Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/u2qszW9uKf7vWG8mVS5WFtOrP_s.roa
File: u2qszW9uKf7vWG8mVS5WFtOrP_s.roa (raw, json)
Hash identifier: wRfDT8DMxomfar2bYKfQjMtXyqKb2HrB+gjBZCQTFu4=
Subject key identifier: BB:6A:AC:CD:6F:6E:29:FE:EF:58:6F:26:55:2E:56:16:D3:AB:3F:FB
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D02
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u2qszW9uKf7vWG8mVS5WFtOrP_s.roa
Signing time: Mon 15 Jan 2024 21:24:15 +0000
ROA not before: Mon 15 Jan 2024 21:24:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 06:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3330 (0xd02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:24:15 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BB6AACCD6F6E29FEEF586F26552E5616D3AB3FFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b7:4f:d6:9f:bc:d8:95:7e:e7:89:11:09:cf:
bc:b3:ac:19:c1:a2:6a:a9:ac:46:16:ee:c0:fc:1d:
f2:bd:d8:9b:23:fa:fd:5b:37:c4:b0:9f:c3:f4:77:
56:ec:4c:46:98:26:8a:a0:fb:e9:68:b6:70:fc:d8:
c3:2f:53:cc:db:31:3d:92:53:2b:fc:bc:a1:fc:17:
60:01:7a:a4:db:2e:39:b5:6b:15:89:39:b9:c7:15:
47:66:0f:f1:50:a3:0f:4a:9e:d1:30:42:d1:21:2e:
12:64:e0:c1:b1:f9:c5:b1:ab:93:48:da:3c:2e:e8:
3b:e1:ef:7c:c4:1e:2f:e5:cb:ae:5e:5f:af:08:21:
c1:5a:a1:e6:06:35:b8:70:4b:da:a8:e5:64:99:0a:
82:e0:f8:ae:c6:77:df:40:be:7a:7e:b3:59:05:40:
c9:2e:cf:e7:2b:98:ca:b7:6e:82:2c:8b:fd:c1:7e:
14:9d:f9:52:37:61:ce:e0:8e:fe:d1:37:7c:c3:fc:
b4:cb:6b:1a:26:f7:43:3d:8f:0b:59:33:30:7f:92:
f6:71:1f:65:8c:6c:fd:3b:07:14:4f:2e:03:9f:fb:
83:9d:05:4b:ba:67:f1:6a:e8:db:c2:3d:ad:c1:f5:
6b:b2:11:c1:f1:a4:f7:85:91:94:3c:4b:4d:a5:c3:
14:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6A:AC:CD:6F:6E:29:FE:EF:58:6F:26:55:2E:56:16:D3:AB:3F:FB
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u2qszW9uKf7vWG8mVS5WFtOrP_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b9:23:3d:a2:61:e9:79:42:16:20:f9:3c:73:06:aa:a8:3a:55:
78:45:a5:32:06:ca:6b:6b:46:e7:e9:9c:85:95:2a:72:53:ce:
d6:13:08:9e:8a:6b:5c:53:8f:9f:94:18:5f:15:4b:5f:92:5f:
20:e1:65:30:a8:df:97:8f:10:92:e6:f4:29:72:0b:51:69:c3:
b1:ff:b3:30:2f:d6:dc:e9:61:db:f4:d0:d0:c9:3f:0e:cb:54:
5a:7a:b3:04:1b:82:28:ba:fd:cf:22:28:67:47:3c:e7:d8:14:
ee:90:6c:26:eb:15:22:14:9f:1d:50:07:55:02:b4:5c:96:9c:
cf:b6:b9:78:01:42:d2:22:cc:d3:5b:6f:a3:70:9a:f7:a9:26:
8f:ad:11:7c:5b:90:87:bf:f5:c8:18:27:92:40:c2:7e:e8:0c:
30:fa:85:09:25:ae:d9:d4:e2:85:7f:3f:ef:99:98:81:38:3c:
a5:82:a4:cf:c8:6f:2d:19:90:99:31:13:f7:79:45:bf:1f:00:
d5:0a:19:89:7f:38:1b:ce:c1:31:2d:57:91:e1:07:e5:6f:db:
2f:aa:5f:ee:2f:7b:d6:73:bf:9d:84:47:52:00:ba:0d:6e:c2:
87:ae:15:9b:6c:fb:f9:d4:6e:50:27:c8:3d:59:6e:69:72:84:
e9:0c:79:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org