Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/YUIOLjzBOHsbtRFaIUsl7DCP_d8.roa
File: YUIOLjzBOHsbtRFaIUsl7DCP_d8.roa (raw, json)
Hash identifier: OY7R//f+SwWPQIaD3+R8s3L0sVzowz94MvcVxQCOMrY=
Subject key identifier: 61:42:0E:2E:3C:C1:38:7B:1B:B5:11:5A:21:4B:25:EC:30:8F:FD:DF
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0BFF
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/YUIOLjzBOHsbtRFaIUsl7DCP_d8.roa
Signing time: Mon 01 Jul 2024 00:01:05 +0000
ROA not before: Mon 01 Jul 2024 00:01:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 202.140.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Fri 26 Jul 2024 07:56:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Jul 1 00:01:05 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=61420E2E3CC1387B1BB5115A214B25EC308FFDDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:83:9b:0b:9f:52:41:80:d2:a7:e3:4a:58:
a0:bc:18:9d:10:6c:0e:35:47:d7:f1:a8:eb:a0:b0:
1e:5f:42:24:6d:1b:ab:8f:74:3d:b9:9a:2c:22:c8:
5c:76:5e:0b:e6:ae:8b:6c:a0:80:16:81:72:7a:68:
2e:8b:49:43:31:44:a1:2d:59:e2:2d:95:e9:6c:8a:
0f:e3:aa:f6:3c:bb:80:1b:75:f7:5d:de:f2:23:e2:
40:6f:9f:6a:15:c4:4b:27:70:e8:b1:fc:ee:76:b5:
30:a9:7f:dc:89:5e:2d:d4:33:db:70:e1:97:72:56:
f9:18:dd:e2:9e:ea:e4:df:28:02:c8:c3:c1:3b:6b:
a8:1e:7c:0c:26:8c:d6:ee:68:af:ab:e8:9d:41:32:
b7:98:23:d9:43:2f:d8:ad:b8:a2:04:80:8a:6b:74:
79:55:a1:f3:2f:b8:81:0b:9c:9f:8c:8b:81:eb:69:
2b:4d:6f:3b:28:57:27:f0:22:85:f9:c5:cb:c1:79:
fb:f0:37:56:16:6b:e2:c2:a7:24:9c:2b:4c:51:28:
2e:c3:68:e8:b3:b8:e6:d9:20:e7:cd:01:a7:01:76:
30:06:9e:ee:14:f4:ab:39:ce:4a:56:7a:f5:14:1e:
ef:4a:fd:69:dd:51:90:d8:69:77:41:e9:51:46:b6:
28:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:42:0E:2E:3C:C1:38:7B:1B:B5:11:5A:21:4B:25:EC:30:8F:FD:DF
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/YUIOLjzBOHsbtRFaIUsl7DCP_d8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.140.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:2d:7a:98:ae:cd:f6:7c:0f:5a:66:12:a9:cd:24:27:bb:2d:
f8:3b:90:b8:b0:4a:4a:ab:ee:9a:9c:9c:c4:d5:94:fd:eb:3d:
cb:c4:c2:44:90:ee:07:e2:40:b4:24:1c:6f:2e:cf:5c:0a:cc:
5c:ae:6e:b1:b2:1b:9c:ed:f5:26:9e:88:42:d9:78:0b:8d:d5:
7e:39:fa:d5:f6:cd:85:25:33:96:2b:29:29:24:47:1a:b4:0b:
d0:5c:b9:f1:f0:b1:16:56:4a:1c:8c:4d:47:a7:14:f0:b6:95:
23:df:29:e6:a1:ce:6e:43:19:98:a9:d8:0f:69:7e:4c:d6:2f:
6a:7d:fa:f4:d4:0a:85:72:53:70:0c:95:a4:9d:e0:63:3c:07:
6d:be:fa:65:4e:9b:d5:c8:45:c5:a1:f7:7e:a6:6e:60:98:13:
03:ee:8e:ef:11:63:83:5a:54:1e:6e:b9:43:39:35:62:0d:fc:
58:19:d5:79:15:13:39:2f:13:a2:38:57:19:e0:07:c7:11:ac:
d9:b6:9b:2c:32:46:f0:06:27:b0:f0:ae:66:20:5f:f0:7e:4b:
4d:7b:eb:57:3f:d6:0b:39:06:fd:ab:cf:a2:c4:e6:7f:d1:56:
0c:48:c9:5d:48:9e:9b:c4:24:48:8e:15:cd:b7:ff:69:b5:f5:
ad:d5:3f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:21:39 2024 by rpki-client on console-fra.rpki-client.org