Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CTII/oCUTnVBPlhyaZ-m2QFXfCt7eFYw.roa
File: oCUTnVBPlhyaZ-m2QFXfCt7eFYw.roa (raw, json)
Hash identifier: JftiKH388xuCtwQj9wCyZmXnoL7Dd+84vqkvl0EG9ew=
Subject key identifier: A0:25:13:9D:50:4F:96:1C:9A:67:E9:B6:40:55:DF:0A:DE:DE:15:8C
Certificate issuer: /CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Certificate serial: 115A
Authority key identifier: FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/oCUTnVBPlhyaZ-m2QFXfCt7eFYw.roa
Signing time: Thu 21 Sep 2023 02:47:33 +0000
ROA not before: Thu 21 Sep 2023 02:47:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 135391
IP address blocks: 103.130.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4442 (0x115a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Validity
Not Before: Sep 21 02:47:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A025139D504F961C9A67E9B64055DF0ADEDE158C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:70:d0:82:82:12:3d:19:a2:8a:3e:6a:24:66:
4d:af:23:11:cc:b8:d6:ee:af:29:7a:b6:97:c6:86:
ee:a3:c8:2f:a0:d7:cb:cc:39:5a:29:7f:84:5f:54:
a8:4d:28:4f:4e:50:6c:fc:f2:a3:86:d1:02:e5:73:
01:59:8d:2f:9d:a6:c4:dc:63:34:a9:20:de:9f:35:
94:e2:ac:f1:bb:5e:8e:d8:9a:c3:a6:09:76:39:7e:
a6:f1:5f:48:5c:94:9e:a5:0c:83:a1:34:23:39:ee:
0c:ce:d7:12:e5:db:58:85:33:37:cc:c4:ea:64:de:
d1:4f:0f:a9:10:ae:79:fc:43:b6:4b:5d:4c:a6:e2:
cb:bd:a2:51:31:8d:79:3a:3f:5c:c1:71:49:ee:57:
e4:94:4e:a3:15:90:b3:fd:cf:ce:c7:21:52:6a:72:
6b:1c:0b:06:a9:8d:e9:c6:d9:34:83:d7:9d:cc:68:
76:66:41:37:a5:4f:8d:90:0b:1d:32:35:29:c5:8c:
a0:a6:6a:ff:2a:52:79:6f:f8:95:e2:a6:e3:0f:f3:
26:41:f7:68:4a:6b:c1:85:e2:c0:a7:01:0b:5f:83:
a9:fa:f4:5e:bc:b2:d5:f8:b6:a2:9b:1f:73:cd:31:
0e:24:9d:34:c6:0d:ff:86:d8:1d:e2:9d:04:7c:d6:
5e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:25:13:9D:50:4F:96:1C:9A:67:E9:B6:40:55:DF:0A:DE:DE:15:8C
X509v3 Authority Key Identifier:
keyid:FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/oCUTnVBPlhyaZ-m2QFXfCt7eFYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.248.0/24
Signature Algorithm: sha256WithRSAEncryption
68:19:99:9b:14:92:93:32:29:5f:43:67:21:ac:96:78:32:57:
d8:f3:cb:b4:6d:f9:d1:c9:b3:55:37:2e:ce:10:2f:94:ed:68:
48:59:21:9d:cf:a9:9b:fa:7e:07:0c:9d:1c:77:cd:c6:32:3f:
54:15:aa:53:61:fb:8b:f4:b1:93:f8:d5:10:11:e1:a4:f4:ad:
0b:af:3a:a4:60:fd:f1:8c:1a:bd:3f:a2:d9:c9:ad:38:7a:11:
08:00:6f:e2:34:4e:97:94:d2:6b:97:bd:5d:98:73:e6:a1:a8:
71:2b:92:97:34:d3:ec:d2:4d:c3:f6:61:d8:02:d4:90:3f:d1:
89:3f:be:e0:fa:ce:e6:30:ca:66:50:cd:d3:f2:09:9f:65:c4:
c8:00:47:1d:dd:01:e3:9b:ce:cc:c7:04:97:d9:45:41:66:38:
e9:f1:53:03:1c:3e:a1:0e:6d:07:13:e8:ab:2a:cc:61:84:e0:
d6:cd:6c:3f:8d:ee:b5:48:f9:e5:08:44:45:74:49:a6:24:45:
d6:87:73:e1:de:f9:bb:cd:0a:f8:7f:8f:41:78:90:d9:98:f0:
1a:95:c1:d8:a8:9d:d8:a8:32:ea:e7:63:13:3f:db:13:dc:07:
3e:c0:3c:77:61:dd:31:1a:8e:0b:e0:21:e4:b1:4d:64:bb:87:
fa:7b:32:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 5 10:43:27 2023 by rpki-client on console-fra.rpki-client.org