Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/qXZUGjYkOApYG1JmHGFrNw038TE.roa
File: qXZUGjYkOApYG1JmHGFrNw038TE.roa (raw, json)
Hash identifier: 4yaMcRE63brBYnwSvNLiibgODhsrxRU/wFZq9x3BUTI=
Subject key identifier: A9:76:54:1A:36:24:38:0A:58:1B:52:66:1C:61:6B:37:0D:37:F1:31
Certificate issuer: /CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A
Certificate serial: 05
Authority key identifier: 8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/qXZUGjYkOApYG1JmHGFrNw038TE.roa
Signing time: Fri 25 Aug 2023 14:10:46 +0000
ROA not before: Fri 25 Aug 2023 14:10:46 +0000
ROA not after: Fri 23 Aug 2024 15:30:15 +0000
asID: 131642
IP address blocks: 2401:2b60::/32 maxlen: 64
Validation: Failed, certificate revoked on Fri 09 Aug 2024 15:41:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A
Validity
Not Before: Aug 25 14:10:46 2023 GMT
Not After : Aug 23 15:30:15 2024 GMT
Subject: CN=A976541A3624380A581B52661C616B370D37F131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c1:ab:c8:c0:e0:68:c4:5f:05:f5:84:b8:7f:
da:7d:67:9c:c7:92:6c:73:cb:4f:6a:fe:a8:ae:03:
cf:f9:32:72:d0:37:c0:c5:91:b3:46:6a:6f:4d:98:
5d:c1:bd:f4:09:dd:8b:45:d5:92:05:bb:fc:4f:a9:
5c:e8:a7:c7:60:57:80:20:92:fc:ad:d4:12:6e:e4:
e8:3c:b9:89:26:b7:65:6b:f9:e3:35:26:11:1b:57:
51:3c:a4:8d:7b:1b:ce:d0:d8:98:9b:07:a4:b1:46:
e7:3c:66:12:a9:5e:3a:b3:ca:ee:9f:f6:d6:b0:20:
01:06:16:a8:67:be:11:67:2a:de:8f:f6:8e:96:5b:
97:c1:a3:54:f0:25:2c:cb:01:b4:c2:d7:45:6c:96:
7f:01:fe:f6:18:22:dc:16:73:17:d9:5b:b4:88:4e:
92:e2:b8:f2:60:77:4d:75:f1:bd:40:d4:b9:a8:57:
f2:4f:d3:99:60:0c:06:45:ef:e3:62:80:bd:ae:bd:
aa:ee:0d:28:f6:6b:99:2c:7a:2d:76:3e:12:06:55:
9d:ae:fe:99:9f:7f:9f:0f:c6:32:a3:8d:42:22:13:
f4:52:eb:7d:e4:50:0d:be:6c:67:0e:aa:41:90:56:
b9:ff:d0:7a:ed:f9:85:f0:36:b9:1e:4f:1a:08:40:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:54:1A:36:24:38:0A:58:1B:52:66:1C:61:6B:37:0D:37:F1:31
X509v3 Authority Key Identifier:
keyid:8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/qXZUGjYkOApYG1JmHGFrNw038TE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:2b60::/32
Signature Algorithm: sha256WithRSAEncryption
13:03:73:42:88:d9:04:35:c5:86:23:79:60:d8:9d:9c:c5:79:
19:0b:11:b1:6b:38:c3:d3:75:9a:c4:df:23:be:e2:9f:e4:2b:
60:c0:d5:3a:14:f1:b0:83:cd:c1:4f:7a:84:57:af:f8:46:72:
09:5a:5a:46:e0:02:9d:46:ee:42:b9:b3:ec:ff:e3:01:50:be:
38:88:49:16:57:e1:df:34:0b:a5:be:54:f8:25:41:8c:54:f4:
6d:88:39:41:04:d2:9d:eb:07:84:3d:92:9a:b6:a9:c0:3d:1c:
93:b4:f8:29:68:b1:fb:2b:a9:45:5b:16:42:82:b1:a2:ce:76:
63:af:22:0c:b8:61:97:bc:a3:73:6f:8b:b6:29:d6:95:a4:2e:
34:d7:8a:4a:50:e2:bd:0f:e5:40:7b:d0:39:9b:d3:ca:c6:11:
e3:6f:17:74:b2:a7:07:62:39:fc:c1:2f:05:19:97:e1:44:d5:
74:b6:97:d9:6c:6d:3c:4d:71:23:ff:14:0a:f2:18:f8:40:f1:
aa:a8:95:07:b0:b8:fb:f8:20:51:fc:1a:42:a7:ff:bc:b6:3d:
75:9f:a0:3c:fc:9b:ee:fe:3a:a3:31:02:b5:2e:17:0e:aa:b9:
22:81:33:68:61:48:e5:9f:4d:1c:b6:13:77:a6:ee:48:3c:29:
6a:9b:5d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 18:23:57 2024 by rpki-client on console-ams.rpki-client.org