Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/w5qP5N6op5M4t6CYJAt9ssckUGQ.roa
File: w5qP5N6op5M4t6CYJAt9ssckUGQ.roa (raw, json)
Hash identifier: cj817r0+dY71vyzyalajladwNXKCUhhfdNpZn18MzmU=
Subject key identifier: C3:9A:8F:E4:DE:A8:A7:93:38:B7:A0:98:24:0B:7D:B2:C7:24:50:64
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0C01
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/w5qP5N6op5M4t6CYJAt9ssckUGQ.roa
Signing time: Mon 01 Jul 2024 00:01:18 +0000
ROA not before: Mon 01 Jul 2024 00:01:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 2400:4500::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 Jul 2024 07:57:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Jul 1 00:01:18 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C39A8FE4DEA8A79338B7A098240B7DB2C7245064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c3:1a:a4:df:92:d4:c2:4b:72:bc:aa:6c:bf:
20:43:5e:00:8e:78:1d:5a:3d:5f:02:4c:a5:28:32:
9c:27:03:77:78:8a:24:df:01:8b:83:ed:eb:e1:5a:
5d:33:52:83:b7:f4:fd:42:ce:1e:4c:86:ae:03:df:
58:dc:5b:0a:98:49:44:15:4d:ac:2f:57:b3:96:a6:
5d:ea:e9:db:76:81:79:b9:02:59:98:bf:06:d0:b7:
13:7e:28:ae:29:7f:b1:da:cd:8c:5d:86:d0:2f:3f:
f5:d0:7d:3c:ab:3f:d7:2c:29:e5:74:23:22:ac:01:
d8:e7:74:d7:00:dc:3e:6e:0f:6c:cc:27:ad:86:04:
39:01:df:22:28:6e:2e:9e:5d:cb:3f:3c:62:7b:3a:
09:15:dc:da:7e:f5:32:1a:dd:41:ff:15:13:05:8c:
b7:80:da:16:5f:c0:25:87:ba:7d:04:d6:5a:57:2d:
73:06:9a:a9:4b:47:94:16:6f:7a:7d:89:f3:a7:a5:
28:77:e8:71:66:49:55:cb:5a:bf:ed:7a:7d:c9:08:
17:a2:28:22:c1:66:86:85:a1:b1:e1:28:53:b1:ef:
d9:50:de:ee:87:2a:4a:22:87:41:db:ba:43:09:b5:
58:7d:cf:bf:74:b9:2d:7b:fe:b1:00:dc:01:68:c2:
a3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:9A:8F:E4:DE:A8:A7:93:38:B7:A0:98:24:0B:7D:B2:C7:24:50:64
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/w5qP5N6op5M4t6CYJAt9ssckUGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500::/32
Signature Algorithm: sha256WithRSAEncryption
72:e2:28:d3:86:ae:03:ae:91:97:e3:87:5e:d7:26:42:67:58:
4f:77:b2:f0:32:3a:5a:90:dc:e3:d5:b7:f6:2e:10:39:1b:21:
6f:ae:61:c0:e7:77:84:b3:98:14:3c:ba:b7:af:6c:6d:5a:2d:
b8:6d:0e:35:8a:99:4d:f7:bb:b3:fd:ab:3b:59:5b:24:68:7c:
5b:f6:90:de:c4:ff:74:09:cb:aa:e8:bf:ac:8f:b7:8e:cb:01:
30:58:e8:d9:de:f9:a9:87:64:2c:11:59:3b:53:02:cd:2a:de:
19:4d:74:c4:d8:d0:96:46:99:b0:6b:71:d9:56:42:56:01:ae:
52:27:ef:75:9d:a8:02:15:fc:4e:55:4c:da:60:2a:f2:c6:dc:
77:3d:10:cb:d0:5d:06:a2:0b:02:8e:fe:21:bc:26:0b:3f:b9:
c4:f9:e9:03:c8:1f:9b:e6:6e:04:9b:bf:2a:22:86:cc:8d:fd:
e8:9a:27:39:78:c6:0c:16:88:cc:f2:c4:c6:cf:54:79:a4:45:
6b:c1:01:4c:51:9f:fb:a8:a6:2b:4c:fd:f3:e0:43:18:e0:d3:
3b:05:47:fe:cb:63:1a:00:35:91:ed:d0:cc:85:5f:58:c8:f0:
d1:42:9b:78:55:68:26:2e:6a:b4:89:1e:e0:83:30:c9:05:5d:
0e:72:8c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:04:39 2024 by rpki-client on console-ams.rpki-client.org