Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/tHYdnN3vjc6oK_8pYO8RZ_DYCnw.roa
File: tHYdnN3vjc6oK_8pYO8RZ_DYCnw.roa (raw, json)
Hash identifier: 1EnI5cjL4WrBAX9ztQEH29l8od0iwXlLi3+uLHiB86w=
Subject key identifier: B4:76:1D:9C:DD:EF:8D:CE:A8:2B:FF:29:60:EF:11:67:F0:D8:0A:7C
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0C56
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/tHYdnN3vjc6oK_8pYO8RZ_DYCnw.roa
Signing time: Mon 26 Aug 2024 05:12:39 +0000
ROA not before: Mon 26 Aug 2024 05:12:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 136173
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 04:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3158 (0xc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Aug 26 05:12:39 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B4761D9CDDEF8DCEA82BFF2960EF1167F0D80A7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:74:e2:69:16:72:89:9d:cc:04:2e:4b:5a:
65:4c:15:db:dc:a4:07:19:07:88:56:e8:c6:b5:03:
ae:c5:e4:67:bf:f1:55:91:bb:39:8d:bd:b9:ca:7d:
9f:ec:dd:0e:c8:65:62:a2:80:4d:4d:9f:cd:aa:5c:
86:68:81:41:e1:1f:4d:6b:2b:cf:76:18:1e:b8:a8:
ad:65:66:ae:5c:8c:1e:6f:4d:02:36:ab:2b:4c:40:
1e:b4:bb:37:11:57:d0:6d:2c:08:9c:01:6f:a8:c2:
b6:ff:97:84:39:fb:6a:57:b3:26:5e:78:e3:fc:08:
75:94:5c:10:d3:86:f2:6e:6a:a8:9b:ba:89:ee:5a:
67:50:90:38:47:dc:81:ff:4e:9e:ba:e9:73:5b:43:
a9:35:35:5e:c4:55:42:17:d1:2b:e0:a6:35:50:7b:
91:23:b8:55:73:87:b9:5c:3d:72:24:d6:5a:15:f5:
c9:26:52:b7:3d:a6:32:c4:75:e4:45:d6:e0:0f:ce:
b3:81:d4:e0:de:a0:82:36:04:a7:32:9f:96:dc:16:
1d:dc:ab:a5:6c:92:60:02:63:6e:c9:f5:7a:92:65:
83:59:81:1a:e5:0c:32:cb:44:24:73:9b:b1:c6:ab:
b7:a9:64:f1:e4:96:4a:40:42:40:10:ad:fa:f2:ad:
a0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:76:1D:9C:DD:EF:8D:CE:A8:2B:FF:29:60:EF:11:67:F0:D8:0A:7C
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/tHYdnN3vjc6oK_8pYO8RZ_DYCnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:7b:72:76:73:1a:a3:f9:3f:4d:6b:76:7b:3a:9c:b3:1d:45:
b8:7b:69:2f:d8:85:3c:22:ec:76:e5:88:69:7b:b1:53:e2:55:
57:6f:03:99:f4:7a:01:f8:36:74:a6:1b:34:e7:3b:91:40:9f:
7e:d2:f9:69:97:0a:eb:d9:83:7d:f3:42:b0:4c:9f:a1:21:29:
eb:1f:3e:cf:be:54:13:fa:8e:4a:63:35:08:8d:77:18:2c:06:
2d:28:73:1b:2b:6f:80:27:2b:3c:94:3e:1f:83:90:25:33:6f:
a0:ab:31:59:1b:76:fd:8d:bf:09:9a:6d:1c:3b:67:66:61:bc:
b9:18:d4:34:e3:d2:d8:36:4a:f5:86:bd:fa:5c:32:20:da:8b:
01:03:f9:02:2e:0a:41:89:1b:e8:66:f7:78:45:e9:f1:cc:03:
78:9e:3e:9d:20:c5:bf:3e:25:cb:b4:82:35:d5:0b:8f:c3:ef:
31:33:1a:31:c8:98:32:12:7c:16:67:1c:05:05:b4:64:02:00:
b5:4d:23:a8:98:7a:56:50:cd:e5:a4:f9:8b:dd:93:82:d7:6e:
bd:51:1a:e1:06:ce:f1:a3:c4:44:31:01:1b:40:b7:a7:74:6f:
6e:55:cb:06:4e:e7:fd:12:df:71:d1:ab:25:92:db:2d:c3:7a:
52:28:33:cf
-----BEGIN CERTIFICATE-----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Generated at Tue Nov 19 06:52:20 2024 by rpki-client on console-ams.rpki-client.org