Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/OH9xpQ6tHkZALSIxwhkEIB958W0.roa
File: OH9xpQ6tHkZALSIxwhkEIB958W0.roa (raw, json)
Hash identifier: x8oORZR3+eiLkTeZK/5FuQYxx8JZo+e31OzKnrmTFlA=
Subject key identifier: 38:7F:71:A5:0E:AD:1E:46:40:2D:22:31:C2:19:04:20:1F:79:F1:6D
Certificate issuer: /CN=461BC0E516022C3C278FC892420705FEB85668D9
Certificate serial: 03
Authority key identifier: 46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/OH9xpQ6tHkZALSIxwhkEIB958W0.roa
Signing time: Thu 07 Mar 2024 06:46:22 +0000
ROA not before: Thu 07 Mar 2024 06:46:22 +0000
ROA not after: Wed 29 Jan 2025 15:30:22 +0000
asID: 150769
IP address blocks: 157.15.70.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 10:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461BC0E516022C3C278FC892420705FEB85668D9
Validity
Not Before: Mar 7 06:46:22 2024 GMT
Not After : Jan 29 15:30:22 2025 GMT
Subject: CN=387F71A50EAD1E46402D2231C21904201F79F16D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9b:3b:75:12:99:9d:03:dd:1d:12:66:16:4f:
c4:92:f1:a8:bd:e9:94:5d:a4:3d:d8:e3:04:ea:5d:
5c:49:e4:34:25:35:9c:d7:34:d2:45:a9:b6:a1:88:
b0:ff:5f:11:6c:7e:b9:a8:4d:6a:08:18:b0:0a:88:
02:8c:a2:34:8e:c1:c3:9d:5c:f0:bd:9d:28:6c:4a:
4a:7c:9d:1e:d5:3d:75:5d:a1:83:12:c3:60:33:a3:
bc:c8:4a:81:fa:1e:47:f6:d6:e4:82:51:7a:b2:22:
99:2e:17:45:ce:1d:6d:f7:06:5d:5f:66:bd:8b:1c:
c3:7e:77:7c:1d:24:47:b1:c0:6f:ba:14:f3:d1:56:
59:4c:9b:86:2e:8e:80:68:92:72:b5:71:4e:b7:af:
fc:db:d4:00:e3:eb:8f:3e:28:27:11:c4:26:40:45:
b8:58:a8:76:ab:74:8a:64:27:fe:8a:84:f5:b3:23:
08:b5:e5:e0:de:54:72:ae:7d:29:c3:d3:79:68:60:
20:e5:72:6d:ee:17:5d:7b:d6:e0:e1:10:d2:33:42:
7d:be:b6:b9:38:9f:b2:54:b8:bf:a7:b4:d9:09:04:
13:50:a4:af:9d:48:be:70:dc:7f:88:41:20:79:27:
fd:8e:38:a6:4a:0b:28:2c:90:95:7c:aa:b5:89:ee:
98:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7F:71:A5:0E:AD:1E:46:40:2D:22:31:C2:19:04:20:1F:79:F1:6D
X509v3 Authority Key Identifier:
keyid:46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/OH9xpQ6tHkZALSIxwhkEIB958W0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.70.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:eb:6f:8a:9e:5c:dd:5f:9d:9c:14:23:e6:26:bd:36:b6:ca:
88:d4:b3:ae:5a:9c:ab:0e:08:df:b0:63:23:c1:fa:c6:9f:fc:
7c:d9:1d:2a:23:52:fb:24:70:be:45:44:0c:8f:f6:89:31:1f:
d8:07:51:b7:a7:0d:31:2a:f0:97:5d:68:ab:32:86:cf:0f:15:
23:ab:1b:97:fb:be:12:0b:90:d2:e6:95:a7:ca:2e:d1:9e:0c:
52:a0:84:06:a6:5c:1c:36:62:68:95:d9:9d:66:31:a0:4e:31:
68:66:98:bb:87:81:6d:ee:5f:49:3d:38:6e:e2:52:3a:63:c1:
53:6c:9f:5a:8e:07:db:43:29:7f:ef:2e:43:93:20:f5:b7:2e:
28:db:67:59:16:c2:79:87:4d:b7:8d:02:8d:5c:f6:f6:08:63:
94:7e:f8:86:be:94:7a:b1:ba:1c:65:ff:ef:81:94:e6:f0:d4:
c8:95:dd:83:41:84:a6:f2:a5:e3:ea:b9:7b:67:c3:b9:d9:0f:
66:93:5b:47:02:d8:dc:bf:a0:1c:55:ca:51:ed:1f:e9:03:7c:
ca:cf:47:54:f9:13:be:27:1e:c9:28:cd:06:28:ab:ba:e2:e5:
70:e6:f0:a7:50:8a:1f:62:3a:3d:53:ae:fc:b5:cc:fc:9c:9f:
25:37:3f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org