Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa
File: aNBuzagcsyaEmSMgjOpZMTOvG4M.roa (raw, json)
Hash identifier: iiyT+F/03DyF+DFWiEnhYzAB9Z9lykvxovWHc9eOR2o=
Subject key identifier: 68:D0:6E:CD:A8:1C:B3:26:84:99:23:20:8C:EA:59:31:33:AF:1B:83
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C44
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa
Signing time: Mon 15 Jan 2024 21:08:47 +0000
ROA not before: Mon 15 Jan 2024 21:08:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 16
Validation: Failed, certificate revoked on Thu 23 May 2024 06:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3140 (0xc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:47 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=68D06ECDA81CB326849923208CEA593133AF1B83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:21:74:61:98:e3:88:27:f9:eb:e4:1d:32:6d:
c9:80:ee:b0:2c:a3:7f:9b:74:5a:8b:b1:a0:a3:19:
ac:b5:52:ab:2a:ff:61:c4:ef:76:be:c0:61:0d:80:
57:ab:10:54:67:06:49:6a:b4:68:54:2b:5c:9b:ba:
fa:e9:6b:17:e7:c4:b9:0a:74:6b:28:c5:00:e9:88:
9f:18:25:3a:e4:c2:5d:2a:e6:63:d2:24:e6:0b:7f:
c5:8f:94:45:e9:de:27:de:af:5f:4b:09:c4:03:9e:
f7:12:e7:a9:08:e4:39:7b:5b:84:52:20:83:f5:43:
a2:ae:88:80:f8:c5:6e:67:6e:6c:bb:ff:3a:25:1f:
49:53:87:05:dc:99:d2:dd:46:5c:cb:6e:e1:60:39:
96:a6:55:48:d7:89:6f:26:eb:ec:18:6e:c0:22:ca:
d8:76:aa:90:ac:a4:a6:7a:e1:92:ec:cc:92:d9:6e:
ff:f5:e2:9b:3c:09:54:4e:ed:93:17:dd:2f:6c:d1:
05:e2:8a:80:28:08:8d:33:24:d6:82:99:c2:9f:85:
f7:f1:00:58:05:91:50:c8:3a:1c:bb:d9:1b:c6:49:
ba:ab:01:0e:68:4c:51:80:7d:63:fd:99:05:9e:26:
15:b3:ab:7b:94:94:b2:b3:77:76:8e:55:eb:94:28:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D0:6E:CD:A8:1C:B3:26:84:99:23:20:8C:EA:59:31:33:AF:1B:83
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
3b:49:1c:34:04:e7:39:cb:2c:a9:c9:46:dc:f9:19:7c:9a:84:
78:20:89:8f:80:e8:cb:e6:34:9c:38:9e:56:00:33:61:58:5b:
0c:47:25:9b:c6:5e:97:77:5d:fd:93:a0:99:80:1d:40:3c:8e:
40:c0:c0:94:93:19:ab:49:64:c8:0c:82:f0:d9:88:ac:e9:c8:
8a:10:ae:01:e0:a1:dd:12:9d:b2:b4:95:22:ce:0a:ec:e5:16:
0a:6c:30:0b:6b:ed:ef:52:8e:dc:8a:e8:d3:08:6e:26:cd:77:
4f:6b:c0:56:f8:af:36:0a:45:24:3c:4b:1a:60:60:c4:16:e3:
8a:76:3c:91:d8:74:5c:22:7f:b3:61:13:9e:94:33:4c:02:78:
54:65:57:a2:05:0a:e2:35:bd:9f:25:31:87:1d:2e:f9:0a:a8:
ec:73:d6:2c:4e:09:59:d5:1b:e5:b4:02:6b:48:d8:ea:b5:5b:
19:58:d1:9d:1c:f4:ed:20:a8:3f:a7:5f:41:89:f4:3c:74:1b:
0b:76:5e:0a:24:e8:8d:1b:6a:20:5b:76:f3:61:db:3f:55:b0:
0b:41:05:ad:7e:68:b1:32:9a:4f:c8:80:f2:cd:3c:54:a4:55:
88:76:cf:4b:61:e3:f8:df:4c:31:f3:ab:55:4a:18:09:65:d3:
67:f8:d3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org