Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa
File: GtXcyR395XF5WfELYNEAeazNkHo.roa (raw, json)
Hash identifier: 0RUgMNwJhir+FEAmjIh/PG/ag6hg/hpt5Db8DkX2iM0=
Subject key identifier: 1A:D5:DC:C9:1D:FD:E5:71:79:59:F1:0B:60:D1:00:79:AC:CD:90:7A
Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Certificate serial: 05
Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa
Signing time: Wed 16 Aug 2023 07:43:09 +0000
ROA not before: Wed 16 Aug 2023 07:43:09 +0000
ROA not after: Wed 14 Aug 2024 15:30:16 +0000
asID: 131642
IP address blocks: 2401:26a0::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 31 Jul 2024 15:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Validity
Not Before: Aug 16 07:43:09 2023 GMT
Not After : Aug 14 15:30:16 2024 GMT
Subject: CN=1AD5DCC91DFDE5717959F10B60D10079ACCD907A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:34:bd:42:b5:09:68:93:f5:be:43:c8:22:79:
a5:33:58:c7:59:de:93:17:43:5c:d0:c7:96:b3:63:
1c:a7:90:10:7f:5a:43:d0:0e:c0:91:3b:e1:00:35:
21:c2:55:4c:c7:c9:f4:cf:40:1e:4c:03:03:22:43:
b7:00:c9:71:44:28:f3:5b:be:39:af:6f:19:3a:91:
a2:ad:87:26:d5:48:4e:fe:50:bb:bf:45:e5:7a:56:
ed:61:9f:5a:28:6c:45:1f:85:ff:1a:c1:8a:fc:f7:
07:da:4a:73:35:06:e4:bf:01:ce:9e:72:da:4d:16:
a1:99:a8:8e:2a:dd:f4:67:87:3c:02:f3:56:11:9e:
bd:66:d7:03:08:0a:d6:b3:f3:f1:ba:7b:bc:dc:cb:
68:c3:0b:ba:70:10:df:d8:67:de:0d:41:75:d9:5a:
16:8f:22:f5:78:76:a0:ab:93:c7:88:3f:f6:35:6b:
0e:9c:8c:36:ce:aa:fa:80:92:83:30:c5:6e:05:69:
b9:dc:16:83:2f:0a:70:10:14:f5:8e:f1:0b:9a:0e:
a1:e2:12:f5:6e:c1:5c:72:fa:d3:1f:0a:a2:24:ad:
4e:56:1e:26:c7:cc:57:73:ca:de:a5:ad:ea:ce:b8:
75:d8:60:46:d9:3b:ea:ee:94:c1:19:ce:1b:f3:ee:
4f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D5:DC:C9:1D:FD:E5:71:79:59:F1:0B:60:D1:00:79:AC:CD:90:7A
X509v3 Authority Key Identifier:
keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:26a0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:41:a1:aa:62:db:ab:00:1c:12:9b:7d:f7:af:a9:9a:71:c6:
18:88:22:38:c9:4a:8c:80:5f:29:ca:29:f3:6a:b2:70:ae:ef:
f9:81:f6:cf:ce:99:aa:5a:5b:23:41:c4:f9:04:dc:85:0f:c2:
d6:e7:9f:e7:a1:7b:44:62:9a:cf:55:68:e9:f2:9b:65:ff:22:
0d:56:f1:9d:e2:50:e9:18:9d:bc:b2:c6:1e:1e:be:ce:22:e4:
4b:69:07:8a:ab:f0:9a:8d:1a:91:01:f4:01:43:1e:e9:3a:11:
ed:87:0b:86:72:1a:a4:36:33:07:ec:1e:dc:28:4b:ed:9a:95:
eb:31:ba:00:56:05:5b:ca:5b:0b:9a:99:8e:79:dc:cf:95:65:
fd:ce:f7:0b:a6:f5:da:5a:45:ce:29:fb:a4:9d:6a:2e:7a:48:
a6:ee:12:73:7e:dc:7f:4c:68:39:c2:2d:82:ad:86:a1:7b:bf:
da:62:59:e6:bc:fb:1b:55:dc:68:52:9a:78:6c:3a:0f:42:54:
41:83:4d:e5:7b:2e:52:b8:a3:fc:0e:d7:24:75:e7:1d:39:a8:
13:d3:44:eb:09:8b:eb:5d:9e:97:d3:85:f1:85:c3:f2:33:83:
fc:02:bf:7b:94:b8:1a:f0:75:b5:56:ac:98:d0:f6:4c:94:67:
c5:47:56:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 18:24:55 2024 by rpki-client on console-fra.rpki-client.org