Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa
File: FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa (raw, json)
Hash identifier: npiMtG+AvaWOPAaMoWzjne8aSBSlPpjws3lk0AkjU2E=
Subject key identifier: 15:16:E6:A4:CE:5F:C6:F7:4A:32:5B:17:B9:84:4C:FE:93:B4:36:55
Certificate issuer: /CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9
Certificate serial: 05
Authority key identifier: 4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa
Signing time: Wed 23 Aug 2023 16:38:55 +0000
ROA not before: Wed 23 Aug 2023 16:38:55 +0000
ROA not after: Thu 22 Aug 2024 01:11:24 +0000
asID: 131642
IP address blocks: 2401:29e0::/32 maxlen: 64
Validation: Failed, certificate revoked on Thu 08 Aug 2024 01:11:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9
Validity
Not Before: Aug 23 16:38:55 2023 GMT
Not After : Aug 22 01:11:24 2024 GMT
Subject: CN=1516E6A4CE5FC6F74A325B17B9844CFE93B43655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c2:99:4f:67:01:a7:09:42:cd:33:e6:88:da:
dd:7b:6c:bf:b4:6b:90:05:4e:5e:7e:da:a8:25:18:
91:56:2a:d5:f2:65:c7:67:2a:09:58:1e:f6:96:aa:
e1:82:5f:7e:80:a8:88:d0:b6:d3:8b:7c:ee:d7:e6:
58:e7:0f:29:8e:ac:3c:fb:ae:e7:8e:43:be:b8:96:
23:9b:5d:6d:ae:46:77:3e:77:e8:94:9b:6b:96:e6:
91:86:bc:1e:7b:7e:3f:0e:8f:9d:93:14:a5:06:98:
83:6b:f6:58:d2:70:52:7a:e0:47:5b:bb:17:ce:02:
99:f1:4e:fd:78:f8:6c:e5:f7:0f:b6:ec:4f:d8:5a:
dc:fa:10:4e:c6:79:39:ec:6a:f4:bc:39:1b:f0:c1:
07:69:69:03:10:eb:59:f8:f7:92:e9:e4:f1:8f:44:
2b:1f:c0:69:49:8b:41:64:2e:50:8c:41:46:a7:98:
a9:76:70:d2:ed:85:01:39:0c:52:11:28:8b:86:53:
8a:ba:3a:07:54:a7:5b:04:5b:98:a3:ca:84:df:4a:
f9:49:95:73:86:76:94:8c:36:0e:1c:ae:1a:03:1f:
c0:a6:4a:9b:64:c0:e7:78:45:e4:de:1a:87:c7:49:
ae:4b:bd:ea:1d:ca:42:c9:15:30:54:10:81:50:8d:
79:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:16:E6:A4:CE:5F:C6:F7:4A:32:5B:17:B9:84:4C:FE:93:B4:36:55
X509v3 Authority Key Identifier:
keyid:4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:29e0::/32
Signature Algorithm: sha256WithRSAEncryption
be:8c:03:9c:ee:b3:c1:82:cc:88:14:6b:86:08:1c:46:36:8a:
fe:31:78:9e:57:29:d5:0f:15:46:2f:6d:43:7f:27:36:d9:27:
18:24:bf:48:08:bb:ed:36:28:0c:67:19:d6:b8:76:b8:ea:00:
dd:95:16:43:de:6d:eb:5e:18:04:53:08:5f:6c:bc:1a:10:7f:
6a:0f:03:12:76:f4:91:9e:c1:1f:41:c6:ad:19:e9:7e:d3:70:
9d:1d:94:f6:51:47:0c:e1:a9:20:a9:af:09:8e:f7:d9:8f:62:
c7:55:46:68:4b:42:ca:41:fc:9f:fd:5c:80:0b:ad:7d:26:fc:
d4:e0:55:8b:45:f1:41:2e:00:b7:53:5b:c7:b2:6e:f7:0f:90:
dc:e5:60:08:38:5d:55:6f:de:fc:cb:d4:20:ee:0e:30:de:41:
db:0f:22:66:e5:ff:a4:69:f4:d7:ba:d4:fc:fb:82:99:84:89:
a5:38:51:b5:c3:19:76:a8:c1:f5:a4:ae:a8:62:31:02:cf:84:
6c:a8:e8:07:f4:75:1e:14:75:0c:e2:a2:a8:d7:da:c0:a9:29:
72:7a:91:e3:97:4f:91:aa:50:2d:c5:c1:fc:51:bc:ec:f4:fb:
7b:78:13:a6:95:c5:7c:3f:7d:fa:85:79:76:b4:97:dc:21:81:
d4:ff:91:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 04:08:14 2024 by rpki-client on console-ams.rpki-client.org