Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/Mg2uoO0cRHgcJmGjcMB1ON2NRyo.roa
File: Mg2uoO0cRHgcJmGjcMB1ON2NRyo.roa (raw, json)
Hash identifier: 0wmQqlO/W+IHCsoo5W4fI8D+5xAQtSGtJo8UN2K0Fp8=
Subject key identifier: 32:0D:AE:A0:ED:1C:44:78:1C:26:61:A3:70:C0:75:38:DD:8D:47:2A
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0C03
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/Mg2uoO0cRHgcJmGjcMB1ON2NRyo.roa
Signing time: Mon 01 Jul 2024 00:01:56 +0000
ROA not before: Mon 01 Jul 2024 00:01:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 2400:4500::/64 maxlen: 64
Validation: Failed, certificate revoked on Fri 26 Jul 2024 07:57:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Jul 1 00:01:56 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=320DAEA0ED1C44781C2661A370C07538DD8D472A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:dd:db:89:26:82:cd:a8:4a:a5:88:17:71:
1a:32:a4:2f:f0:34:14:f2:96:88:f6:d8:ba:2b:0c:
97:af:d3:18:f3:67:5e:ff:2e:16:f2:8d:50:b1:db:
82:96:a4:6e:2b:ff:38:4b:6b:3f:de:5d:99:72:92:
11:93:6c:98:b3:81:d5:2d:d6:2e:99:b8:d0:6b:0a:
f7:0f:51:63:df:7f:c7:91:0d:0e:4c:d8:3d:0a:d8:
14:fb:8e:8a:fd:fc:c0:13:e0:de:ba:dd:c8:18:bc:
ee:3e:0d:1a:8c:83:6d:04:33:b1:fb:da:bd:83:cd:
72:9e:d2:1c:57:0d:b3:44:8e:c6:ea:e4:d6:76:5c:
bc:f7:96:06:85:7f:bc:39:26:7c:4c:08:94:59:13:
3b:3e:08:19:79:0f:01:85:27:9a:0d:9f:ea:43:bc:
48:c5:49:71:82:26:5f:55:a8:99:a6:64:c1:e7:da:
5f:d9:f5:88:40:fc:69:8e:d0:4d:bb:fb:80:b4:b8:
bb:3a:d3:72:06:7d:46:a3:7d:10:5f:22:b5:e2:76:
32:d5:c8:82:d7:92:75:95:58:0e:f8:62:b9:51:9b:
41:ef:35:60:2d:5a:c7:2e:34:9f:d6:5d:df:5c:b1:
9f:f6:1d:29:d3:35:ef:72:b5:71:97:77:82:69:03:
27:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0D:AE:A0:ED:1C:44:78:1C:26:61:A3:70:C0:75:38:DD:8D:47:2A
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/Mg2uoO0cRHgcJmGjcMB1ON2NRyo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500::/64
Signature Algorithm: sha256WithRSAEncryption
0a:0c:79:1f:68:54:e0:23:47:e3:87:d2:66:ce:80:7e:fb:29:
cb:b2:f5:ce:8f:e0:4b:9a:0a:26:81:08:8e:53:1e:85:87:5e:
38:43:eb:bf:0b:ab:da:d9:0b:f2:68:7e:74:01:4b:3c:3f:2c:
54:f6:3f:46:68:6f:ea:e3:02:cb:3f:2f:a2:70:f4:26:d2:60:
18:02:5d:7f:fb:e0:b9:91:39:f3:ce:ff:ff:fd:3e:78:44:44:
dd:0e:e6:af:c4:6f:11:8a:ef:8c:71:62:9a:58:3a:89:0d:8e:
e6:57:ac:18:2a:9a:37:47:a1:31:ec:57:5f:69:15:8b:21:97:
f1:c9:f5:90:48:13:c7:df:4b:86:28:f1:06:e0:99:5f:90:c3:
11:dd:a2:f5:7b:73:32:fe:6b:9f:44:84:f0:5d:92:69:61:8c:
9d:88:d2:bd:d0:af:14:30:d7:40:ee:7e:17:75:97:52:e6:b7:
82:6c:1f:9a:51:87:81:35:72:94:d3:37:f3:f3:bf:63:18:6f:
e8:fd:55:4b:c1:25:76:f1:62:be:9c:41:fd:4f:f7:18:64:6d:
76:1d:f7:c6:4c:5f:8c:29:2a:1a:f9:b4:b5:76:e0:bb:ec:df:
ea:ca:4d:4a:2c:e6:5b:b0:8a:03:00:64:1f:53:ab:d9:e3:86:
33:1c:cd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:21:39 2024 by rpki-client on console-fra.rpki-client.org