Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Ftkk2kkOMjuHINbHoEIPMp0jCK0.roa
File: Ftkk2kkOMjuHINbHoEIPMp0jCK0.roa (raw, json)
Hash identifier: Lk8/pFwrSHQbu8pUjYps3TBCJOxvm60zA0T5MCzmXXE=
Subject key identifier: 16:D9:24:DA:49:0E:32:3B:87:20:D6:C7:A0:42:0F:32:9D:23:08:AD
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Ftkk2kkOMjuHINbHoEIPMp0jCK0.roa
Signing time: Thu 15 Sep 2022 02:51:00 +0000
ROA not before: Thu 15 Sep 2022 02:51:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=16D924DA490E323B8720D6C7A0420F329D2308AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:58:76:27:84:f1:4c:bd:71:1f:aa:6d:7c:96:
ec:d7:74:9e:7b:6f:4c:cd:5c:2c:d4:7a:66:20:4b:
14:f4:4c:26:99:eb:be:d0:37:bb:07:90:bf:46:2e:
bb:5a:37:01:03:a4:6f:cb:ba:4b:55:0d:eb:d5:93:
02:ff:a0:30:ac:3c:fc:1f:08:42:ed:b8:83:1c:8c:
39:15:19:47:d1:be:62:88:87:32:00:4a:8a:85:bf:
30:47:c3:39:70:d3:f5:53:ee:51:ec:cc:ea:dd:c2:
fd:83:69:d4:00:54:eb:a1:44:8a:12:37:eb:ce:03:
f9:e4:45:21:5e:84:10:66:d3:38:98:94:82:eb:17:
56:cc:35:aa:f8:fb:6e:7a:e4:57:48:b8:a4:8f:c2:
35:3c:ee:bd:8a:12:c9:a6:3c:ff:7a:4a:1c:0a:0b:
bb:55:7d:41:40:fe:b1:dc:8b:fb:52:7b:32:80:cc:
23:28:f0:eb:5f:03:bc:f5:59:c8:37:55:4e:b8:6e:
2f:17:d4:50:7b:67:f7:2f:4e:57:f9:1c:a5:87:11:
89:05:3f:ff:39:cf:c3:9d:bc:a8:f5:7b:b1:70:2c:
ef:68:13:eb:d8:3e:f3:4d:c9:2c:67:3d:0b:ee:f9:
09:e0:d3:a2:5e:29:cb:dc:ae:ec:ae:0b:e7:09:73:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D9:24:DA:49:0E:32:3B:87:20:D6:C7:A0:42:0F:32:9D:23:08:AD
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Ftkk2kkOMjuHINbHoEIPMp0jCK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
52:aa:45:a0:2b:dc:5e:b8:d6:ca:33:db:2c:cd:65:f6:3f:10:
7b:38:7f:66:7b:54:58:5b:91:2b:ec:eb:25:aa:f1:8b:dd:62:
2c:4a:03:f1:78:64:d8:2a:56:e6:ac:31:a6:7d:17:d2:37:8e:
47:a6:0b:9b:fe:3f:38:f5:a1:06:c6:de:d7:a2:90:73:d8:b9:
cf:1a:25:af:34:9d:3f:50:36:b1:db:98:12:c4:54:61:2c:0b:
94:9a:d3:c9:62:a5:64:ff:2b:f2:e2:29:2f:f4:b4:62:e5:2c:
65:a8:48:fc:ee:ab:ff:ac:1f:a5:c4:45:ce:4f:37:18:0c:90:
d9:d7:17:05:e5:cf:1b:f0:24:8f:46:89:c8:42:31:b7:b5:23:
54:8d:b2:fe:3a:22:e6:38:de:9f:39:2d:68:63:21:08:6d:46:
a9:3f:42:96:d5:33:18:2c:f2:fd:18:46:8d:bf:3e:2d:0f:76:
7d:83:62:2f:82:52:43:f1:76:1b:c3:c5:1c:95:fc:7c:2a:13:
b3:8b:15:13:d5:68:f8:bf:c1:b8:5d:24:9c:8e:6d:1b:83:e4:
2b:cf:a5:e2:94:b7:92:9b:5d:3e:25:8d:42:b1:93:db:c7:8d:
85:67:c1:73:54:dc:03:9b:7b:aa:73:5e:7f:5c:41:18:6d:c7:
23:42:71:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:58 2023 by rpki-client on console-fra.rpki-client.org