Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q5EKYAhVDUOy9NRqsCIKHfnYti8.roa
File: q5EKYAhVDUOy9NRqsCIKHfnYti8.roa (raw, json)
Hash identifier: 3N6c6I3Q2I3rLqnI84THJgnSLuaLEPkwaJ393QrO8+U=
Subject key identifier: AB:91:0A:60:08:55:0D:43:B2:F4:D4:6A:B0:22:0A:1D:F9:D8:B6:2F
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 65
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q5EKYAhVDUOy9NRqsCIKHfnYti8.roa
Signing time: Mon 29 Apr 2024 19:13:44 +0000
ROA not before: Mon 29 Apr 2024 19:13:44 +0000
ROA not after: Tue 24 Dec 2024 15:30:20 +0000
asID: 131657
IP address blocks: 36.50.228.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 19 May 2024 08:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101 (0x65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Apr 29 19:13:44 2024 GMT
Not After : Dec 24 15:30:20 2024 GMT
Subject: CN=AB910A6008550D43B2F4D46AB0220A1DF9D8B62F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6c:06:63:88:e3:e0:9d:b9:d3:ca:55:26:8f:
3d:fb:95:8f:3e:de:1c:f0:bd:70:6a:56:e4:6d:a9:
05:f8:8f:b7:04:77:9f:d1:2d:17:c0:36:81:d9:95:
39:08:5d:0e:2f:e3:f0:e4:a2:79:ad:63:bf:9d:98:
90:ea:19:8b:19:c9:da:66:f3:21:a9:fa:80:8b:d2:
fb:6c:ad:a7:93:23:51:65:22:da:2b:12:39:45:52:
42:a6:5f:8c:61:fc:b0:7d:12:0d:52:30:c8:e3:4c:
42:b6:1c:70:33:f9:7c:c7:cf:4d:33:67:18:d9:02:
6c:0d:64:4d:7a:18:68:90:f7:7f:81:28:0a:fb:a4:
0c:47:57:ce:44:55:8d:30:ac:2f:f4:d3:00:2e:6c:
f6:80:75:dd:dc:a1:3f:97:cf:98:ee:fb:cf:70:57:
87:e5:77:52:7f:f0:57:86:94:1b:41:96:09:37:c7:
2d:59:06:fe:cd:38:16:ad:f3:43:d4:88:c1:bb:69:
19:83:dc:59:3c:44:f9:ac:32:87:60:22:86:c2:96:
46:96:ee:03:aa:49:d6:8e:64:b3:09:bf:e6:9c:31:
2f:88:e3:3a:90:de:fb:6f:55:0e:16:f1:24:59:9c:
58:3a:0c:20:7f:73:2a:86:b3:36:18:e1:f9:1a:e3:
a7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:91:0A:60:08:55:0D:43:B2:F4:D4:6A:B0:22:0A:1D:F9:D8:B6:2F
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q5EKYAhVDUOy9NRqsCIKHfnYti8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:33:b9:c8:53:ae:06:ff:8e:82:57:ca:71:68:66:c7:8e:ee:
10:00:54:0f:f1:f1:58:56:c3:6d:d0:20:5f:ea:2e:06:06:69:
d3:49:89:94:89:cd:70:22:e8:06:ed:ba:8a:c9:f5:69:24:5b:
de:69:27:69:2b:cb:cb:0b:78:26:0a:6d:09:c3:48:d2:30:2d:
e8:14:ee:48:e2:fe:93:88:31:05:7a:08:22:83:53:88:a9:03:
d8:0d:da:ed:5b:d4:f3:bc:99:6b:b2:87:24:da:f1:f2:83:4e:
2f:18:e0:49:a6:bd:1f:a6:5d:b8:c6:25:0f:d6:ce:09:c5:d4:
75:79:52:82:1a:eb:08:f4:7f:b3:48:99:ae:0f:b6:46:0b:29:
61:0c:dd:33:55:b5:5b:d1:2a:e2:fe:b6:de:87:6f:c7:d1:40:
a4:74:3f:39:7c:39:f0:df:03:0c:48:41:44:8b:87:ae:86:f2:
03:7a:b6:a7:aa:b9:da:0d:f1:41:f0:f4:54:72:ce:5d:ce:d3:
03:63:58:54:a5:cc:50:4a:87:fe:7a:64:cf:e5:22:a9:73:83:
90:a2:59:d3:84:73:78:50:60:49:9a:2e:9e:86:80:60:8b:0d:
c6:85:9e:b2:12:9e:90:1c:d1:25:fb:0c:98:81:2a:20:a9:35:
2e:f4:78:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org