Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/_Y3yWQVoezqD6uLHKHVAQFlOyd8.roa
File: _Y3yWQVoezqD6uLHKHVAQFlOyd8.roa (raw, json)
Hash identifier: lmaSkdV2cySDgoothcf2nTWrajtcUSUrVgXvnHuO7uI=
Subject key identifier: FD:8D:F2:59:05:68:7B:3A:83:EA:E2:C7:28:75:40:40:59:4E:C9:DF
Certificate issuer: /CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2
Certificate serial: 03
Authority key identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/_Y3yWQVoezqD6uLHKHVAQFlOyd8.roa
Signing time: Wed 20 Sep 2023 18:53:00 +0000
ROA not before: Wed 20 Sep 2023 18:53:00 +0000
ROA not after: Wed 18 Sep 2024 09:08:03 +0000
asID: 131642
IP address blocks: 103.127.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2
Validity
Not Before: Sep 20 18:53:00 2023 GMT
Not After : Sep 18 09:08:03 2024 GMT
Subject: CN=FD8DF25905687B3A83EAE2C728754040594EC9DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e6:00:86:1d:87:a3:d3:b8:69:9c:cc:57:5a:
f5:b4:e0:08:90:6d:b0:85:b1:73:f0:30:a7:fb:20:
bf:85:e3:49:f9:b3:3a:d1:39:db:bc:e8:b8:9f:0c:
3b:ca:76:52:83:ea:5d:de:b6:4e:42:ca:de:d5:37:
a8:5b:a8:99:86:f9:81:1c:21:12:3a:88:44:a1:e7:
4d:e5:c6:a3:c4:1e:43:21:f1:84:38:e9:33:01:f4:
c0:1b:dc:bb:d0:9b:1d:97:09:d8:c9:14:89:b6:2c:
89:63:ae:f4:29:6e:8b:13:d6:ef:ac:22:f9:5a:84:
a5:3f:7e:41:fe:e7:36:50:d7:54:4a:43:7e:5f:b8:
b2:e3:c0:0b:af:ce:94:b7:f4:3e:bb:e8:43:43:40:
89:f3:40:ff:a4:4b:ff:e9:ae:b2:09:74:b7:10:4b:
aa:7a:70:6e:10:b5:d2:da:67:bd:d1:26:0b:66:2a:
cb:a9:39:d3:78:9c:6f:de:01:2b:64:e0:44:79:28:
f7:1f:18:5c:eb:2d:80:a3:32:e9:25:8a:ff:b5:15:
30:2d:a5:4e:8f:28:ea:bc:18:77:05:98:a0:34:36:
e0:e9:73:8d:4d:41:8d:19:a6:82:c9:cf:9d:ea:f1:
d8:53:c4:d3:90:e0:db:73:7c:c0:3f:2f:67:8c:24:
cd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8D:F2:59:05:68:7B:3A:83:EA:E2:C7:28:75:40:40:59:4E:C9:DF
X509v3 Authority Key Identifier:
keyid:A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/_Y3yWQVoezqD6uLHKHVAQFlOyd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.218.0/23
Signature Algorithm: sha256WithRSAEncryption
87:2f:4a:38:f6:6d:5c:62:88:ff:ec:f0:49:d4:16:a0:51:cb:
b1:a9:1e:d5:9a:a0:0c:34:23:21:e3:9b:f2:b0:0c:35:55:8b:
8f:5b:20:3a:41:3d:3e:ce:db:90:91:a3:27:a8:10:91:6d:bf:
3f:c2:1d:04:ee:4c:bb:96:74:98:84:70:8e:d8:14:e8:1e:8d:
9f:4d:75:e9:02:49:78:23:26:d4:b1:ec:fc:20:24:20:a2:b4:
72:43:d3:48:bd:c5:01:73:ae:44:d9:5c:93:77:f5:04:12:f9:
5d:b1:06:ce:51:04:6c:50:5e:36:47:a4:60:c7:6c:4b:d4:bc:
c9:f1:ad:35:72:ae:31:a0:45:6e:8d:31:33:3a:bb:6e:39:bb:
36:f0:75:f8:eb:4b:51:f7:46:ba:fe:fd:6d:72:31:8d:fb:71:
4f:34:51:83:61:cb:50:6e:99:2a:1a:1c:ea:a4:5c:a6:46:c0:
e7:ad:a0:69:80:f8:91:b7:df:d4:c8:dd:f8:67:7e:82:3c:5c:
bb:2f:30:68:ab:0a:ab:83:cd:5d:5d:c1:80:dc:a5:8b:b3:70:
bd:90:bc:c5:92:bf:03:85:7c:8d:98:f4:6d:26:dc:2a:10:95:
e4:dd:a9:30:6f:8c:d4:c6:9a:d9:3d:88:25:a6:35:41:6c:18:
f6:6c:17:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 10:11:23 2024 by rpki-client on console-fra.rpki-client.org