Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/8MDtDb-oIHGYFpbwna44Ho91-sM.roa
File: 8MDtDb-oIHGYFpbwna44Ho91-sM.roa (raw, json)
Hash identifier: AHsE6xU6jm+2t/rGTu+S3Oo3MFfW+SL3tmrVXLRSkhg=
Subject key identifier: F0:C0:ED:0D:BF:A8:20:71:98:16:96:F0:9D:AE:38:1E:8F:75:FA:C3
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0A78
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/8MDtDb-oIHGYFpbwna44Ho91-sM.roa
Signing time: Thu 27 Oct 2022 06:40:31 +0000
ROA not before: Thu 27 Oct 2022 06:40:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138915
IP address blocks: 43.224.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2680 (0xa78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Oct 27 06:40:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F0C0ED0DBFA82071981696F09DAE381E8F75FAC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c7:cf:c1:72:7d:82:93:d3:62:12:74:f4:85:
a9:6b:d7:ba:1e:f1:03:8c:b7:6b:df:e6:9a:22:47:
01:6b:c1:a9:5e:31:b6:1b:be:ed:46:35:a6:35:fa:
a0:0e:5e:8e:a6:7f:85:81:95:d7:48:a8:0d:c7:e6:
c9:cd:55:84:f9:8d:e1:3f:dc:1b:ab:08:fe:fa:56:
2b:f3:a6:af:a1:f7:3f:9b:3e:a3:2b:69:e4:37:6f:
f0:53:4a:72:77:d6:bc:79:2f:7c:e2:d7:ef:e9:2e:
21:7d:e1:c0:f5:59:06:cd:f8:93:b1:ea:51:48:14:
40:37:4d:66:d6:70:95:6d:5a:6e:7e:14:5d:fa:9a:
64:38:75:15:2d:9f:66:a0:7b:79:52:c9:10:0b:0a:
5a:e7:00:68:c5:6f:75:15:04:ca:47:b5:2c:5c:56:
e2:f6:9c:18:3f:6f:40:d7:03:06:36:62:dc:60:3a:
3d:6a:41:91:42:42:22:89:d6:a2:96:5c:61:ff:62:
51:b1:e7:66:5e:84:6f:98:d9:a5:84:a3:c5:eb:ed:
5c:24:71:f1:a1:bc:e8:e6:12:1e:cf:2d:4b:8b:dc:
b0:32:ca:6d:ab:fc:bd:ec:da:06:81:4b:1d:1a:c4:
46:c6:43:33:94:a5:cd:6a:2c:96:3b:56:33:3f:2b:
88:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C0:ED:0D:BF:A8:20:71:98:16:96:F0:9D:AE:38:1E:8F:75:FA:C3
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/8MDtDb-oIHGYFpbwna44Ho91-sM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/24
Signature Algorithm: sha256WithRSAEncryption
70:43:11:1b:58:bf:62:8d:5e:24:89:48:51:fe:46:f1:c0:7a:
3a:7d:0a:cf:f1:52:53:5a:86:47:82:84:80:37:7e:b0:60:62:
f4:6b:ca:ea:31:4a:77:4c:0b:d0:c2:32:d9:69:ff:58:69:a7:
cb:7c:c0:fc:50:45:9a:3a:16:ab:ad:50:b0:75:1d:f8:c5:97:
8d:e8:4c:e8:2a:8b:1d:bb:34:bb:61:ee:92:77:f1:e9:8f:be:
a9:af:70:f9:48:e5:90:e0:1b:12:0e:20:ff:cd:ed:3e:41:82:
09:7a:12:59:67:3d:5e:c7:41:41:ce:e7:dc:e1:71:97:d6:36:
03:12:13:97:52:b9:a9:48:fa:5d:b1:97:58:29:7f:b2:9c:00:
c4:a8:2d:50:03:50:56:90:55:11:c9:40:d4:7e:32:ab:6b:a2:
7f:68:06:42:17:92:2b:3f:e2:48:0b:04:81:14:1d:e8:fa:f2:
22:ec:06:f0:a2:21:f7:8b:6f:28:b5:f8:84:5b:36:f0:5b:8b:
da:ae:13:5f:ef:8d:cd:e8:9e:68:59:00:a4:7d:8c:49:c8:fe:
71:b4:5e:9a:4a:60:81:0d:6d:0d:14:e3:2d:8f:71:12:ce:fc:
fe:5c:37:36:16:8f:d3:bd:4f:54:13:4b:5b:2f:6a:fa:79:e4:
3f:6c:7a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org