Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SECUNET/dXwGApdYATxn9KM8mgJCbOi1G_c.roa
File: dXwGApdYATxn9KM8mgJCbOi1G_c.roa (raw, json)
Hash identifier: x/GgdkoUVykGPxrOh+zV8vM5DMCtfW0vz4OEvjbX3xM=
Subject key identifier: 75:7C:06:02:97:58:01:3C:67:F4:A3:3C:9A:02:42:6C:E8:B5:1B:F7
Certificate issuer: /CN=3F4E063886AD351FF822805AF8D569944B8DE517
Certificate serial: 0C
Authority key identifier: 3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/dXwGApdYATxn9KM8mgJCbOi1G_c.roa
Signing time: Wed 28 Jun 2023 09:01:57 +0000
ROA not before: Wed 28 Jun 2023 09:01:57 +0000
ROA not after: Wed 05 Jun 2024 03:26:09 +0000
asID: 7483
IP address blocks: 103.198.152.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 03:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F4E063886AD351FF822805AF8D569944B8DE517
Validity
Not Before: Jun 28 09:01:57 2023 GMT
Not After : Jun 5 03:26:09 2024 GMT
Subject: CN=757C06029758013C67F4A33C9A02426CE8B51BF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:36:12:94:dd:8a:42:3e:c9:c9:d3:ad:c7:
81:fe:25:37:0b:54:aa:a4:ef:16:a7:16:9f:16:46:
5b:69:89:9b:34:d9:af:9c:55:5e:d0:54:c1:cb:c7:
0c:40:12:90:47:37:23:62:8a:65:03:b3:26:77:53:
07:88:48:fb:ed:e7:ed:4f:46:23:30:74:aa:99:9d:
3c:2a:e3:29:bf:94:45:86:2f:c7:7c:d8:77:bb:5b:
01:4c:a3:94:03:62:69:c7:1f:9b:93:88:76:46:8e:
85:88:93:4d:b7:1e:a6:8f:20:85:03:ca:67:06:c0:
da:22:ce:75:fd:11:24:f7:81:d5:c0:ff:71:7d:a1:
5b:f5:66:9d:21:62:e2:30:56:5b:4d:d5:dd:5e:37:
6e:f9:25:de:bd:da:7d:92:2d:2e:49:7c:23:17:cb:
7e:62:b1:94:b7:31:b5:1b:18:9c:f1:55:bf:cd:61:
31:75:64:d7:6e:5f:0c:51:ea:7e:5d:64:9c:93:27:
f7:5d:7c:3b:2c:b2:9a:3e:73:7d:0a:25:a3:94:f4:
cf:ad:07:53:63:8a:70:d2:b4:86:87:cf:ab:e9:a2:
2d:6b:f1:73:6a:d6:f1:44:02:92:95:21:03:aa:67:
c6:8f:2a:26:7a:3e:e6:c7:1d:7b:95:31:0a:83:70:
0e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7C:06:02:97:58:01:3C:67:F4:A3:3C:9A:02:42:6C:E8:B5:1B:F7
X509v3 Authority Key Identifier:
keyid:3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/dXwGApdYATxn9KM8mgJCbOi1G_c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.152.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:10:67:0b:f2:d6:b4:a6:bb:86:fe:f8:65:72:9d:0f:c6:e2:
24:94:e6:e4:20:32:24:48:d3:53:1a:9e:ef:cb:f4:29:18:1c:
07:dc:f4:59:31:28:4e:53:f9:70:08:5d:8f:63:ef:6f:a0:ca:
76:3b:03:8c:bc:e8:8d:a3:66:15:d2:f7:b0:89:90:ad:d2:5e:
5c:c7:b6:4b:dc:e6:ff:55:9f:fb:c6:bf:3f:c8:ae:2e:65:54:
76:40:c3:4e:e1:29:e0:c8:86:01:3f:38:4c:73:a5:61:d5:dc:
46:b7:a9:cd:20:12:b7:e9:12:68:df:8b:bf:fd:a5:fb:e1:38:
48:66:d8:d3:1f:68:33:05:83:a0:fb:d8:2f:a0:5a:fc:56:a2:
e9:b2:4b:8d:e2:9a:17:45:ab:56:f7:61:f6:fc:ca:d8:c0:10:
08:4e:5a:e8:27:af:3a:73:40:aa:49:8b:ee:0d:46:cd:d0:5f:
09:fd:bf:a3:f5:f6:0b:50:4a:d7:5a:71:b3:b8:01:84:46:5c:
ca:45:52:14:43:8a:25:4f:c0:28:07:eb:43:43:9e:ac:9d:b1:
3c:15:46:40:a8:e9:74:ae:57:ad:73:34:89:28:58:9b:6a:fb:
ab:36:cc:12:00:1c:bc:b2:b3:5f:14:dd:1b:87:d8:38:ad:16:
59:16:f2:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org