Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/GG5aPEecso6iG7G_b7W-j-EkEgg.roa
File: GG5aPEecso6iG7G_b7W-j-EkEgg.roa (raw, json)
Hash identifier: ddI80KiKtY3jpZv5KU86oBAN5v8mMHDA30tKWUG3Mhw=
Subject key identifier: 18:6E:5A:3C:47:9C:B2:8E:A2:1B:B1:BF:6F:B5:BE:8F:E1:24:12:08
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0A49
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/GG5aPEecso6iG7G_b7W-j-EkEgg.roa
Signing time: Thu 15 Sep 2022 02:50:23 +0000
ROA not before: Thu 15 Sep 2022 02:50:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 2001:4500:1000::/40 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 15 02:50:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=186E5A3C479CB28EA21BB1BF6FB5BE8FE1241208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:df:ed:93:ea:5c:e4:9f:21:7c:9d:ff:96:5d:
95:a0:2b:3c:4b:ed:dc:c6:28:97:97:43:3d:cf:49:
0e:b7:33:7b:00:04:0d:f3:8e:4c:81:66:7d:8f:0b:
54:25:1a:7f:03:26:e5:59:52:24:e5:53:ff:67:83:
b1:0f:61:ef:b2:7d:bf:a8:e6:ca:75:e7:0d:7a:34:
b7:db:e8:6a:8a:9d:00:9c:d4:8f:81:0e:83:71:7a:
52:26:b4:ef:da:e0:79:ed:49:06:fe:6e:e0:ca:ed:
61:c3:0f:2e:34:bf:75:bc:9e:8f:04:ee:ff:41:ff:
bf:75:a7:54:05:82:6b:8c:1b:df:66:ba:55:96:81:
09:6b:58:08:ba:d0:c7:47:54:4d:8a:0a:82:2f:e6:
42:a4:09:bb:70:ae:81:d5:f0:97:e2:0e:79:9e:7b:
09:74:75:e2:4e:a5:66:62:9f:12:ad:41:ed:7a:45:
fa:0c:5c:e3:d0:05:f6:5b:43:35:ad:ce:5b:c0:e5:
d1:a2:e6:ed:80:c9:c5:60:5c:69:84:9a:75:d1:3c:
4c:8f:b5:d6:cb:12:57:7f:36:0b:e2:dc:2d:2f:e0:
ef:8d:03:4d:09:43:a5:c7:3e:8c:38:be:d7:94:82:
ff:50:71:77:51:e0:a2:56:da:2e:b6:a9:eb:80:7d:
9e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6E:5A:3C:47:9C:B2:8E:A2:1B:B1:BF:6F:B5:BE:8F:E1:24:12:08
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/GG5aPEecso6iG7G_b7W-j-EkEgg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500:1000::/40
Signature Algorithm: sha256WithRSAEncryption
97:c4:9a:e8:7b:63:92:2b:4c:66:8e:da:27:8f:32:d8:6a:47:
5d:86:06:b7:79:0e:c6:f4:05:69:44:fb:f6:96:fb:f3:4e:ca:
6a:0e:d1:ef:19:90:76:45:66:1e:82:7a:a6:43:f0:a2:db:f2:
f6:49:ba:ad:d3:86:ad:79:15:55:be:1b:63:48:e9:ee:e0:57:
7c:e9:36:3e:a1:f9:b5:db:bf:64:cf:02:72:d9:91:60:d8:ae:
12:6b:ae:8d:f3:f7:a0:81:6e:4f:48:eb:76:db:23:8c:84:a6:
44:c0:34:2d:74:10:a7:fa:72:32:97:a9:17:5f:4a:e2:ab:fa:
ba:42:4b:3a:2e:99:b3:b5:28:50:21:11:a8:10:93:85:3d:8b:
df:7d:b1:5e:9f:56:41:df:f3:3a:b2:4d:37:c6:ea:1f:f1:c4:
b0:8b:a7:8e:9f:ba:56:0e:4a:03:ee:f2:d7:51:cd:c9:38:62:
7b:a4:ce:67:9c:f3:db:82:6e:8c:50:1b:78:28:08:dd:30:32:
d7:fd:ad:e3:c8:58:1b:d7:3a:26:ae:c9:00:c0:e2:99:42:fd:
5e:a5:d5:32:7c:1c:10:d9:b8:c8:a3:2f:80:d0:c3:b9:9a:de:
08:73:1d:54:93:f1:00:f1:84:19:38:3a:cc:ae:77:20:ba:7a:
84:d4:00:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org