Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/yjk8-OjD2-6I4SlXxbOfI6o-AGk.roa
File: yjk8-OjD2-6I4SlXxbOfI6o-AGk.roa (raw, json)
Hash identifier: N8G2n7+kjdS3Fr+lKPf15grGuYYxGvYzjQIgCZvPXQU=
Subject key identifier: CA:39:3C:F8:E8:C3:DB:EE:88:E1:29:57:C5:B3:9F:23:AA:3E:00:69
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 0A0B
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/yjk8-OjD2-6I4SlXxbOfI6o-AGk.roa
Signing time: Thu 15 Sep 2022 02:50:00 +0000
ROA not before: Thu 15 Sep 2022 02:50:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 14618
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2571 (0xa0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Sep 15 02:50:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CA393CF8E8C3DBEE88E12957C5B39F23AA3E0069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:e7:7f:f9:41:8e:d0:36:03:27:b9:29:18:
07:e0:30:8e:0c:7a:95:33:f1:fa:28:16:9f:c9:80:
39:0e:b1:12:ee:c1:b6:42:da:37:8a:45:da:da:27:
60:30:67:37:9e:38:85:e6:67:7f:1c:71:b7:7c:01:
a7:e8:1a:24:a4:b4:dd:4c:70:c8:dd:5c:d2:ee:27:
82:38:17:31:8c:c8:a9:5a:ca:a1:4b:ed:9e:9a:55:
b0:cf:ae:ae:0b:bc:d5:4c:cc:25:c1:5c:14:a5:e7:
b5:2d:69:da:e9:f6:02:8e:05:75:20:07:4b:96:60:
86:8a:4b:d4:f4:4c:b7:ab:24:ac:fb:05:76:eb:7f:
54:d5:97:36:a6:de:42:44:9b:ea:93:11:ee:00:8d:
42:d5:39:d2:13:af:3d:e5:4f:6b:45:ba:24:1e:31:
a9:f8:a5:31:67:41:85:2c:8d:8c:56:35:76:b7:10:
c8:bd:84:54:4a:35:48:da:10:49:ec:3f:6a:b0:ae:
93:39:23:04:fb:0a:c3:9e:a8:f4:bd:69:d5:fc:60:
a6:fb:19:96:84:c1:3b:f3:46:1d:8e:e6:72:37:18:
ee:26:30:84:89:f2:05:e9:97:d4:f2:63:ae:77:89:
15:01:9a:3b:81:1a:49:e5:6d:52:e5:de:cb:21:1b:
12:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:39:3C:F8:E8:C3:DB:EE:88:E1:29:57:C5:B3:9F:23:AA:3E:00:69
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/yjk8-OjD2-6I4SlXxbOfI6o-AGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ab:44:b0:af:c2:3c:30:6c:03:12:e9:55:e7:17:f5:a2:80:
8a:0b:b3:23:d7:54:3c:3e:65:b9:ac:f0:cd:1c:64:54:0e:a6:
90:43:be:b1:13:26:90:df:d1:5e:5a:d7:c4:54:b3:e3:92:c0:
04:aa:ec:b5:fc:ad:25:2d:52:2c:e9:41:b3:b2:4a:a7:69:9d:
1f:91:cb:0d:ae:b9:91:aa:b0:b6:42:15:ac:d0:0a:64:94:b7:
77:f1:0c:50:fa:d1:81:f6:36:af:87:82:b1:80:a9:d7:6d:6d:
66:6f:b0:12:5e:e3:97:a1:09:43:c5:03:6f:11:a3:2f:07:79:
71:18:f2:b4:8a:11:b0:d1:a8:08:f9:bc:a1:d2:fa:b7:95:f6:
49:7c:69:6c:b0:6d:e3:44:7e:b2:71:93:03:d7:9a:fd:69:69:
04:ea:09:d7:73:b4:84:d0:de:e2:a8:23:b5:10:87:8d:c7:c6:
85:5f:d3:4c:e8:91:e0:87:48:25:f7:86:31:cb:89:6e:cd:dd:
9d:de:00:93:cc:58:68:50:d3:24:59:49:a1:e3:c7:a6:46:d1:
2d:7d:a6:5d:02:a7:38:57:f3:65:35:5d:3a:94:67:32:a7:3a:
36:98:1a:d7:b8:b3:ce:5d:b3:ab:68:92:1b:9b:19:2c:cc:a1:
10:e3:47:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org