Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/UY-E1NOzAz2LRbl12r5cRLtQ7_4.roa
File: UY-E1NOzAz2LRbl12r5cRLtQ7_4.roa (raw, json)
Hash identifier: greOagKXi34syQ0uiaG8W2tEWyQ0AKKUkZTDKqyEvmI=
Subject key identifier: 51:8F:84:D4:D3:B3:03:3D:8B:45:B9:75:DA:BE:5C:44:BB:50:EF:FE
Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Certificate serial: F0
Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/UY-E1NOzAz2LRbl12r5cRLtQ7_4.roa
Signing time: Tue 07 Feb 2023 08:35:15 +0000
ROA not before: Tue 07 Feb 2023 08:35:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63893
IP address blocks: 2400:5060::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Validity
Not Before: Feb 7 08:35:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=518F84D4D3B3033D8B45B975DABE5C44BB50EFFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:15:9d:9b:2e:79:35:ac:8c:15:44:61:ac:
d2:cf:3d:35:7f:0a:60:e0:da:fd:b4:6b:32:ef:a4:
86:ae:d1:bf:df:6e:4a:49:58:23:bd:48:b0:be:cc:
94:ec:c0:d2:f5:41:1d:ec:de:ec:46:5b:99:4f:e9:
87:17:95:31:b5:fb:bb:45:d0:94:d1:2e:51:71:c3:
8e:ae:05:e1:c2:d6:df:68:5a:0a:27:01:2b:33:4a:
15:0c:04:98:26:3c:0b:77:86:ce:59:7f:19:66:ec:
bf:70:a6:b2:87:c6:28:ef:21:d7:e9:ed:0b:2b:c8:
56:2a:4c:c5:36:78:3c:44:03:4b:78:58:9e:c2:03:
0a:8f:ea:84:9e:39:e8:9b:ce:e3:eb:e9:48:bc:d5:
da:82:0a:7a:24:53:f3:45:69:91:6b:e2:50:4e:e7:
0e:48:17:ef:a8:1a:70:5e:84:44:6a:24:3f:df:5a:
4e:ce:ef:aa:57:1d:4e:72:bb:59:32:26:6d:eb:de:
45:41:bf:0d:64:8f:94:64:70:00:c8:31:20:f4:2e:
11:ab:ec:c9:b9:1e:9f:0a:6e:83:89:8b:f9:7e:09:
fd:ff:06:b3:2b:16:4a:f8:07:60:bf:88:d2:4f:fc:
01:35:f2:8d:43:11:09:36:73:43:ea:a6:9b:b1:4a:
2f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8F:84:D4:D3:B3:03:3D:8B:45:B9:75:DA:BE:5C:44:BB:50:EF:FE
X509v3 Authority Key Identifier:
keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/UY-E1NOzAz2LRbl12r5cRLtQ7_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5060::/32
Signature Algorithm: sha256WithRSAEncryption
7a:65:85:ac:04:11:c0:ad:fc:c0:e4:34:bb:e8:b5:3a:20:66:
fd:71:9f:2b:d9:25:70:b4:92:77:65:0a:33:da:17:aa:0a:43:
b0:c3:e2:aa:69:c5:86:0c:86:5c:d3:df:8c:80:70:a3:8f:b6:
38:b2:d2:ba:ad:96:47:8c:2b:25:b8:f1:fc:35:40:53:69:31:
fd:2d:13:9b:85:89:73:4a:53:d6:2a:b4:86:5e:b5:86:95:8d:
fe:ac:ef:55:87:e6:56:5d:f2:f4:2f:95:05:40:01:cb:34:99:
02:97:93:3c:87:2d:b4:2a:5d:59:cb:ec:20:cd:1b:68:e3:95:
d7:f6:35:fc:84:97:61:05:5e:bd:94:db:f6:c6:6e:cb:0a:72:
c0:70:d7:10:a6:a2:20:7b:9a:41:7c:4b:13:29:d3:d6:cf:07:
0e:85:cc:c7:3e:ff:9e:33:d3:82:ff:d4:82:c9:ae:d5:1b:34:
f2:a6:6f:6e:4a:8d:2c:b9:0a:10:a5:c2:b8:c0:1e:25:86:c3:
0d:62:55:18:6d:a3:1d:27:14:ad:d6:0d:b2:cd:44:e4:f4:6b:
f5:b5:30:58:fd:9d:35:3e:b4:f1:c8:33:eb:18:14:4c:0a:d1:
ed:9c:e1:01:c2:b5:86:ff:23:c4:db:ad:04:77:38:dc:83:c8:
b8:b2:6f:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org