Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/ZiBV85xg6qXczh116d-cKd8_CUQ.roa
File: ZiBV85xg6qXczh116d-cKd8_CUQ.roa (raw, json)
Hash identifier: fL6OAKexTZUVao+5dwjq/olh89vH2edExsdwxyVgZu8=
Subject key identifier: 66:20:55:F3:9C:60:EA:A5:DC:CE:1D:75:E9:DF:9C:29:DF:3F:09:44
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0C05
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/ZiBV85xg6qXczh116d-cKd8_CUQ.roa
Signing time: Mon 01 Jul 2024 00:02:09 +0000
ROA not before: Mon 01 Jul 2024 00:02:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 2400:4500:0:2::/64 maxlen: 64
Validation: Failed, certificate revoked on Fri 26 Jul 2024 07:57:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3077 (0xc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Jul 1 00:02:09 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=662055F39C60EAA5DCCE1D75E9DF9C29DF3F0944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f1:1c:6c:56:ab:9f:e2:d0:37:2b:58:9d:42:
f5:ea:aa:95:03:fd:16:d8:30:34:91:fd:1d:59:fc:
19:2e:46:1f:d1:62:67:e0:e0:04:00:1a:c7:92:49:
94:7a:af:46:f5:5f:aa:f2:88:58:f9:7f:5f:80:ab:
fd:b0:9e:26:68:85:f1:d6:0d:72:82:47:8c:51:39:
fe:7f:d1:bc:df:11:9e:dd:a6:d9:6c:19:12:ad:66:
d5:54:da:6d:3b:a7:ce:8a:50:44:d8:6e:29:c2:a3:
67:21:7d:0e:c8:1a:51:65:f1:ce:67:1e:02:a9:d8:
a0:f3:23:28:c8:ac:c6:8a:0c:e5:66:10:b7:ae:46:
3e:25:13:ae:94:17:48:f8:b4:39:72:0e:41:df:00:
29:da:4e:14:10:b2:ca:2a:f0:3e:29:ed:37:90:39:
1c:e3:97:51:6d:cd:11:34:38:78:8c:63:60:80:82:
36:c0:94:2a:46:86:3d:a3:9f:0d:5f:44:fc:20:67:
a1:57:a8:2d:9b:1f:b7:ae:00:fd:f0:c7:d7:d2:5f:
33:c9:67:ab:92:e8:73:59:c4:98:47:3b:cb:ef:02:
fc:82:ea:b8:91:7f:01:04:29:fa:38:5f:c5:63:26:
6a:c3:32:84:34:c9:4c:16:6a:2f:58:dd:95:c4:55:
69:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:20:55:F3:9C:60:EA:A5:DC:CE:1D:75:E9:DF:9C:29:DF:3F:09:44
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/ZiBV85xg6qXczh116d-cKd8_CUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500:0:2::/64
Signature Algorithm: sha256WithRSAEncryption
ba:53:30:8d:b9:12:a1:eb:c4:8e:91:b2:f2:67:ee:5b:19:37:
ca:e4:7f:94:35:fa:6f:18:f7:31:07:03:4a:d2:dd:77:71:99:
10:b4:ac:19:3f:b9:a9:97:4a:18:b5:01:e3:2e:c4:f7:dd:05:
bd:23:e5:ea:8e:20:f6:19:7f:3d:02:74:ca:d5:ba:10:f8:d1:
a7:60:0e:87:59:91:26:df:b8:1b:66:9e:6f:ee:19:65:e1:1f:
fb:08:ba:dd:50:b4:74:ae:a8:27:35:81:19:88:31:c2:aa:18:
2c:5c:6e:68:27:66:e1:95:61:a9:26:d5:0d:28:9e:70:20:e0:
05:ba:e0:ac:11:66:ec:3e:d0:6f:3a:1e:11:2a:8b:3f:5f:d1:
16:1a:85:08:f4:58:54:c7:20:f7:70:ea:fd:48:3d:77:2c:79:
df:59:4c:e2:4e:12:25:c3:e7:eb:ff:62:4e:b2:55:db:c2:76:
22:86:3f:dd:03:2c:fb:1d:17:82:00:e2:38:f2:4a:89:54:23:
32:ab:ba:90:de:3b:47:04:78:10:82:1d:eb:cc:48:e3:67:d9:
87:31:1d:c9:22:57:87:c5:8b:ba:4d:22:0c:32:ff:04:ed:61:
f0:95:ed:1b:d2:88:85:2c:b4:40:51:eb:22:26:41:f4:ea:ae:
1d:c7:2a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:21:39 2024 by rpki-client on console-fra.rpki-client.org