Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/CWdSijTcNdooLalleGaD5Peuiv8.roa
File: CWdSijTcNdooLalleGaD5Peuiv8.roa (raw, json)
Hash identifier: yKhl7FsOXRiUsSQUOipGOdLwMD+KAJvtBS6ggeauHqk=
Subject key identifier: 09:67:52:8A:34:DC:35:DA:28:2D:A9:65:78:66:83:E4:F7:AE:8A:FF
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: 01B0
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/CWdSijTcNdooLalleGaD5Peuiv8.roa
Signing time: Thu 15 Sep 2022 02:48:55 +0000
ROA not before: Thu 15 Sep 2022 02:48:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 31972
IP address blocks: 2406:ce40::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Sep 15 02:48:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0967528A34DC35DA282DA965786683E4F7AE8AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0c:eb:46:06:b2:c8:4f:05:47:83:31:c1:2f:
9b:41:0a:11:97:9b:69:5c:0c:37:d6:58:97:af:eb:
d4:ae:d1:d0:0b:34:86:97:e0:a7:53:ab:7a:b2:1d:
f9:27:cc:49:b9:01:5b:54:5b:6a:7b:9b:12:5b:10:
39:2b:1c:a2:3b:12:ad:68:b6:ff:26:a7:14:b9:82:
22:98:94:0e:0e:cd:07:96:78:50:c9:3f:86:ad:f8:
01:db:81:96:c8:66:82:23:53:f1:f5:b8:84:c0:82:
db:20:38:1f:a8:83:ad:03:a6:e7:88:93:32:ca:ea:
18:71:42:f4:e8:1b:cf:d2:d6:14:dc:9b:7e:02:57:
50:36:39:32:40:9b:ac:d2:7a:6a:7e:b9:30:1d:8b:
3e:01:d8:38:20:4e:dc:3d:e8:de:9c:75:17:b7:fa:
eb:de:96:31:b9:cd:c4:bc:82:2e:a2:04:60:ef:a3:
0f:fc:4a:84:11:4e:09:14:75:35:8c:eb:71:00:63:
f3:26:55:b9:9d:80:3d:83:b0:5e:9e:57:5f:6f:d2:
ea:68:c9:a3:61:67:14:fd:b7:ed:0d:45:d7:f6:44:
93:c5:5c:3f:bf:e0:69:c9:12:63:b9:25:c1:8c:6e:
e5:43:b5:bf:49:20:45:84:48:37:9d:f2:00:1e:a0:
29:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:67:52:8A:34:DC:35:DA:28:2D:A9:65:78:66:83:E4:F7:AE:8A:FF
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/CWdSijTcNdooLalleGaD5Peuiv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
71:d7:05:2b:35:c5:8f:91:c0:37:13:34:30:a0:0a:4d:d0:14:
bd:32:d0:3e:78:f2:9a:21:ce:84:97:ed:9b:68:97:55:ef:14:
a2:50:9e:74:73:f7:98:e5:2f:ce:ac:d1:cb:f1:ad:2b:88:16:
11:3d:ed:82:8d:f4:ba:79:34:c7:bb:37:23:59:8e:b6:8b:69:
49:8a:59:3b:e9:b2:d6:ee:09:20:ef:13:58:be:43:6b:86:96:
61:12:3d:9b:20:67:55:4b:0f:ca:22:15:66:f1:fd:8b:77:35:
49:2a:a2:4f:64:ff:5c:31:63:5e:37:b9:72:24:f9:73:52:bc:
2a:17:8d:71:d4:78:55:0e:fd:16:5c:51:d3:6c:9d:ce:3c:a6:
cf:b8:05:de:3a:dc:e1:54:f0:a3:65:4a:5b:d2:43:02:15:d5:
47:aa:d5:04:fd:84:95:fc:b9:67:9e:d0:d1:67:3b:42:45:b1:
04:3b:b3:63:8b:a7:3b:97:f0:0c:a5:c1:29:64:3a:13:7b:40:
bd:c2:ac:ef:d8:4e:ba:cb:d8:06:6a:61:65:31:6f:f3:72:20:
f2:e0:c7:20:8a:1e:60:fa:2e:2d:18:27:6e:8b:15:02:34:5d:
69:3a:1b:63:c3:f0:3a:7c:06:36:1e:d4:07:e9:1e:07:17:85:
7c:6d:a2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org