Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/PFy2WrPYLb36GmUCwm3MtT1LSbE.roa
File: PFy2WrPYLb36GmUCwm3MtT1LSbE.roa (raw, json)
Hash identifier: xEjwIEEOZx8eu3xN406yDjfHZjr2RfzuT8KyChS3Xpo=
Subject key identifier: 3C:5C:B6:5A:B3:D8:2D:BD:FA:1A:65:02:C2:6D:CC:B5:3D:4B:49:B1
Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Certificate serial: 0F6A
Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/PFy2WrPYLb36GmUCwm3MtT1LSbE.roa
Signing time: Thu 15 Sep 2022 02:38:01 +0000
ROA not before: Thu 15 Sep 2022 02:38:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 103.126.252.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3946 (0xf6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Validity
Not Before: Sep 15 02:38:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C5CB65AB3D82DBDFA1A6502C26DCCB53D4B49B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:16:10:4b:c8:bb:bf:0d:97:a8:87:ba:78:
47:45:db:59:2c:12:21:9d:a6:e5:ba:fd:f0:01:b3:
48:5e:cc:81:f5:b0:a1:b4:c4:47:ec:9e:2f:73:63:
74:d5:49:8f:78:ff:55:0a:da:2d:74:bc:7e:7d:1c:
df:0a:7a:ea:6d:93:ad:34:ff:a3:2c:84:ee:3e:48:
30:84:c1:21:59:3e:2e:8a:e7:bc:26:bc:7f:14:d9:
e3:5d:e0:35:9c:b3:cd:57:45:33:bb:9f:c1:17:05:
e7:3c:85:dd:4f:6f:66:6b:47:10:99:e7:39:28:24:
0a:0a:3f:f8:3c:f2:94:ae:ce:93:23:14:f0:1c:2f:
1b:88:4f:b7:b0:04:d9:68:a1:3a:ee:90:8c:aa:e1:
27:bc:c6:e1:4b:7c:6e:30:6f:cf:a8:33:77:95:56:
bd:2d:36:76:b3:48:2a:45:6a:e1:73:9c:95:ff:d1:
ff:8f:16:4c:bf:33:f8:6d:09:c3:a3:e2:79:5e:92:
3a:e8:53:17:de:7c:f2:ec:bc:99:9d:34:ed:37:d5:
0e:bb:3f:81:c7:ae:d6:44:1f:0a:5e:bb:29:cc:24:
d2:e0:c9:2a:13:05:ff:13:8d:8d:d5:6c:27:b3:f4:
21:77:5d:5d:13:f0:f4:1e:fe:0f:6d:d5:d2:c8:30:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5C:B6:5A:B3:D8:2D:BD:FA:1A:65:02:C2:6D:CC:B5:3D:4B:49:B1
X509v3 Authority Key Identifier:
keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/PFy2WrPYLb36GmUCwm3MtT1LSbE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.252.0/22
Signature Algorithm: sha256WithRSAEncryption
95:aa:92:7a:03:52:30:d6:02:68:1a:9a:70:28:df:ce:23:c5:
eb:4b:e3:c9:50:5d:62:8c:f2:6e:03:3a:41:99:39:76:7c:46:
a6:3d:63:61:24:2e:ea:01:94:15:af:d4:8b:de:de:56:18:48:
95:85:ec:66:8a:f0:ce:19:11:63:f8:22:be:8b:84:e8:b2:ae:
e4:47:22:a8:9a:0b:06:fc:16:3f:3c:34:35:df:ec:f5:30:dd:
5e:1c:d1:0e:71:67:b5:cb:1c:44:07:e1:3f:21:39:f5:8d:a4:
8d:52:b5:af:91:9f:73:98:55:5c:b8:8f:fa:5d:65:91:86:24:
90:4b:7b:47:f7:36:2d:5f:5c:54:10:6b:8d:f9:3b:7a:20:ef:
32:e4:ce:7d:ef:01:41:b3:1a:07:ca:93:57:5b:60:5b:86:8d:
36:26:ef:b9:af:fc:7d:92:a3:51:a5:d5:d1:90:4e:ff:d7:de:
fe:cd:0f:6b:bd:61:b8:d2:c1:cd:4d:98:f6:7f:51:d4:66:95:
42:84:61:c4:ad:01:5c:93:59:54:6c:0b:b3:73:54:66:b5:9d:
fa:df:3f:78:db:46:5f:0b:09:b3:eb:ed:f4:a0:10:f7:40:d8:
38:dc:05:28:d1:95:4f:86:4e:6f:68:21:58:a0:84:ab:09:c5:
df:93:db:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:49 2023 by rpki-client on console-ams.rpki-client.org