Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARADISE/8h9XpPiTeseqxChpyx3GbAjDwPM.roa
File: 8h9XpPiTeseqxChpyx3GbAjDwPM.roa (raw, json)
Hash identifier: lHUEw4awwziGPPcLQ6laRiqxh/vCOPtcdECYZObs18g=
Subject key identifier: F2:1F:57:A4:F8:93:7A:C7:AA:C4:28:69:CB:1D:C6:6C:08:C3:C0:F3
Certificate issuer: /CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Certificate serial: 01D1
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/8h9XpPiTeseqxChpyx3GbAjDwPM.roa
Signing time: Fri 01 Sep 2023 09:34:59 +0000
ROA not before: Fri 01 Sep 2023 09:34:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 45102
IP address blocks: 103.175.152.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jan 2024 05:28:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465 (0x1d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Validity
Not Before: Sep 1 09:34:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F21F57A4F8937AC7AAC42869CB1DC66C08C3C0F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:39:ce:ca:c0:c6:a0:43:a1:f2:0d:f4:b8:
8e:c0:a3:eb:40:8d:6f:85:24:6a:a8:5e:87:17:e5:
0f:0e:d7:38:f9:b2:ae:56:55:7b:fa:c4:83:d8:21:
f9:63:99:2a:67:9a:a2:3d:b0:b5:b1:77:c6:6b:e8:
56:30:e9:31:95:2d:dc:08:7a:11:15:d0:f4:6f:0f:
74:05:30:79:df:e4:7c:dc:a2:8d:57:43:c3:1e:45:
84:f8:6e:f1:f4:50:8e:72:a0:9b:b7:12:7a:85:24:
66:1c:b5:ae:36:68:84:7e:71:11:03:e3:ea:fb:da:
3e:26:ba:48:de:30:55:75:19:d8:7c:92:40:25:03:
93:f3:40:63:1a:34:e5:54:35:52:e9:e5:0b:af:76:
6f:1b:12:75:d7:4a:4a:4b:4e:13:76:5b:e5:e2:5c:
92:f9:5c:0e:43:f4:0c:0e:2b:fa:9d:80:eb:6d:37:
5a:01:a4:ad:5f:b4:04:3f:81:80:92:96:ed:df:e3:
e8:b3:2f:bb:d9:c2:8f:3e:54:b6:a6:75:e3:0f:93:
82:40:c9:40:f3:14:a7:19:24:c1:fc:01:29:92:90:
ff:4e:ed:ac:9f:fc:c6:48:d4:bb:90:3f:4e:6a:a1:
6a:9d:d2:b3:1d:55:e1:5d:f3:78:89:5f:2c:09:59:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1F:57:A4:F8:93:7A:C7:AA:C4:28:69:CB:1D:C6:6C:08:C3:C0:F3
X509v3 Authority Key Identifier:
keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/8h9XpPiTeseqxChpyx3GbAjDwPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.152.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:e7:50:23:49:3a:4c:72:cb:30:04:52:12:9a:9b:49:47:90:
b5:48:87:4d:cc:4e:00:c0:8e:48:56:16:0b:b7:83:ba:13:d9:
0e:91:60:80:7d:4e:66:34:a9:51:ae:4b:51:50:af:8f:0d:06:
28:ae:48:9d:18:97:17:7e:f9:b7:81:47:8b:7e:31:b4:ff:2b:
b1:47:77:8a:de:2c:bb:08:1e:86:52:c9:72:56:b7:56:22:07:
3e:97:18:17:8d:cc:8f:18:20:fd:2c:b1:cd:b2:12:49:03:ae:
d5:18:40:f2:6c:05:b8:c5:ac:e0:23:8d:4a:66:be:74:fc:bd:
80:e2:6f:e6:48:d5:f2:12:bb:0e:5f:d2:95:b5:96:cc:83:8a:
85:59:ed:b6:4d:ad:c4:6c:0b:57:1e:c4:78:50:96:7d:06:b1:
e3:19:70:a1:35:73:1e:4a:8e:a1:c1:83:7a:71:db:5e:57:b0:
e8:7c:31:48:42:da:dc:f7:6e:dd:37:88:36:f5:8e:5f:2f:b9:
18:1b:86:be:a8:ec:0a:d4:7e:12:3f:07:de:da:93:e3:2f:ee:
1b:47:60:35:63:8f:58:f1:ed:98:8f:55:16:5d:6f:43:e3:93:
60:43:4e:65:1a:fe:69:52:16:73:e5:42:71:4b:ba:83:78:28:
c7:28:1b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 08:46:28 2024 by rpki-client on console-fra.rpki-client.org