Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/j-QYnWIRaAQMNkZKqYMWZ5jSVyY.roa
File: j-QYnWIRaAQMNkZKqYMWZ5jSVyY.roa (raw, json)
Hash identifier: YTeMLVs1zkhZp88PHQpj6qZEI8QxImi/5qKcDdKZkiA=
Subject key identifier: 8F:E4:18:9D:62:11:68:04:0C:36:46:4A:A9:83:16:67:98:D2:57:26
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 082D
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/j-QYnWIRaAQMNkZKqYMWZ5jSVyY.roa
Signing time: Wed 26 Apr 2023 16:09:52 +0000
ROA not before: Wed 26 Apr 2023 16:09:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131666
IP address blocks: 2405:6440::/32 maxlen: 38
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2093 (0x82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Apr 26 16:09:52 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8FE4189D621168040C36464AA983166798D25726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f7:f8:18:dd:1a:55:4a:66:10:db:a7:78:a3:
9a:3f:72:aa:c8:4f:d1:59:a7:69:cc:b3:ef:ba:81:
a0:af:27:39:13:d4:ec:39:60:cc:25:1e:e0:9e:78:
fc:68:ff:32:12:a7:a2:2c:da:15:dc:6a:e0:26:b9:
dd:01:39:50:11:23:ff:89:41:b5:60:ea:0c:70:8e:
3c:fb:69:03:f1:52:1d:27:e9:62:a5:38:1a:00:e3:
9d:39:b9:a6:a2:5f:2f:1b:71:40:88:2c:72:38:f1:
95:ef:0f:a2:05:82:a9:bd:5b:7a:b0:a5:2f:08:2a:
80:a2:1c:9b:71:5c:1f:3d:e1:e3:bc:07:5e:e9:ea:
c4:69:6a:8b:56:55:9d:02:2f:83:8d:de:31:98:aa:
db:cd:22:85:32:7c:59:f4:bc:8a:35:1d:2f:dc:04:
d2:16:9d:82:3d:ba:00:49:0b:7e:9c:c3:a1:14:fc:
07:e3:3d:23:7a:fc:89:46:bd:2e:15:76:00:79:8d:
4d:96:10:ab:0c:42:ea:21:61:e2:ac:a6:95:8f:eb:
e2:00:d6:53:37:3b:35:e2:65:05:62:03:f9:ca:f5:
87:53:48:2a:e6:e3:b3:0e:d2:9e:c5:48:36:95:37:
1d:20:e5:11:81:eb:95:72:9f:21:3c:70:db:54:d3:
e2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E4:18:9D:62:11:68:04:0C:36:46:4A:A9:83:16:67:98:D2:57:26
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/j-QYnWIRaAQMNkZKqYMWZ5jSVyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:6440::/32
Signature Algorithm: sha256WithRSAEncryption
4d:9b:dd:b0:b4:9f:ae:88:f1:33:44:fd:b9:b3:0c:52:81:3c:
e1:e5:e8:1a:95:13:91:c5:65:90:e0:f8:b0:cb:cb:10:b4:af:
60:53:2f:96:00:21:b8:77:2b:7e:21:2b:e2:ba:0f:23:3b:52:
7c:93:1e:dd:8e:18:bd:9d:32:89:0a:16:09:eb:69:1b:c2:4a:
bc:56:85:48:13:12:4f:9b:8f:f1:34:f9:f4:83:61:2c:b4:17:
64:b3:91:c4:46:d7:0d:d7:9a:04:e9:a7:52:fc:6e:9b:4e:03:
b0:bb:6a:44:40:f8:5a:61:26:a7:af:5b:c7:ad:c3:8e:4b:22:
00:35:f6:34:d3:27:d1:f7:98:3c:87:6c:c3:12:64:8d:56:0b:
c9:45:7b:a0:2a:01:de:9c:ff:3c:f6:ea:92:c5:12:ea:6a:14:
e0:0e:fa:88:fe:a5:73:4d:d6:35:5b:20:2b:82:32:e7:50:db:
ca:92:3e:4b:38:04:41:3c:c7:aa:8e:46:26:17:c1:47:14:2f:
98:f3:0e:45:dd:d3:ed:28:de:bd:85:e9:4c:4b:23:6f:a8:c4:
f9:4e:d3:82:8e:97:90:d8:c8:91:3b:44:5f:3b:58:1e:c7:44:
20:ad:ba:71:4b:ed:d0:89:24:3c:ae:35:5c:3b:65:a0:7c:34:
5a:e3:c6:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org