Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/OObZouZHppbAjoeWqr-V3uqFzKM.roa
File: OObZouZHppbAjoeWqr-V3uqFzKM.roa (raw, json)
Hash identifier: C5s6FhU/yc+KovljS1RV4d5EewpOAyukOJR1ZvRZ5EM=
Subject key identifier: 38:E6:D9:A2:E6:47:A6:96:C0:8E:87:96:AA:BF:95:DE:EA:85:CC:A3
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 63
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/OObZouZHppbAjoeWqr-V3uqFzKM.roa
Signing time: Mon 29 Apr 2024 19:12:32 +0000
ROA not before: Mon 29 Apr 2024 19:12:32 +0000
ROA not after: Tue 24 Dec 2024 15:30:20 +0000
asID: 32595
IP address blocks: 36.50.228.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 19 May 2024 08:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Apr 29 19:12:32 2024 GMT
Not After : Dec 24 15:30:20 2024 GMT
Subject: CN=38E6D9A2E647A696C08E8796AABF95DEEA85CCA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f6:79:f9:34:e6:e4:3b:69:aa:94:dc:b2:b8:
b9:ee:f8:f2:05:fe:93:64:f6:43:54:c4:57:52:51:
4c:5c:6c:83:25:d1:70:3e:58:46:d3:da:63:b2:a3:
9b:cb:74:43:4f:41:24:47:d9:56:7c:aa:c4:5a:83:
45:cd:2b:e9:f0:e3:f9:e4:1c:e3:ad:93:c0:62:ac:
5e:20:22:48:39:a8:c9:b8:45:1e:96:1d:8e:78:a0:
ac:da:50:5e:37:1c:19:72:cd:70:9e:97:fc:5b:d4:
f5:d6:cb:b4:64:2b:53:17:b5:a4:a3:4d:81:a2:e4:
91:92:42:23:8a:06:af:64:4f:b1:03:db:36:42:ae:
31:af:16:ec:07:db:08:21:43:8c:a2:28:0b:a6:c1:
89:c2:29:0c:08:df:d8:2f:fd:76:e9:87:80:2a:1f:
42:14:32:3b:2e:4a:d3:43:4c:00:ae:05:94:a9:f4:
da:9c:b0:af:cc:0e:e0:f7:cb:6b:7d:95:e2:87:89:
64:f2:0d:29:e2:1e:96:32:58:b3:bc:53:ac:bc:f4:
f4:a8:56:2b:e5:b0:2a:12:45:a5:50:c6:58:02:4a:
46:c7:a5:0c:9b:5f:5f:f8:08:9d:d8:fb:a7:ff:0f:
20:20:d0:94:7c:ba:de:07:2d:3f:5d:7f:67:97:89:
4f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E6:D9:A2:E6:47:A6:96:C0:8E:87:96:AA:BF:95:DE:EA:85:CC:A3
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/OObZouZHppbAjoeWqr-V3uqFzKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/24
Signature Algorithm: sha256WithRSAEncryption
06:3e:fb:48:a4:87:13:3b:66:09:03:66:db:93:a6:d4:ba:4f:
7d:99:8a:e8:01:30:90:8f:3d:b4:f8:1e:ea:63:05:21:04:d5:
21:aa:3a:ff:f8:82:2c:fd:f6:d5:bb:bb:71:ce:d4:0f:0a:ac:
cc:1b:cf:a0:24:22:b3:91:f1:09:5c:ec:9c:bc:c0:4a:c9:ea:
bb:32:76:8e:c0:0a:f8:b3:56:1e:f8:fc:a5:d7:39:19:5d:c0:
99:86:b7:0d:7b:48:72:e5:d2:1b:5c:9d:9f:27:3a:17:3e:72:
46:cc:e3:d5:9a:ae:a5:38:08:e7:cd:c0:58:94:6d:c5:a6:23:
14:92:19:9e:ce:a2:63:36:96:e8:eb:66:a6:b0:2c:e3:25:9f:
f1:8c:f0:b7:a8:a6:89:56:b3:5b:f0:96:f8:ec:60:45:aa:6c:
33:e8:d0:43:1f:24:a1:5a:14:5b:92:f5:98:af:48:d9:a1:d8:
1c:d5:99:26:85:6f:ce:ae:5d:98:e5:57:f2:fa:7c:0c:75:79:
88:ce:b0:61:8e:24:e9:cc:8b:43:b2:af:b6:9f:58:94:de:86:
80:77:cc:f0:86:52:02:f1:3c:01:ad:83:9d:75:ea:df:ed:02:
9f:74:0d:1b:fe:88:be:d3:32:a4:ea:9b:4f:26:f8:d8:64:ac:
c9:72:e8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org