Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/IM6yHJFPfTG8wn5ecfkXdJOOmpg.roa
File: IM6yHJFPfTG8wn5ecfkXdJOOmpg.roa (raw, json)
Hash identifier: VvuFUGEnME6hwfN/WmitQx92sYd9GTrPT6InwLEqZm8=
Subject key identifier: 20:CE:B2:1C:91:4F:7D:31:BC:C2:7E:5E:71:F9:17:74:93:8E:9A:98
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0A6C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/IM6yHJFPfTG8wn5ecfkXdJOOmpg.roa
Signing time: Thu 15 Sep 2022 02:49:22 +0000
ROA not before: Thu 15 Sep 2022 02:49:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18182
IP address blocks: 61.64.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 15 02:49:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20CEB21C914F7D31BCC27E5E71F91774938E9A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:9f:57:92:6b:e1:b8:ed:78:ea:22:7c:1e:
d7:66:fc:3e:30:d6:79:4d:c2:08:0a:26:32:2c:34:
1d:6b:17:fd:85:b3:52:d6:1c:b6:67:47:a9:30:0b:
6a:6b:65:50:fe:79:d1:d5:74:0a:0d:72:06:f0:eb:
05:80:8b:2a:74:59:4a:d3:86:f1:41:23:53:97:c7:
8d:85:2f:63:c4:67:30:55:f6:0c:ab:d8:bf:a9:05:
c4:3a:3d:9d:09:22:2d:c2:a2:c5:c3:69:42:5e:c4:
e8:52:0d:7a:1b:9a:d5:d9:46:ac:15:09:17:d9:b2:
5a:dd:00:b8:6a:89:87:d3:39:83:e0:b0:b6:a4:b4:
e8:07:76:b5:8c:ca:27:cc:c1:4f:dc:3e:56:f9:07:
ec:97:f6:ce:f6:d1:88:53:cf:4e:dc:c3:56:37:6f:
c3:7a:70:40:9b:ef:5b:4a:a4:f1:ce:db:a0:84:fd:
77:fe:e4:7c:09:1e:9c:2d:6c:7e:5b:83:55:9f:b8:
40:14:bb:41:44:e2:30:77:5d:43:c7:45:7c:7e:cc:
c8:49:4e:6b:1b:1e:e9:7b:12:31:70:df:c0:99:d5:
ed:71:1a:25:6e:01:32:55:9f:17:ec:88:62:fc:16:
57:da:17:0b:0f:a8:ce:62:bd:a9:06:15:ee:18:69:
ca:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CE:B2:1C:91:4F:7D:31:BC:C2:7E:5E:71:F9:17:74:93:8E:9A:98
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/IM6yHJFPfTG8wn5ecfkXdJOOmpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:0f:df:be:a4:f6:f2:3f:96:1c:99:4a:1d:6f:07:16:f3:09:
bc:21:af:8a:20:af:71:2c:de:f0:5b:7e:ba:e7:b4:65:2f:7a:
07:81:ff:98:81:68:3a:9d:5b:3f:3b:8d:cc:97:48:22:ca:32:
df:3d:c7:ea:95:17:bb:bb:e1:9f:33:be:32:aa:04:1f:c5:5a:
40:90:ff:d7:8b:25:4d:e8:a2:6e:5b:a8:c0:ca:cc:4e:2b:8e:
19:eb:19:3a:90:ad:29:f3:53:9d:15:c6:06:cf:fe:92:1d:ad:
1c:ab:7b:6f:2a:71:43:d9:7c:c5:91:43:40:c0:65:21:c2:da:
70:e1:55:2f:00:7d:06:4d:61:7a:cc:6b:0c:74:ff:c9:b9:3e:
a3:67:88:3c:2b:1d:70:c7:9e:30:f3:22:83:00:bf:50:b9:23:
37:51:d6:eb:70:92:d6:72:83:b1:1e:68:a4:42:dd:f0:b2:17:
c5:22:6f:40:ea:96:a0:f9:4d:ce:d7:3f:15:21:f0:a5:d9:ee:
90:f9:42:09:75:5e:ba:4a:b4:ae:d4:c6:82:f4:28:a9:19:9e:
23:5c:f8:9d:b3:b5:03:5a:cd:f8:f3:84:27:72:bd:b2:87:fc:
fc:61:00:82:a1:c9:23:56:a8:56:90:92:6a:9e:87:c9:b8:89:
07:50:42:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:51 2023 by rpki-client on console-ams.rpki-client.org