Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/AiLLoC58dLIYaQv0MQSOVom9bM0.roa
File: AiLLoC58dLIYaQv0MQSOVom9bM0.roa (raw, json)
Hash identifier: jWtrvDi6qi0ysD3iFrUk27qQLypd5ZLYdX1DEvm/lKA=
Subject key identifier: 02:22:CB:A0:2E:7C:74:B2:18:69:0B:F4:31:04:8E:56:89:BD:6C:CD
Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial: F1
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/AiLLoC58dLIYaQv0MQSOVom9bM0.roa
Signing time: Thu 30 Mar 2023 01:29:08 +0000
ROA not before: Thu 30 Mar 2023 01:29:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63895
IP address blocks: 103.185.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Validity
Not Before: Mar 30 01:29:08 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0222CBA02E7C74B218690BF431048E5689BD6CCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:38:b6:49:fc:92:f0:b8:5a:e1:7e:63:06:44:
b2:02:d5:27:c6:80:c4:2e:de:bc:2f:73:5f:cc:6a:
f0:d7:8e:25:d2:75:06:a0:42:2b:b8:45:ac:ea:2f:
10:37:6c:24:31:f0:26:3e:d1:8f:8e:9a:05:0f:70:
2b:72:71:9e:d9:aa:60:f8:d9:8b:ae:5c:93:c2:9f:
42:a5:95:db:6e:43:36:ba:39:71:3e:ba:56:55:29:
27:82:e0:aa:0f:e5:81:c0:0d:a5:59:6c:26:2a:6d:
eb:1e:37:08:b1:c4:45:19:12:39:e8:f8:d5:87:8e:
93:b8:63:69:bd:2d:3b:2c:24:4d:02:83:ef:44:27:
75:9c:89:a0:d6:45:db:a1:6d:6f:a5:70:b8:b4:97:
98:99:13:40:9c:40:8d:66:0a:31:6d:19:c6:ff:10:
f3:c9:22:6a:df:be:6f:3d:7a:cf:d1:5e:21:76:a9:
be:7f:53:f9:5a:10:df:c8:22:84:7e:40:d7:c9:a4:
f7:33:26:fe:22:d9:4e:ae:8f:38:83:6e:e1:1d:10:
39:9a:31:f4:03:7b:07:56:72:96:8d:54:85:3d:56:
1a:c3:c5:c1:17:0c:c2:bc:c4:b7:ec:e8:be:ae:fa:
5a:35:15:3d:53:eb:ab:6c:b6:38:9f:76:d5:88:6d:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:22:CB:A0:2E:7C:74:B2:18:69:0B:F4:31:04:8E:56:89:BD:6C:CD
X509v3 Authority Key Identifier:
keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/AiLLoC58dLIYaQv0MQSOVom9bM0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:64:c9:36:56:ac:16:d5:da:cc:9e:de:35:23:95:fb:9a:1a:
96:d7:1c:4f:94:ac:c1:ba:2a:33:b5:e9:b5:e0:85:50:30:e1:
06:36:59:50:ce:45:eb:19:d2:2b:72:47:c8:ce:91:80:c3:11:
6d:22:b9:ed:d7:6e:a7:db:2c:7c:d7:41:fe:5f:08:74:5f:69:
e5:99:7f:6f:fc:ec:5a:af:8d:3a:e3:c8:8f:7f:55:f2:3e:f4:
bc:5f:40:f7:d8:78:46:3d:76:e1:9d:f6:10:07:dc:fd:2f:f5:
aa:7c:79:54:76:fc:e4:ab:4e:d3:4d:50:90:6d:96:1a:f2:e3:
8f:fe:1e:83:0d:44:3a:90:94:48:3b:a3:e8:02:ad:e3:57:db:
bc:2e:1a:4d:41:6d:62:51:44:36:d1:1c:c0:a3:c4:04:a6:50:
a3:85:5c:20:76:4d:fe:57:e2:49:3b:21:2e:0b:51:d6:32:b2:
d3:30:cd:ff:16:03:46:e8:a8:10:7c:0d:70:f1:58:58:84:f5:
98:76:cb:13:53:42:09:da:b4:88:79:6f:98:9c:54:94:f3:cb:
4b:81:f1:92:64:49:11:3d:f6:9b:90:c2:77:21:70:c2:db:ad:
3e:99:c3:02:6a:3c:5d:4a:41:50:69:e1:b3:35:ef:48:e5:4d:
1b:de:b4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org