Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XkS4WFP48hyYJDOeBbyPAEkUFaw.roa
File: XkS4WFP48hyYJDOeBbyPAEkUFaw.roa (raw, json)
Hash identifier: DdzQQD7iLaPMBWFRbG+cXJS3nlpZrFFv3dO8QkC8b6w=
Subject key identifier: 5E:44:B8:58:53:F8:F2:1C:98:24:33:9E:05:BC:8F:00:49:14:15:AC
Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Certificate serial: 0A10
Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XkS4WFP48hyYJDOeBbyPAEkUFaw.roa
Signing time: Thu 15 Sep 2022 02:49:02 +0000
ROA not before: Thu 15 Sep 2022 02:49:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 147035
IP address blocks: 2403:8ec0::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2576 (0xa10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Validity
Not Before: Sep 15 02:49:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5E44B85853F8F21C9824339E05BC8F00491415AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ba:15:2d:17:ec:2a:01:6f:f6:e0:1a:9b:84:
68:7b:17:62:d4:8e:d7:9e:13:37:db:10:60:41:5c:
53:9e:81:b9:48:c9:32:46:55:f2:ef:75:78:a9:9a:
71:fc:fe:4e:93:1e:cb:b6:76:7f:9b:ef:48:9a:81:
dd:53:3a:04:30:1e:d4:e3:58:c4:7e:64:ff:a6:7f:
70:0e:b3:b7:b4:89:54:5b:ac:bd:c2:e8:8a:30:fa:
70:33:d7:24:1d:9d:4c:44:89:e4:af:ff:ac:f4:40:
f0:74:47:f5:71:f0:06:68:93:81:95:a3:8f:dc:d8:
f8:47:70:b2:30:70:46:69:64:f3:cb:4d:a5:43:aa:
58:08:61:4f:af:12:cb:5f:30:9b:51:48:41:f5:f3:
93:bd:82:4e:54:3f:0f:26:66:54:04:e6:40:fb:97:
b0:fa:9f:cc:c0:b8:14:ef:0e:f7:2c:1c:58:ab:2d:
8d:e8:81:04:2c:be:29:0d:c9:29:68:1d:d9:87:5b:
dd:4e:94:7f:7b:08:3f:31:16:cb:1e:a2:70:1c:f8:
e1:6d:6e:32:ee:f4:14:d0:df:44:83:0a:77:0d:3d:
30:d6:9e:08:25:25:56:f4:87:25:a5:5b:df:5f:64:
e5:a3:30:60:68:87:09:d4:50:f6:2b:72:1e:8e:b0:
7f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:B8:58:53:F8:F2:1C:98:24:33:9E:05:BC:8F:00:49:14:15:AC
X509v3 Authority Key Identifier:
keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XkS4WFP48hyYJDOeBbyPAEkUFaw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
2f:bc:8d:9f:a5:e2:34:28:b1:55:dd:a0:d6:ae:ab:0c:cd:9f:
69:32:91:b7:2c:a0:f6:8e:96:33:a5:28:a0:d1:88:17:8d:8e:
54:e9:ae:88:b4:b4:1d:8c:b4:a2:9c:b8:ae:6f:c6:01:03:04:
5d:4a:84:26:68:e2:26:42:2e:bd:ba:ee:f5:cc:c9:0b:49:da:
6d:4b:f8:a0:63:7e:94:6a:5f:94:b5:52:10:77:e6:9a:15:33:
fc:26:13:83:22:c2:4c:d2:8f:67:c6:e2:d9:dd:47:b3:af:41:
a2:f9:c0:fc:03:78:6d:72:d4:79:75:49:cb:54:4c:d5:1e:a5:
e7:e5:22:54:20:ba:d2:04:83:c0:9c:d0:f9:1d:02:68:81:4b:
85:79:e4:77:e0:20:a2:72:2f:08:be:f7:2e:5e:1b:4f:71:69:
77:bb:3a:42:0b:2b:b6:0b:a1:f5:b9:b4:5a:6f:3d:fe:a0:6a:
55:6a:42:42:4b:97:98:91:87:d7:be:18:a5:1b:0d:e9:bc:9d:
35:15:15:3f:9d:fc:92:2e:05:c0:e7:26:2e:83:a1:1a:b2:52:
28:a6:af:5a:f9:9c:3c:43:42:60:67:91:eb:95:fa:b2:15:9d:
7f:f9:f9:e1:1a:21:f9:06:fe:53:d0:74:f5:db:a8:03:6d:e4:
16:ad:24:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org