Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/ajdecovqeB3YH77lXN6G2NPdzQA.roa
File: ajdecovqeB3YH77lXN6G2NPdzQA.roa (raw, json)
Hash identifier: 5Qgwyn+JNJRIgMtsOvQ9JkJMtjPPnGQHN6k3KvByTL0=
Subject key identifier: 6A:37:5E:72:8B:EA:78:1D:D8:1F:BE:E5:5C:DE:86:D8:D3:DD:CD:00
Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Certificate serial: 07BC
Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/ajdecovqeB3YH77lXN6G2NPdzQA.roa
Signing time: Thu 15 Sep 2022 02:44:18 +0000
ROA not before: Thu 15 Sep 2022 02:44:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131667
IP address blocks: 2405:a040::/32 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1980 (0x7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Validity
Not Before: Sep 15 02:44:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6A375E728BEA781DD81FBEE55CDE86D8D3DDCD00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ff:70:0d:63:94:54:e2:37:fb:c1:42:ae:7b:
73:a8:c3:ce:3e:fb:8e:e6:f4:61:b3:b5:f8:b7:cc:
43:2b:78:dc:26:e1:6a:74:bd:e1:9f:4c:f7:47:95:
a2:f0:1b:fb:5e:cf:31:4e:6c:1a:85:55:47:1d:1a:
a4:cc:e8:e6:c1:37:e4:5f:7c:34:d8:b5:20:d2:78:
56:b5:2f:4b:7e:6c:c1:82:cf:b8:82:f8:60:2f:3b:
15:5d:c6:c7:2d:d9:2b:de:b4:ce:88:63:31:8b:4c:
29:92:e3:78:43:7d:bf:44:18:63:cf:95:db:5e:08:
29:d2:09:e4:ae:05:07:5b:78:a2:9c:15:e8:fa:bf:
e0:35:2a:a1:66:92:78:07:76:eb:fc:5c:0e:1f:4c:
9b:e3:22:21:a1:a9:d1:6b:cd:d1:97:03:87:bf:d8:
a6:a9:23:62:fe:11:50:b4:03:e7:f7:58:bb:44:f4:
a7:b7:7e:aa:9f:1f:84:3c:dd:90:b7:a2:61:a6:47:
88:36:e6:2f:45:85:b5:94:c2:c0:f6:18:14:05:45:
63:7a:39:35:80:ba:fa:f2:da:eb:75:fc:3c:7e:b4:
25:45:06:a7:9c:d3:1e:4e:a4:01:b0:2c:b5:4d:88:
89:2a:71:01:c8:ea:3d:75:51:08:b1:2d:f4:b3:09:
51:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:37:5E:72:8B:EA:78:1D:D8:1F:BE:E5:5C:DE:86:D8:D3:DD:CD:00
X509v3 Authority Key Identifier:
keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/ajdecovqeB3YH77lXN6G2NPdzQA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a040::/32
Signature Algorithm: sha256WithRSAEncryption
22:37:9e:68:91:47:78:f4:76:86:13:be:b0:e9:b2:9b:03:41:
26:3d:c3:56:7e:cc:d1:06:e8:a8:71:7f:6a:60:f8:99:27:5c:
f5:5f:ce:42:69:c5:01:da:55:b0:f4:33:e7:0b:6a:3f:24:1c:
b6:40:f9:0c:3d:56:da:0e:d6:4e:e2:84:0f:d9:a6:41:43:4a:
bb:cf:b2:c1:98:c0:d5:c5:b4:08:14:29:ab:fb:4d:4d:a1:ad:
6f:ed:97:ee:fd:e1:c1:4a:38:27:28:66:59:85:0b:07:11:17:
f0:5a:36:74:3e:b8:9d:fc:ea:c8:9a:56:0a:48:d5:38:9d:7f:
ee:88:49:29:70:31:b0:07:85:bd:d4:b4:4b:7d:66:ad:10:25:
41:73:3e:7f:c5:1f:a9:64:59:86:ae:be:02:78:78:d3:af:1c:
5d:6b:12:de:cc:a9:ef:b5:6e:f4:88:1d:b2:a4:f3:b7:85:dd:
5d:98:31:b3:57:a1:56:f1:61:e3:c5:1c:d8:1e:95:27:92:c2:
e8:2b:26:01:c6:b3:ef:a1:c1:8c:67:9a:b1:33:0f:21:97:4a:
b1:21:ec:cd:71:ec:eb:60:8a:de:eb:e5:be:29:0f:72:23:d1:
d8:0b:a0:ca:ee:0a:93:9f:fb:80:72:1d:43:a3:28:e0:16:04:
f2:4a:9c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org