Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fDveT_chY2aufpafdPFvmaQJRaE.roa
File: fDveT_chY2aufpafdPFvmaQJRaE.roa (raw, json)
Hash identifier: kIwMbph0PBnK80oqJNsnUIdB7f/m09/+Pbc16iEpnpk=
Subject key identifier: 7C:3B:DE:4F:F7:21:63:66:AE:7E:96:9F:74:F1:6F:99:A4:09:45:A1
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fDveT_chY2aufpafdPFvmaQJRaE.roa
Signing time: Thu 15 Sep 2022 02:50:05 +0000
ROA not before: Thu 15 Sep 2022 02:50:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7C3BDE4FF7216366AE7E969F74F16F99A40945A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:18:26:72:4f:76:37:b4:2f:32:3b:f2:94:3d:
df:97:07:ca:dc:ad:95:13:e6:dd:6c:50:9c:80:c8:
2a:65:17:66:fb:3a:4a:25:26:06:a9:fd:4c:12:d1:
0a:73:c2:05:eb:e3:8c:7e:cc:89:37:48:4d:04:ad:
c4:4b:ed:7a:d5:a5:2c:98:5b:25:94:3e:6b:83:17:
de:2b:3c:ac:55:86:00:98:b7:d7:9f:4b:44:11:48:
9d:6e:4e:aa:5d:8e:44:fd:a9:06:e3:10:6b:a9:65:
2f:e6:9a:21:44:ed:12:aa:fe:51:ed:05:8e:c7:bd:
98:a3:0d:dd:ae:e1:05:83:ab:52:b5:5a:47:ea:d1:
2f:fa:2b:f9:6a:a2:db:5f:04:02:5f:1c:66:43:ea:
bf:1d:f8:94:74:2e:c6:02:6b:46:83:82:69:2c:59:
d8:76:e5:b6:07:37:3c:77:b0:69:53:7f:e7:91:00:
f4:c9:98:55:a9:14:82:1a:84:be:6e:e0:d6:80:c0:
ce:69:d6:bd:1c:17:45:06:5a:f8:a0:a8:a8:eb:70:
94:3e:8d:66:73:3e:9d:d9:34:56:f2:c3:78:45:5b:
42:39:d2:c3:d0:84:58:45:67:e5:b5:61:26:65:70:
f0:83:a4:6d:80:ae:cb:ee:f6:35:ae:40:42:8e:86:
74:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3B:DE:4F:F7:21:63:66:AE:7E:96:9F:74:F1:6F:99:A4:09:45:A1
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fDveT_chY2aufpafdPFvmaQJRaE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c5:66:6b:99:12:e9:25:66:72:86:d2:62:a5:13:0d:4f:0c:d6:
74:5b:62:74:56:77:96:dd:a9:12:19:31:e1:11:e9:c9:d0:59:
f2:41:f9:2c:ec:ce:12:90:b9:0d:9c:38:c7:7e:dc:97:6b:e3:
8c:85:55:7a:75:5e:07:d9:db:2d:77:e8:e1:62:2f:e5:b4:ad:
1f:6f:06:b6:06:59:3f:10:18:8b:95:15:38:e8:68:a9:80:82:
94:23:ef:02:41:c4:4d:70:c7:21:f0:53:43:7a:6d:f9:a9:f0:
1f:1e:06:f5:16:72:c8:a4:d7:28:63:59:52:f3:fc:81:d3:c1:
e6:e8:f7:41:a9:c3:e8:09:65:3f:00:04:42:35:57:16:07:c7:
ea:aa:58:9f:a8:88:ae:8f:2f:6a:9f:48:7a:de:0c:fd:1d:59:
4a:b3:07:bd:dd:ba:6e:1d:06:6b:4b:6b:c4:b7:45:56:13:cf:
f2:5f:6e:b6:39:1c:33:f8:0c:a7:f8:a1:7f:86:ff:4f:b9:00:
cb:5c:48:51:4e:1b:a8:ce:c9:90:2d:12:ef:7a:9b:c8:d6:6a:
41:62:ab:59:e7:9c:2b:55:31:b2:ef:8e:d1:4e:8c:90:61:10:
4b:2d:8d:df:59:c6:48:7c:c0:13:db:74:c5:0d:88:3f:cb:86:
45:04:34:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:51 2023 by rpki-client on console-ams.rpki-client.org