Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/wavmx0eLtNRv8aHHimDfObqFnkU.roa
File: wavmx0eLtNRv8aHHimDfObqFnkU.roa (raw, json)
Hash identifier: rqOAj9/jCT+ApE5fRUhr7fjs6mfoayPNlUi1gvePAXQ=
Subject key identifier: C1:AB:E6:C7:47:8B:B4:D4:6F:F1:A1:C7:8A:60:DF:39:BA:85:9E:45
Certificate issuer: /CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Certificate serial: F1
Authority key identifier: 3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/wavmx0eLtNRv8aHHimDfObqFnkU.roa
Signing time: Tue 07 Feb 2023 08:34:54 +0000
ROA not before: Tue 07 Feb 2023 08:34:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63893
IP address blocks: 2400:50a0::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Validity
Not Before: Feb 7 08:34:54 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C1ABE6C7478BB4D46FF1A1C78A60DF39BA859E45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:6a:c2:d2:20:d1:38:dc:e5:36:d6:a2:5a:
08:88:da:de:b6:5d:be:c9:0d:f8:78:38:e5:3e:24:
f1:c9:8d:48:4d:a5:9f:07:34:f4:bb:6a:45:7c:91:
85:3c:9c:77:d0:96:3b:6d:03:a8:32:65:cf:c5:5d:
6e:47:0c:30:8e:5c:cb:a2:a7:23:af:77:4f:1e:78:
5c:d0:c2:8a:36:a4:98:1e:1f:b3:7e:0d:f6:f8:a3:
50:d7:63:07:07:29:a2:b4:dd:19:aa:17:c8:de:57:
2c:ae:11:20:1e:ac:bd:de:02:5f:04:a5:5d:45:2c:
7f:7c:09:3b:36:97:42:ff:cd:dd:91:54:da:bb:c0:
cd:6c:e6:1e:07:74:c7:fe:c3:f9:2d:51:0c:b3:be:
d6:1e:0e:2e:54:72:38:b9:ab:f6:a7:d1:85:ff:fa:
7f:1a:67:3b:c4:ad:0a:4a:58:d0:77:16:d7:ed:7c:
20:37:19:23:42:9c:f8:11:6b:f8:f6:bd:48:77:c0:
5a:32:65:b3:58:99:23:27:50:74:32:3d:1a:64:0f:
9e:de:b6:b9:9b:5a:6b:9e:1f:b8:5a:21:c8:8d:21:
76:a2:ea:d1:51:49:54:2b:cc:bb:cc:6f:b5:c2:f5:
de:84:c4:a5:ea:b3:4d:ac:73:ca:ca:58:6c:d3:8e:
76:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AB:E6:C7:47:8B:B4:D4:6F:F1:A1:C7:8A:60:DF:39:BA:85:9E:45
X509v3 Authority Key Identifier:
keyid:3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/POusQFclHIqquVTcIgsiSWvu9WM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/wavmx0eLtNRv8aHHimDfObqFnkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:50a0::/32
Signature Algorithm: sha256WithRSAEncryption
88:e8:c0:87:06:98:e2:95:4a:07:69:30:f3:c3:ff:e9:d1:ff:
04:ee:3a:db:26:cb:70:4e:80:3e:25:ae:10:2a:d7:c4:0f:ef:
bc:2d:23:89:b2:7b:90:87:72:b1:34:b2:ce:ac:9a:8d:bc:08:
9a:66:7b:48:48:f5:b2:c1:b8:11:2f:d4:f3:e5:68:8a:30:66:
c3:c2:b3:ac:94:dd:1b:63:66:ca:22:7e:08:93:5e:6f:6c:a2:
e3:07:cd:d4:82:ed:f3:9a:99:f9:95:71:63:80:81:51:34:9b:
66:20:28:07:8c:6f:cd:c7:e2:1c:73:cb:b6:ff:f8:18:e3:d6:
12:70:80:53:9e:4d:bb:3f:ec:1b:d0:21:c9:0e:c2:3e:a6:9b:
21:2d:73:a6:94:92:9b:3c:14:37:c7:da:03:02:55:41:e2:19:
a8:ea:d1:f9:96:56:b2:d5:cb:60:70:13:09:e1:2d:75:b4:3a:
d0:9b:af:ee:0c:27:a8:88:34:09:dc:89:93:19:fa:84:f1:fb:
6e:7a:9c:ff:34:0b:33:27:62:46:c7:a7:30:47:6a:94:3b:d1:
7e:c7:d9:35:c5:10:50:ba:07:92:75:2f:19:30:eb:f4:21:e0:
ac:d4:de:c1:b1:f0:31:0c:5a:d4:c3:ca:da:7d:70:fb:8a:d2:
37:e3:f9:5f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org