Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/MMHuH9-ayyXHHTkne8zuarH1_-s.roa
File: MMHuH9-ayyXHHTkne8zuarH1_-s.roa (raw, json)
Hash identifier: 7ZnA0B9qVwKnVeNfqTYgpZLupumeN6P8iajA821zCi4=
Subject key identifier: 30:C1:EE:1F:DF:9A:CB:25:C7:1D:39:27:7B:CC:EE:6A:B1:F5:FF:EB
Certificate issuer: /CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Certificate serial: 11D7
Authority key identifier: DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/MMHuH9-ayyXHHTkne8zuarH1_-s.roa
Signing time: Fri 01 Sep 2023 08:35:25 +0000
ROA not before: Fri 01 Sep 2023 08:35:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 2403:a8c0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4567 (0x11d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Validity
Not Before: Sep 1 08:35:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=30C1EE1FDF9ACB25C71D39277BCCEE6AB1F5FFEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cb:98:b9:0a:11:da:d2:c1:21:ca:1a:16:b5:
a9:f5:1a:8c:f8:c3:86:43:6f:f1:98:75:80:34:d2:
42:c0:e4:a6:d0:cd:03:ba:a1:14:65:8d:72:75:c8:
96:08:cf:2c:cc:d3:77:d1:ea:27:c6:44:ed:60:13:
05:77:25:2d:bf:0d:c0:61:bf:0e:26:78:e4:28:43:
23:0f:10:83:93:4f:c0:cd:30:0f:a2:12:13:45:1e:
61:f5:e4:90:e9:7e:e7:90:49:97:68:f5:7f:bd:aa:
10:84:67:b2:03:3a:6c:94:20:58:17:de:d5:0e:de:
fd:08:8b:79:98:1b:cb:66:96:3b:81:b9:88:87:56:
f0:f5:4a:ae:5a:2d:3b:f2:57:3f:0a:3b:0b:e9:c4:
b9:e6:d9:65:5e:07:58:0d:e3:1d:84:7a:2f:ba:4d:
9d:a0:e8:6e:35:a5:69:e0:c1:73:4f:dd:8c:6e:4b:
c9:3e:e5:1e:85:10:08:f5:8b:c0:25:10:23:db:02:
41:77:c6:3e:b8:c3:f3:67:2d:19:3a:65:87:54:c7:
c3:94:b1:08:6b:f5:3f:f7:08:e5:01:6b:2f:79:83:
87:19:25:45:bc:fd:f9:75:ce:33:c6:f6:6c:51:5a:
e9:bc:9c:05:94:3e:9a:a8:d5:c3:f5:a3:f3:77:38:
31:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C1:EE:1F:DF:9A:CB:25:C7:1D:39:27:7B:CC:EE:6A:B1:F5:FF:EB
X509v3 Authority Key Identifier:
keyid:DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/2zQozMTBLPTxW6-C6rtMagYwRkI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/MMHuH9-ayyXHHTkne8zuarH1_-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a8c0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:f6:8c:50:88:62:1c:35:ec:0b:1a:05:f5:42:63:fb:c7:0b:
f8:62:14:aa:d5:89:4c:bb:e1:4f:6c:e4:fd:b5:8f:76:bc:9e:
c2:30:38:41:8a:54:f6:ee:a0:2f:bc:0b:0e:38:99:33:93:f8:
25:a0:7c:d3:0c:83:89:a8:eb:b5:d5:99:c5:0d:95:90:2c:ae:
72:44:7b:e8:dd:24:31:dd:26:86:62:6f:50:98:b5:b3:b5:76:
a7:8f:02:a9:08:f6:f9:4d:f0:4c:d6:37:5f:71:a0:41:6a:d6:
70:5a:46:c0:b0:d5:2b:c9:62:55:67:25:20:e5:a1:23:29:c8:
d9:e9:5c:88:cd:26:c5:7b:47:2c:e8:24:5f:80:e5:1e:9a:f8:
32:72:15:f6:58:00:23:f2:96:6e:71:e9:18:e8:06:ec:f8:da:
1c:14:6d:14:c9:5f:3f:dc:fc:05:45:88:c6:2c:6e:6d:47:03:
c5:63:76:cc:b7:3b:b4:eb:94:39:0a:37:f1:ba:2d:44:af:15:
e4:50:f0:8d:e8:be:7e:fa:61:c7:c6:a6:10:b1:ad:50:a6:bc:
ef:ac:21:68:f1:67:cf:20:6f:a9:06:8f:3e:64:51:3f:fc:0a:
ce:ee:cd:10:89:b3:fa:22:40:89:a9:8b:ae:9f:62:da:e7:bd:
6f:fc:7f:fc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Oct 5 00:45:20 2023 by rpki-client on console-ams.rpki-client.org