Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/sqHfa57nnwRPsZtvJb1UPyvyBSQ.roa
File: sqHfa57nnwRPsZtvJb1UPyvyBSQ.roa (raw, json)
Hash identifier: 6bcwxuIGMlW9JJ3L2dymU+ojj82/Y+vwYvHqQfa4HFA=
Subject key identifier: B2:A1:DF:6B:9E:E7:9F:04:4F:B1:9B:6F:25:BD:54:3F:2B:F2:05:24
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0B70
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sqHfa57nnwRPsZtvJb1UPyvyBSQ.roa
Signing time: Tue 01 Aug 2023 08:09:59 +0000
ROA not before: Tue 01 Aug 2023 08:09:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 39.12.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2928 (0xb70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 1 08:09:59 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B2A1DF6B9EE79F044FB19B6F25BD543F2BF20524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4b:32:1e:61:0e:50:46:ae:54:cd:54:ba:0f:
17:4e:57:0e:06:73:fa:02:16:4f:49:6b:06:61:32:
58:59:ed:ad:74:1a:11:77:03:4d:ed:ce:ca:5e:e4:
3f:64:53:67:66:6b:d9:76:94:c8:99:27:13:0c:aa:
14:16:30:e5:7a:98:ca:1f:f5:90:b9:25:f8:b6:d4:
84:c7:a1:b4:d7:7e:24:1e:b4:25:24:57:ad:02:74:
52:75:8b:03:33:fc:5f:fe:d3:16:30:00:23:86:bd:
0c:00:31:91:1a:d1:12:81:66:18:bc:03:29:8d:61:
28:74:4f:6e:22:6a:ca:6e:eb:3e:f6:19:dc:3e:82:
65:8f:56:cd:5f:49:21:a6:2d:e7:a7:74:aa:6d:2e:
ae:de:a7:fc:13:7a:da:35:ce:3c:ec:90:b6:14:23:
26:56:13:30:df:28:91:eb:39:94:1b:01:c3:7a:08:
77:61:dd:d0:30:9b:f5:82:69:ba:23:c4:29:56:bc:
36:10:c5:bb:7c:9f:c7:97:05:d5:81:12:15:0b:a8:
e1:41:76:e5:37:73:f9:75:c8:bc:8d:6a:57:41:af:
b2:5d:d9:9e:7d:a6:73:a7:90:26:e4:4b:e0:95:db:
f8:7e:29:4b:a9:b3:4b:5b:f1:89:ee:94:80:c2:77:
18:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A1:DF:6B:9E:E7:9F:04:4F:B1:9B:6F:25:BD:54:3F:2B:F2:05:24
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sqHfa57nnwRPsZtvJb1UPyvyBSQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.0.0/18
Signature Algorithm: sha256WithRSAEncryption
63:1c:64:92:46:bd:44:90:4d:78:0d:17:31:62:74:4c:87:71:
a1:53:a7:74:5b:9b:9f:50:8c:ff:81:b2:dc:32:00:29:c9:9b:
a3:a4:54:b8:dc:16:42:b0:d3:49:00:f8:9f:68:2d:65:b5:82:
cb:d8:5b:eb:77:42:c3:8b:8d:dc:f5:8b:e0:4d:32:04:30:28:
30:26:45:d2:13:97:cf:50:92:36:2f:e7:4c:78:6d:66:a6:9d:
7d:40:1b:87:59:44:93:e2:9e:80:43:99:c6:1b:07:9e:ff:96:
15:a9:73:15:9f:50:d0:40:ff:cd:65:1a:b7:1c:33:d1:0d:5d:
5c:98:e6:27:cc:c3:03:20:18:37:8f:05:14:a5:c9:49:27:b1:
8a:33:81:dc:de:04:e7:52:51:5e:80:b2:c8:d3:31:b9:2c:e7:
80:1a:7d:5c:fa:45:88:2f:89:eb:bc:30:34:ed:84:60:e5:30:
8b:df:db:78:13:15:0e:95:41:5b:5c:70:51:78:31:18:81:e9:
ea:75:94:f2:6a:a8:b5:c4:4b:56:f4:23:73:99:1d:bf:9c:c7:
c4:51:ea:69:c6:bc:1c:7c:93:24:da:c6:dd:87:a0:f6:a2:f5:
3f:93:80:27:a8:7f:b5:90:a4:ba:1d:b1:65:ef:d6:1b:79:74:
37:16:ef:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:14 2023 by rpki-client on console-fra.rpki-client.org