Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/seyd36psnZ08XnX_ZMal3fCajSg.roa
File: seyd36psnZ08XnX_ZMal3fCajSg.roa (raw, json)
Hash identifier: 3nEM9Q8SME89rWIfcDHt1BQ94t7qvNgCi50aufLAHTo=
Subject key identifier: B1:EC:9D:DF:AA:6C:9D:9D:3C:5E:75:FF:64:C6:A5:DD:F0:9A:8D:28
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0A61
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/seyd36psnZ08XnX_ZMal3fCajSg.roa
Signing time: Thu 15 Sep 2022 02:38:33 +0000
ROA not before: Thu 15 Sep 2022 02:38:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d64::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 15 02:38:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B1EC9DDFAA6C9D9D3C5E75FF64C6A5DDF09A8D28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:15:ac:bc:31:9f:9e:ee:da:78:1f:df:d2:38:
b9:78:46:0d:bf:0d:42:18:33:ed:6a:42:20:71:c8:
bd:57:35:d8:31:7d:0a:c7:37:b1:39:ce:f4:14:98:
56:7d:07:b3:fe:43:09:cf:fe:37:95:9c:19:de:fb:
f8:db:b9:0a:fd:a0:80:77:7f:44:59:14:21:16:66:
f9:e5:a7:38:21:f9:c3:6a:e8:77:7f:2c:f9:bb:7a:
60:7e:c1:b0:6b:01:5c:86:e5:97:88:39:b3:90:1b:
c1:16:a6:4b:32:b2:3d:ad:c1:90:a9:1e:1b:b8:d6:
86:35:9c:89:d5:5a:d9:b4:f3:8d:52:cd:d2:c0:a2:
ab:ec:17:2f:d1:53:72:c1:e6:ab:ee:fd:60:b8:ce:
e3:68:a8:9b:cf:b3:ad:d7:c0:d9:90:51:7f:73:9e:
86:4c:a8:01:82:31:ef:35:4c:46:73:54:39:10:d4:
13:af:9f:5a:86:de:b0:c0:67:6a:d8:13:62:b2:93:
78:c2:f2:a2:96:1c:e3:87:73:d2:fe:8b:f8:27:c9:
c6:64:59:0e:10:5e:f1:5e:3e:a1:bd:ca:c9:a7:33:
79:f8:fa:73:cf:1f:02:c4:c5:ae:68:fa:ed:cd:0e:
63:14:21:1d:b8:fa:cc:2a:d7:d3:4c:17:da:ef:76:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EC:9D:DF:AA:6C:9D:9D:3C:5E:75:FF:64:C6:A5:DD:F0:9A:8D:28
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/seyd36psnZ08XnX_ZMal3fCajSg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d64::/64
Signature Algorithm: sha256WithRSAEncryption
31:56:c4:b2:fd:a7:5b:b4:4c:32:7c:b0:b6:18:71:d7:c8:0e:
fe:ad:45:fe:ae:8d:9e:91:e4:bd:0c:16:b3:39:cd:d8:c7:17:
00:c6:be:60:bb:4c:c4:15:bb:e9:8f:8a:76:6a:4f:36:af:58:
48:b6:45:4a:61:66:72:9b:a4:8d:e2:e3:d4:e3:29:f2:4c:fe:
6c:59:ba:9d:1d:b0:db:09:69:32:b9:0c:a4:90:23:a1:62:08:
0f:eb:d0:1c:fe:e6:b1:53:77:47:e7:95:d6:d8:81:e6:5e:64:
73:67:d2:06:32:f4:f0:cb:11:09:52:ed:57:e9:29:74:48:d4:
1e:2e:12:4a:f6:f0:88:e9:42:58:73:c2:b8:dd:76:10:98:2a:
5a:26:1a:28:e7:37:81:71:4d:7f:7b:9c:ab:02:40:d2:7d:04:
6b:c6:48:f2:05:77:da:45:f2:39:5d:b4:1c:38:49:11:be:db:
89:7f:ce:f3:f7:26:f9:d3:04:c5:a1:c2:08:96:88:92:da:51:
32:36:e7:44:97:86:09:02:3b:8a:ed:fd:e8:19:c8:5a:1f:5f:
86:d7:29:7e:c0:04:53:67:95:e0:2f:0c:c6:cb:ef:ff:01:c8:
e0:6b:e1:18:61:4f:7a:f8:43:3c:7c:33:f8:a5:cc:3d:eb:ae:
56:26:01:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:58 2023 by rpki-client on console-fra.rpki-client.org