Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa
File: MrM6MRCz-EnogqS5wOgpSEz2_QA.roa (raw, json)
Hash identifier: NGQzn52y45eFrC/v4iztvxlJYRXhnUOg37905p6TCmE=
Subject key identifier: 32:B3:3A:31:10:B3:F8:49:E8:82:A4:B9:C0:E8:29:48:4C:F6:FD:00
Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Certificate serial: 03
Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa
Signing time: Wed 16 Aug 2023 07:26:39 +0000
ROA not before: Wed 16 Aug 2023 07:26:39 +0000
ROA not after: Wed 14 Aug 2024 15:30:16 +0000
asID: 131642
IP address blocks: 103.254.212.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 15:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Validity
Not Before: Aug 16 07:26:39 2023 GMT
Not After : Aug 14 15:30:16 2024 GMT
Subject: CN=32B33A3110B3F849E882A4B9C0E829484CF6FD00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:45:5f:27:4f:24:d5:04:0b:0e:e0:fc:10:f5:
39:52:8e:dc:a1:61:9e:86:05:bc:42:61:9d:ad:f6:
4e:3e:d6:f6:1a:26:10:a6:b9:0e:38:a2:8d:be:fe:
9e:38:16:ba:4c:e3:4a:e1:e3:a6:32:7d:1a:05:cf:
8e:61:b1:11:ea:31:36:fd:bd:5e:f1:0a:bc:04:4c:
b7:f1:e2:7d:dc:ea:4b:a0:27:4c:c9:62:fe:87:6e:
68:4f:35:3b:8f:18:ba:7a:f1:e4:d1:5b:9d:68:b0:
e4:b3:87:78:83:c4:e0:f1:9e:36:71:66:ad:59:6c:
ee:3a:c0:71:08:76:45:47:21:97:a5:8c:2c:ff:9a:
09:28:27:04:51:94:f4:3d:4e:22:85:bc:82:36:46:
72:b4:84:e2:3a:a4:13:8c:ca:04:68:b4:61:f6:b0:
7a:79:7a:a8:ed:99:46:f1:2a:00:b6:c8:99:1a:23:
53:a2:97:9f:98:e4:21:81:ee:9e:3e:6d:10:67:34:
bb:ae:f2:55:57:6e:cd:47:01:60:5b:d0:6c:ed:83:
28:ef:cb:2b:04:e3:7d:f0:e1:c0:68:13:38:87:d0:
a7:9d:09:d1:6a:3f:ad:98:b2:dd:cb:a8:4d:2d:17:
aa:76:9b:dd:6e:8f:f2:91:69:87:1e:a2:d6:f7:cb:
21:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B3:3A:31:10:B3:F8:49:E8:82:A4:B9:C0:E8:29:48:4C:F6:FD:00
X509v3 Authority Key Identifier:
keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.254.212.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:32:b6:48:d1:e2:d8:9f:78:c1:92:1d:52:6e:a0:1e:80:55:
4a:90:c6:48:10:22:39:9c:ce:75:91:21:2b:fa:c0:3b:ae:5e:
2b:59:91:4f:e4:1d:0e:92:7e:84:be:4a:3d:7f:11:a3:27:a3:
38:f0:c0:df:71:4a:25:b2:69:ad:0c:e9:69:41:0e:62:f8:8c:
ce:32:61:bf:8a:84:0f:fe:7c:5e:20:07:be:87:dc:5e:60:ab:
a0:6b:f0:ac:e6:a6:d1:11:cd:7f:ab:93:4d:27:91:10:70:5b:
03:cc:41:d2:71:3f:a6:15:73:a2:36:84:96:5c:72:fa:a2:1f:
a5:46:09:ca:3f:97:47:2e:39:5e:df:99:f0:77:40:8a:20:35:
b8:e6:92:e2:37:e3:a2:b3:14:23:93:46:ff:8e:e9:c5:45:5f:
ef:b8:8a:45:fe:81:a7:87:ee:5b:69:3c:dd:bb:a4:f0:7f:3d:
54:2f:48:40:6e:4a:27:93:aa:1e:c8:f8:d0:b7:a9:cf:dc:49:
ee:7e:54:ff:56:0b:01:52:9b:71:9c:fa:6f:ca:70:c2:68:d5:
6d:42:01:1e:83:ac:0e:88:eb:89:10:3f:52:fb:f8:53:51:37:
bf:06:14:13:5c:d8:a4:7a:55:ed:c4:1b:76:bd:96:30:78:07:
71:12:14:62
-----BEGIN CERTIFICATE-----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Generated at Wed Jul 31 18:39:27 2024 by rpki-client on console-ams.rpki-client.org