Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
File: JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa (raw, json)
Hash identifier: k+NXvGIQBusS9OG+ecAVwFIJZH22O5UFa5mSWRQ9RYw=
Subject key identifier: 24:D8:45:9C:E0:DA:6B:D5:6E:FB:10:C7:D6:53:FC:72:43:DE:FB:BC
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
Signing time: Thu 15 Sep 2022 02:50:59 +0000
ROA not before: Thu 15 Sep 2022 02:50:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 61.58.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:50:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24D8459CE0DA6BD56EFB10C7D653FC7243DEFBBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:57:28:2f:5e:11:e1:12:ab:7b:b9:c7:3c:
5d:d4:74:17:46:a8:33:f2:bf:3f:9a:5e:b7:da:be:
1f:23:ef:2b:f0:0a:3d:a5:06:e4:ce:fc:77:a2:e7:
87:cf:bb:3a:88:33:3a:25:25:98:ab:4e:e6:d1:6c:
27:7e:0e:b7:67:1d:95:01:bc:da:d9:f0:f4:c2:59:
83:d9:37:1b:ae:d2:0c:6c:ef:53:07:c7:f7:e1:23:
e0:89:bf:df:e6:c3:59:3c:35:da:2d:fc:a6:ff:af:
cd:30:da:78:1a:fb:b2:21:19:f6:27:c3:a0:eb:98:
18:fe:b1:9c:fc:50:9e:44:de:40:8e:9a:ea:cb:43:
57:59:3f:7b:31:46:1f:e6:22:8d:d4:3a:17:7e:e9:
77:8d:17:2a:70:18:99:dc:43:3b:e7:d2:17:c5:ad:
bd:ac:18:ee:7c:7f:41:7c:a9:10:c9:67:8e:ba:56:
72:03:eb:c2:ba:c2:8d:f6:dc:f5:83:40:d8:83:19:
a1:cb:b2:7f:da:67:63:38:ae:aa:58:3d:99:90:31:
1e:bd:3c:e0:39:e9:3e:ef:8a:5e:69:1c:2f:51:53:
ae:b4:46:1c:62:ea:71:ae:32:ac:26:4b:26:7b:3f:
a7:18:99:7b:80:a0:2a:5a:b0:35:2e:bb:1d:d6:ce:
f9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D8:45:9C:E0:DA:6B:D5:6E:FB:10:C7:D6:53:FC:72:43:DE:FB:BC
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.159.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ad:54:ba:1d:0b:1e:4a:67:33:a7:f6:dc:02:5e:26:4b:a9:
26:4b:0f:5f:7b:92:ea:a9:ea:43:45:8f:71:31:55:b4:b2:51:
69:36:99:40:a5:68:01:65:4e:07:41:fa:1a:0c:97:d9:2f:c7:
6b:db:42:d4:eb:47:9a:e1:3a:3e:b8:50:1c:d6:6b:95:d8:ac:
28:88:c6:91:98:a7:b9:e5:a1:b4:65:8a:38:70:e7:95:81:f2:
f0:4f:8f:06:b3:94:2b:33:36:77:43:e6:45:0e:57:45:41:7f:
34:38:0f:1d:ff:3f:6d:85:4b:0b:3f:fd:50:70:18:f8:ba:11:
06:e5:f2:40:b7:07:7c:b5:ca:77:20:e8:18:48:37:66:99:31:
1d:5f:e5:f0:d9:86:1d:e1:9a:5e:e2:b5:3e:77:79:2d:19:13:
c3:7f:82:1e:fe:65:11:6a:66:21:ba:1d:f1:36:d7:f1:c9:29:
bd:d6:6b:8e:a5:59:27:f0:49:3c:ec:98:fd:9a:40:3c:69:c7:
c9:08:4a:8e:01:f9:7e:1d:d1:8b:dd:c4:86:03:1b:97:82:1c:
8d:a1:77:e5:11:ec:27:4e:74:6b:d1:34:54:7f:33:0c:aa:9a:
78:c3:e2:ec:bc:b1:c7:6a:27:82:5f:35:5f:eb:ea:8b:02:ed:
8b:bc:bc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:58 2023 by rpki-client on console-fra.rpki-client.org