Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/jemJE3_Kw6oMMfpuvNtChI4yMa8.roa
File: jemJE3_Kw6oMMfpuvNtChI4yMa8.roa (raw, json)
Hash identifier: WJYXFe4eD2mEXiZtQyY2FekSpMmRTVNOA7kdrdCYI70=
Subject key identifier: 8D:E9:89:13:7F:CA:C3:AA:0C:31:FA:6E:BC:DB:42:84:8E:32:31:AF
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0E3E
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/jemJE3_Kw6oMMfpuvNtChI4yMa8.roa
Signing time: Wed 16 Aug 2023 12:23:30 +0000
ROA not before: Wed 16 Aug 2023 12:23:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131642
IP address blocks: 2404:aac0::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646 (0xe3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Aug 16 12:23:30 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8DE989137FCAC3AA0C31FA6EBCDB42848E3231AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:73:5e:ab:3a:11:86:0e:06:dc:80:16:76:52:
61:5b:31:9f:ce:35:d1:ae:3f:b5:5d:b8:61:50:45:
39:ae:4e:b5:51:c7:91:5c:84:3a:77:b8:25:63:b7:
02:91:8d:2f:9c:f4:60:f6:0b:10:34:10:ed:0b:b6:
c4:da:4d:2a:72:2c:fc:47:df:48:ec:19:23:11:e4:
91:87:5c:89:b1:5d:a2:d3:fc:8d:1e:2a:31:9b:12:
16:39:52:0f:bf:ed:e1:71:d7:f1:1a:8d:8a:95:34:
ae:d3:fc:f9:3c:e9:40:17:78:52:d5:2b:57:d5:3e:
ed:f7:76:d5:1e:f0:6e:d8:e4:92:42:a5:c0:5d:a0:
c4:92:1a:a1:d3:d8:fb:1e:a9:15:05:8e:43:9e:17:
57:5f:05:e9:33:6c:d7:18:1e:f8:76:9e:a1:0a:80:
c4:22:c2:2e:11:18:64:c1:de:07:6d:d7:1a:57:f2:
13:02:9a:6e:ec:9b:73:ee:35:c9:b3:2f:81:b5:67:
f7:67:1d:31:66:66:72:00:20:55:d0:02:03:f2:f3:
df:0f:68:f5:77:4c:59:9b:c8:cd:b5:6e:60:bc:6d:
81:b8:1a:58:10:73:a8:d9:53:7e:a3:8b:66:e5:87:
b2:17:4b:05:1c:56:ca:f8:11:d6:39:f6:01:10:33:
4c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E9:89:13:7F:CA:C3:AA:0C:31:FA:6E:BC:DB:42:84:8E:32:31:AF
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/jemJE3_Kw6oMMfpuvNtChI4yMa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
68:74:f1:98:11:97:03:1f:87:d2:02:47:44:2b:9f:b9:e9:6e:
9a:fe:fb:40:e7:f4:7a:53:00:28:50:d5:87:d1:87:8f:f8:b7:
48:a6:de:5d:52:b8:e3:fc:15:b1:4d:9e:0c:c5:17:0e:c2:69:
f3:70:fc:5a:9a:97:f4:13:49:7b:19:b7:81:6f:d6:02:a8:61:
98:4c:76:50:55:7f:b6:66:3e:e0:1a:f3:5d:9f:d8:ee:43:42:
bf:02:c0:16:93:86:ec:c1:cc:fc:5a:e5:72:c8:e4:0b:cb:59:
2b:3c:b1:ec:a7:08:4f:6b:ac:79:46:4a:a7:9d:7c:28:d3:e2:
1d:86:4d:d0:0e:f7:7b:8b:ba:a9:52:d8:1e:c1:b1:cc:8e:a7:
b6:1d:5d:28:08:15:7f:61:f6:92:78:84:ad:17:f9:89:4b:15:
8b:04:35:6c:ee:7f:50:94:9c:66:2b:60:a3:57:2c:48:7e:ff:
ed:56:ee:06:08:fa:2e:0e:b4:70:22:37:d4:73:fe:1d:38:e2:
42:13:b0:b7:8e:f4:8d:cb:b5:22:b2:c5:87:b9:8c:c3:6d:2f:
71:04:74:04:3c:2d:88:5d:0a:13:23:33:81:e4:cb:9d:7a:7b:
ea:d4:4f:53:25:97:f7:6c:f9:d2:82:86:61:0d:34:47:f0:82:
98:16:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 13:09:57 2023 by rpki-client on console-fra.rpki-client.org