Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/5Y6QUlMB1NEXu8LnaY6JatcJS8s.roa
File: 5Y6QUlMB1NEXu8LnaY6JatcJS8s.roa (raw, json)
Hash identifier: BtmLsJpzyEwV1wx4a3QOj7F+KXI05grNpZKb3BUkFBs=
Subject key identifier: E5:8E:90:52:53:01:D4:D1:17:BB:C2:E7:69:8E:89:6A:D7:09:4B:CB
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0A6C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5Y6QUlMB1NEXu8LnaY6JatcJS8s.roa
Signing time: Thu 15 Sep 2022 02:49:21 +0000
ROA not before: Thu 15 Sep 2022 02:49:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18182
IP address blocks: 2404:80::/28 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 15 02:49:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E58E90525301D4D117BBC2E7698E896AD7094BCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:03:3e:ca:b2:ce:ea:6e:8b:00:10:80:a0:
e5:a1:f7:de:ea:da:00:60:31:ee:41:fd:8c:9a:f7:
15:9d:1c:32:27:a2:8a:fb:43:29:dc:8d:3e:ac:d9:
e0:63:55:ad:38:35:d8:06:dd:ca:29:70:63:85:72:
3f:cb:04:78:1b:a4:29:22:04:12:67:d4:20:44:c5:
09:b1:f9:ca:e9:d4:fc:fb:0d:d3:43:9f:05:5f:88:
90:24:5f:16:c8:e1:01:f3:52:e9:5d:57:90:d6:03:
ae:31:86:bc:6b:64:57:7b:43:6e:46:e4:ed:0b:eb:
36:3d:fd:85:c6:a1:f6:6c:17:ba:cd:3d:e7:69:3d:
c7:a7:e1:e2:bd:66:27:dc:a2:c2:8a:c2:6b:4e:fb:
55:11:37:5e:a8:ed:6c:d6:ad:8d:dc:0c:02:12:9f:
cc:99:d8:dd:79:04:aa:f5:fd:28:ec:93:25:8a:32:
ec:2f:7f:e3:c4:93:7f:d1:94:22:1e:f9:ab:07:ad:
77:9f:92:2b:7f:09:fa:3e:77:6a:d1:33:2f:e7:0d:
38:24:d2:01:99:79:00:33:98:b5:1b:74:4b:78:6b:
31:07:01:bf:0f:de:2a:6b:4a:d7:4c:a4:74:91:71:
89:24:15:7d:d1:41:d4:e6:4b:b2:ad:8c:a7:99:7a:
c6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8E:90:52:53:01:D4:D1:17:BB:C2:E7:69:8E:89:6A:D7:09:4B:CB
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5Y6QUlMB1NEXu8LnaY6JatcJS8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:80::/28
Signature Algorithm: sha256WithRSAEncryption
04:21:89:da:94:18:85:83:1a:3c:f4:17:ad:f2:b8:ed:c2:22:
95:ca:b6:34:af:02:2f:80:58:cd:90:09:bb:9f:17:29:96:2d:
fe:36:aa:5e:b6:73:1b:c1:3d:fa:56:17:a0:6f:68:f7:bc:53:
fc:39:f8:74:0d:36:0e:e7:c6:b8:e2:c9:51:fe:64:72:30:e6:
32:74:19:a0:3d:1e:3f:4c:f5:ce:ad:f7:ab:ee:61:b9:f7:83:
06:aa:ad:c6:ab:fa:4d:87:41:e1:6d:9a:45:71:2d:b5:27:4d:
71:05:66:3b:f1:f5:40:09:df:e6:bb:db:45:37:a0:46:c8:c7:
fd:55:37:b2:fc:7d:7b:48:96:d2:93:23:3d:c8:48:fe:83:98:
da:84:62:bf:01:69:36:96:da:04:a7:f7:7c:91:f6:f9:88:6d:
a3:bd:28:26:08:96:cc:85:0d:43:22:63:be:3d:f8:b3:d8:86:
a3:91:65:47:f0:fb:94:d3:2e:85:cc:74:8d:11:d7:11:8a:95:
04:e6:f5:2b:a5:34:42:50:2f:d6:a8:2a:f0:80:9a:b3:d2:22:
2d:f1:4d:09:69:6c:62:03:7a:a6:40:c0:41:80:89:15:ff:f2:
c4:80:d4:cc:0c:f0:4b:ac:6a:f6:58:c2:f3:c8:83:07:29:15:
01:95:09:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org