Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/enYtMnuNebOih6LsDOxYJ3g7nHs.roa
File: enYtMnuNebOih6LsDOxYJ3g7nHs.roa (raw, json)
Hash identifier: 9iOtcNuLlvDGeFNprk/z2/U1E6nqg7+zbBktoA+Jal0=
Subject key identifier: 7A:76:2D:32:7B:8D:79:B3:A2:87:A2:EC:0C:EC:58:27:78:3B:9C:7B
Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Certificate serial: 05
Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/enYtMnuNebOih6LsDOxYJ3g7nHs.roa
Signing time: Wed 20 Sep 2023 18:52:34 +0000
ROA not before: Wed 20 Sep 2023 18:52:34 +0000
ROA not after: Wed 18 Sep 2024 09:08:23 +0000
asID: 131642
IP address blocks: 2401:39e0::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:16:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Validity
Not Before: Sep 20 18:52:34 2023 GMT
Not After : Sep 18 09:08:23 2024 GMT
Subject: CN=7A762D327B8D79B3A287A2EC0CEC5827783B9C7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:48:72:96:3b:c1:86:ce:26:41:f1:bd:36:75:
62:9a:94:6f:63:e7:2c:72:40:24:e2:75:6d:6e:2e:
62:7c:52:95:11:6f:40:e6:46:41:14:d7:0c:28:bb:
f3:13:9c:d1:d6:85:3d:45:1d:14:9a:94:a6:c1:89:
0e:5b:3e:e3:1c:07:aa:c9:aa:55:cd:98:76:b9:ca:
09:2f:61:f0:0f:6d:76:73:43:e3:cf:01:28:96:a7:
33:87:05:46:7c:3a:be:e9:9a:97:de:af:75:f7:2d:
1b:03:49:83:88:29:55:70:5b:90:f9:af:5f:57:b8:
f6:9d:85:f9:37:41:22:d4:45:bf:44:b5:7d:d6:ae:
02:07:e1:9c:1c:66:4b:bf:24:63:c8:a5:a0:3b:92:
f8:4a:e9:57:9b:40:cc:b1:3f:be:93:23:fe:f5:ab:
fc:41:59:2f:4a:ae:1d:74:67:83:e0:98:8f:66:0a:
9e:4c:58:5b:d2:d2:30:89:5f:8e:be:bb:f1:f3:f0:
83:59:68:bb:2b:c3:c6:ef:ca:5f:93:25:4b:b1:e6:
b6:98:1c:3b:7d:5a:2e:03:33:41:2c:ce:4d:ba:4f:
1c:69:73:13:3f:3a:eb:f8:7f:31:4c:10:ea:4f:ec:
e7:0c:cb:58:e3:33:5f:e4:49:3f:30:6a:1b:e4:2f:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:76:2D:32:7B:8D:79:B3:A2:87:A2:EC:0C:EC:58:27:78:3B:9C:7B
X509v3 Authority Key Identifier:
keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/enYtMnuNebOih6LsDOxYJ3g7nHs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:39e0::/32
Signature Algorithm: sha256WithRSAEncryption
6a:60:58:6a:f7:9c:da:d5:31:b2:8e:be:9a:46:16:43:1c:1d:
33:12:c8:6d:ec:09:48:14:66:d3:5b:a2:5f:01:d3:b9:7e:06:
d5:e7:44:39:59:f6:51:35:42:5c:17:4e:0b:00:b2:3a:3c:4f:
fc:58:a5:de:83:8b:19:3b:4f:69:38:6a:9d:b1:69:63:c6:3f:
1c:e0:ba:f4:20:d9:f7:0f:ad:d5:90:e2:01:65:eb:a3:30:4f:
81:b5:05:93:12:51:29:fc:28:c9:0a:4c:66:e5:a2:80:ff:4a:
2e:0c:23:73:38:3d:a2:44:48:0c:09:2f:04:7f:f8:f0:88:d9:
88:59:b6:a4:8f:c4:c8:1d:10:7f:06:2d:09:24:21:25:7e:30:
61:ba:af:e3:6e:35:49:67:f7:f9:c2:44:5f:05:c3:92:e5:6d:
8d:be:cf:c6:ab:8e:d8:78:fb:53:50:69:7f:f4:30:31:70:89:
a7:59:3e:4f:a7:54:68:03:ce:87:c2:1b:5a:28:9a:d4:c7:03:
8d:4f:55:0f:48:e0:f2:a0:8f:98:16:9f:c9:42:5d:4f:7a:1e:
8f:26:57:32:de:42:4d:2b:05:19:3d:16:84:c8:47:68:4f:86:
d0:79:dc:3e:10:c5:5c:53:2e:b0:e3:9c:f3:01:13:be:54:a4:
9f:f4:b7:11
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Sep 4 10:11:23 2024 by rpki-client on console-fra.rpki-client.org