Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1D7IBXBBd1j_LA8XrP48KwEf9wk.roa
File: 1D7IBXBBd1j_LA8XrP48KwEf9wk.roa (raw, json)
Hash identifier: RXxlMyaQ8OBiXLv4ZdAw17dSSnizWIXm4WTng5Gy49k=
Subject key identifier: D4:3E:C8:05:70:41:77:58:FF:2C:0F:17:AC:FE:3C:2B:01:1F:F7:09
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D50
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1D7IBXBBd1j_LA8XrP48KwEf9wk.roa
Signing time: Mon 15 Jan 2024 21:25:54 +0000
ROA not before: Mon 15 Jan 2024 21:25:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 223.22.0.0/15 maxlen: 16
Validation: Failed, certificate revoked on Thu 23 May 2024 06:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3408 (0xd50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:54 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D43EC80570417758FF2C0F17ACFE3C2B011FF709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c1:79:96:02:77:4b:8d:b6:3b:98:81:14:2c:
77:09:fb:4f:d8:d6:ee:a1:2d:3d:99:28:65:74:3b:
69:d1:ea:da:ad:e1:15:9c:6a:91:84:59:c6:ec:89:
82:b9:7f:06:b4:ef:65:e7:2a:0a:d4:d2:ba:4f:5f:
15:7b:e5:5f:02:7b:9b:15:03:fc:64:ff:a5:3b:7e:
8d:9f:43:c7:f9:b0:3a:f9:e4:42:cb:0e:61:d7:13:
4a:9a:58:3d:7a:a9:17:ba:5e:d9:09:1d:ef:a1:d6:
96:54:96:49:11:ef:85:f5:2c:a8:8e:6a:69:eb:e8:
60:bb:70:c1:41:b3:52:87:3a:f2:b0:49:a5:e2:00:
8f:32:2f:a4:05:64:ca:6f:79:de:cd:7a:04:0a:84:
8c:68:2b:b8:64:f1:58:4e:af:55:93:6b:91:0c:ba:
d8:88:28:3a:ed:1e:5d:7b:8f:59:5d:d1:3b:5e:b3:
99:e8:d6:3f:a7:d2:cd:50:c3:d6:36:44:85:d0:93:
e7:6f:81:22:d3:65:fd:ce:1b:7d:1e:00:a4:4a:8a:
ad:08:32:84:53:02:d5:b0:f4:30:19:78:37:e9:0f:
c7:55:49:16:61:ed:f3:e5:e9:69:6d:c3:a5:ba:cd:
a0:6c:85:03:23:54:bf:7b:df:a3:7b:53:b7:7d:49:
35:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3E:C8:05:70:41:77:58:FF:2C:0F:17:AC:FE:3C:2B:01:1F:F7:09
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1D7IBXBBd1j_LA8XrP48KwEf9wk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/15
Signature Algorithm: sha256WithRSAEncryption
45:5a:20:0c:36:71:34:d9:8d:87:5b:8d:42:ef:a7:62:96:f6:
9c:0d:1a:4d:8e:00:df:4f:52:8d:f1:be:75:87:b7:c9:48:45:
ef:9a:2c:3e:23:9f:f0:17:09:81:76:bb:b5:49:fb:c9:fd:0f:
b2:c6:91:a9:2b:34:ce:1f:30:d7:f3:19:87:a8:b9:29:eb:c4:
8b:0e:1f:ae:2b:a4:50:98:59:bc:84:22:b1:32:64:a2:88:67:
ba:06:ec:44:6b:0c:9e:7d:80:fa:f0:72:4e:59:0b:26:e6:21:
15:b7:09:5a:d0:1b:9c:75:ac:29:c7:c0:0d:c7:e3:37:f2:d7:
16:0c:1c:57:62:4f:0b:94:b9:43:1b:a6:1b:a8:f9:78:32:e8:
e9:19:6e:bc:eb:db:3a:e1:3a:f3:32:f5:aa:f9:bc:8d:fc:f6:
14:33:4b:0c:c6:46:5d:93:e1:88:19:11:99:08:15:f1:a1:79:
67:a7:d3:2c:0f:6b:f1:fc:f5:08:0c:ea:28:ef:08:be:ef:6b:
6e:6c:6e:d5:ea:fe:be:d6:75:d0:fb:28:7a:99:ce:02:fb:f9:
6b:f8:1b:56:8a:1b:b0:ce:65:16:39:14:2e:7a:c9:ea:55:4c:
03:7e:09:f5:17:cb:41:b8:d2:22:fe:af:eb:ce:9c:1a:99:3d:
ac:a8:0f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org