03:de:af:2c:af:26:08:5b:
8a:51:80:ca:10:ea:96:a8:27:cf:dc:ec:a4:63:f4:
1c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:FB:83:D0:85:CE:5E:11:E9:83:85:FF:2D:E7:C0:79:84:DE:98:E0
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/WfuD0IXOXhHpg4X_LefAeYTemOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
00:6c:bf:6c:67:3a:57:66:7a:89:e6:bd:40:05:d1:43:a1:c3:
32:d6:db:e0:51:89:a8:11:d3:53:5d:0f:0c:80:1b:6a:33:06:
af:21:c9:9e:a6:65:b1:99:35:97:e9:b6:b0:03:9f:ad:56:76:
f7:7e:e8:a7:39:a6:28:76:22:37:f6:7e:5e:0b:93:45:ec:2a:
c7:79:20:d4:58:0e:7c:a1:06:a6:7b:d0:32:cb:60:54:b2:92:
1a:12:1e:a8:86:29:d7:b5:a8:a5:64:47:50:98:c7:87:3f:27:
2d:b2:a3:54:6a:89:a2:19:be:f3:ee:c8:67:63:25:f7:de:96:
8a:92:ea:80:ea:5b:7e:5c:aa:6c:a1:27:7e:75:38:1d:fc:cb:
7e:67:f6:1e:1b:8a:a3:f3:42:67:a0:3c:25:bc:4e:ed:15:44:
c7:18:48:7e:d4:73:a5:c6:c4:97:76:f8:cf:a4:c7:c8:8c:55:
52:f7:e7:fc:4d:37:f5:e6:28:4e:10:e5:07:4f:04:df:a3:7e:
32:90:ba:b8:35:4b:83:4c:1f:c4:2d:df:2f:3d:88:44:9e:1d:
92:bf:b8:0e:8b:af:57:4a:ad:ec:c4:10:8f:c6:0e:ed:a5:82:
9f:bc:2c:62:db:18:b2:93:0e:1f:8c:ed:fc:8a:21:47:04:34:
6a:9a:42:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:17 2023 by rpki-client on console-ams.rpki-client.org