Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
File: MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa (raw, json)
Hash identifier: V0z/OHdfb5wLKF3aJwmay8KoilEhpsTDhsS3QIHxNGI=
Subject key identifier: 31:F5:8D:1C:51:E1:E9:8D:16:48:01:46:B3:C3:33:65:C5:54:BF:DB
Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial: F1
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
Signing time: Thu 30 Mar 2023 01:29:08 +0000
ROA not before: Thu 30 Mar 2023 01:29:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63895
IP address blocks: 103.185.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Validity
Not Before: Mar 30 01:29:08 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=31F58D1C51E1E98D16480146B3C33365C554BFDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:18:5d:c4:37:88:dc:c0:cd:ec:83:74:e5:
19:77:42:3a:f6:62:5c:93:92:fd:29:c3:90:0b:c5:
ae:f5:0d:cf:c7:6d:00:2c:e4:fe:54:85:9b:f7:0f:
21:a3:de:fd:5a:23:9c:78:84:cc:b2:5c:e1:7b:82:
77:b2:05:77:d7:6b:36:9c:d9:4d:d2:f9:2f:e4:d5:
e9:d1:e0:a6:58:43:be:c5:cb:15:42:1c:4f:f5:38:
2d:95:ad:7b:48:f9:69:6e:77:af:7f:03:d4:ba:a7:
9b:b0:05:07:34:07:f6:2b:97:37:5a:2c:24:1c:e0:
57:30:7c:ac:33:c6:e3:7e:8b:ca:77:88:9c:d8:b4:
00:8c:02:ce:ca:b5:64:6a:7c:95:2a:91:c4:48:81:
4e:c4:2f:c9:79:c0:b6:3e:74:27:64:01:fc:f8:54:
ad:b8:93:82:50:02:30:dd:f9:09:c8:01:3f:c7:0c:
d0:aa:e9:6c:a5:59:47:97:69:c4:16:d4:0d:8d:1b:
e5:65:c5:ed:55:dd:7b:c6:4c:f7:67:77:2a:bd:8c:
b3:4c:de:b7:dc:75:6b:4e:43:da:26:01:ed:c8:1f:
2c:a4:18:58:37:49:63:48:9a:62:90:14:a1:c0:04:
00:88:b4:4d:e1:cc:4f:af:9e:09:78:52:54:62:73:
e5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F5:8D:1C:51:E1:E9:8D:16:48:01:46:B3:C3:33:65:C5:54:BF:DB
X509v3 Authority Key Identifier:
keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.28.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:e4:8c:39:a8:b6:b2:f3:75:dc:f5:0b:bd:ae:65:ec:d7:42:
2d:90:8f:37:3a:77:c3:cf:54:a4:87:66:73:b9:32:7e:92:7b:
43:b2:5e:b6:8e:9d:01:fd:90:93:79:d7:60:c1:33:ca:73:cc:
85:8e:63:85:2d:66:88:e6:ff:9e:b0:ce:12:d1:ae:8d:de:b1:
d0:16:33:21:16:e0:92:00:88:62:d0:23:23:a5:23:d3:26:20:
93:5c:b0:09:9c:7a:bd:f3:e1:2b:63:5e:40:8a:da:26:50:fe:
e0:de:b5:e6:73:cf:3d:a3:fc:55:df:40:bd:31:bd:70:78:b0:
e0:8b:b4:8c:4e:05:0d:bd:1f:44:9f:ba:e6:72:68:f6:64:4d:
38:f5:13:5e:01:1b:92:d1:8a:2f:ed:34:15:d8:48:f0:bb:d1:
a8:98:61:9f:ea:83:18:5e:97:dd:08:74:1c:a9:b6:02:7e:00:
c4:3e:62:bd:14:49:76:81:8f:52:57:6a:f8:19:90:04:36:4a:
d9:f5:8d:51:ea:c0:84:ce:41:f5:0f:2d:a8:ed:90:77:38:22:
85:ba:85:0b:77:c6:ab:91:54:89:69:d3:43:3f:41:30:ec:c1:
37:9e:8a:d2:a0:8b:60:c2:5a:42:90:a4:72:9f:4e:90:72:e0:
80:ea:fc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:14 2023 by rpki-client on console-fra.rpki-client.org