Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8EkgQrz3jey2oKOMuf2ISZ0o2Ss.roa
File: 8EkgQrz3jey2oKOMuf2ISZ0o2Ss.roa (raw, json)
Hash identifier: 9Q8O3DHDHsDgS7HL0JOw1wOfqrAIc4WDjc3OBTdshnI=
Subject key identifier: F0:49:20:42:BC:F7:8D:EC:B6:A0:A3:8C:B9:FD:88:49:9D:28:D9:2B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F78
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8EkgQrz3jey2oKOMuf2ISZ0o2Ss.roa
Signing time: Fri 01 Sep 2023 08:29:11 +0000
ROA not before: Fri 01 Sep 2023 08:29:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 55497
IP address blocks: 150.116.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 07:54:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3960 (0xf78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F0492042BCF78DECB6A0A38CB9FD88499D28D92B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:58:45:b3:56:f6:03:fd:60:1d:12:da:ea:e1:
0a:be:e9:a3:68:f1:43:c8:eb:25:33:d0:21:bf:11:
a0:5d:8b:cd:c2:75:0c:6b:0d:16:4d:d4:2e:8c:a0:
6d:86:45:7e:5d:c7:37:bd:83:48:c5:06:57:5c:1c:
c0:e9:7a:0d:90:59:10:34:01:2d:50:3c:8b:bb:1d:
bf:0c:90:bc:c9:c9:ba:2a:cf:4a:77:7a:12:71:f5:
c9:17:ff:93:23:38:73:64:89:da:02:e7:35:ee:83:
47:8b:3a:f6:7e:31:69:8b:be:05:a8:7b:26:3a:ee:
36:e5:cc:a9:5d:93:9e:56:4d:eb:60:c5:36:cb:b7:
0a:3b:3f:0e:19:1c:d8:ab:4a:cf:a3:90:0e:26:f1:
95:91:cb:e4:61:66:7c:5d:79:30:d3:db:5b:93:b5:
9e:81:66:3b:f3:39:17:cb:b4:70:0c:2e:bb:f0:b5:
9b:af:d4:a3:7a:ef:c6:a5:e7:7f:ea:40:70:e8:f1:
93:55:cf:34:3b:42:ac:50:a8:7b:5e:0e:c7:ed:00:
90:52:ca:e8:79:2b:43:2e:2f:3e:94:7c:d0:f2:38:
06:c6:40:4e:b0:d4:48:6d:2e:46:ef:7e:e3:9a:3f:
1b:c5:54:5b:e4:48:42:a0:d4:7b:94:b5:47:da:98:
8e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:49:20:42:BC:F7:8D:EC:B6:A0:A3:8C:B9:FD:88:49:9D:28:D9:2B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8EkgQrz3jey2oKOMuf2ISZ0o2Ss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
74:bb:5e:17:02:88:ea:cb:92:4b:a7:c3:ab:6c:9f:2b:07:e2:
e2:37:c9:52:00:bb:63:42:2e:e7:b6:77:79:5d:3d:f3:86:2c:
53:0c:3e:be:80:ba:55:25:11:a4:c1:6f:3a:46:4a:f1:db:22:
de:b7:03:92:48:a3:df:17:02:42:ef:90:a0:ea:f1:ee:a4:93:
c7:1b:1e:0e:67:c1:d4:a3:af:a8:1a:3e:30:2c:c7:07:7f:5f:
8c:ed:08:8f:41:18:c7:b2:67:c7:d5:b9:fe:0b:a6:76:34:35:
3d:64:cb:eb:64:a2:f0:f1:86:d7:d9:1e:96:7c:ad:4d:13:8d:
27:f1:4f:ca:30:99:1e:f0:4a:e5:be:68:1d:ec:a4:b5:84:2d:
9a:74:5a:9f:b5:0a:97:0c:5e:d8:96:0e:3c:d4:d1:d3:a7:4f:
77:da:60:a6:a8:53:c9:01:97:4a:2b:da:de:6c:9a:df:4e:fa:
08:be:94:d1:de:e6:9a:58:e7:ea:db:e2:c3:7c:16:1d:8a:5c:
ef:81:c5:6c:26:e1:0f:af:f5:b7:fa:17:ee:5c:43:2b:e6:33:
a1:df:bf:86:f1:63:63:0d:a8:5c:d8:0d:9c:93:12:ee:06:5e:
8a:57:d4:e4:03:39:aa:e2:c7:66:a5:0c:57:67:8a:4d:cc:2e:
d6:21:37:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org