Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Om1pM4bnIUBdW4NlR3vmUF0gJrY.roa
File: Om1pM4bnIUBdW4NlR3vmUF0gJrY.roa (raw, json)
Hash identifier: fSvcb6uCmqdwPrMpJ9XtSA2w07Jt5IplPGd4A5oH59w=
Subject key identifier: 3A:6D:69:33:86:E7:21:40:5D:5B:83:65:47:7B:E6:50:5D:20:26:B6
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Om1pM4bnIUBdW4NlR3vmUF0gJrY.roa
Signing time: Thu 15 Sep 2022 02:51:00 +0000
ROA not before: Thu 15 Sep 2022 02:51:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 116.118.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3A6D693386E721405D5B8365477BE6505D2026B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6e:e7:b4:43:0c:6d:19:f3:fc:ef:cc:86:28:
68:cb:df:16:4b:bf:05:52:29:b5:8f:4a:32:f7:ee:
e0:44:74:2b:72:18:28:86:e6:3d:88:58:6e:63:af:
d8:9f:0f:aa:05:81:0c:bf:00:c8:9e:13:3c:88:a2:
a0:76:c5:a8:6e:65:f1:a0:db:49:06:b7:43:44:cb:
da:38:4a:ec:80:55:97:ec:5f:29:1b:42:0e:94:8e:
f8:cc:dc:73:05:91:ce:15:ee:6b:b9:e7:d4:0e:fb:
d8:38:ff:4f:c3:01:cd:65:d1:1b:39:c6:e8:59:96:
dd:85:64:a2:ef:40:29:26:67:96:44:0b:f8:1a:9d:
58:0f:80:61:9e:71:27:37:8f:8b:5a:f5:4c:bd:49:
d1:81:b6:32:e1:f3:d9:ec:2d:e6:33:41:b0:51:c2:
a3:75:a4:de:9d:49:7d:e5:07:5a:8c:9f:72:ab:d4:
4a:e5:c5:51:9c:be:11:95:27:7c:5c:92:62:0d:8f:
f9:d7:d0:27:94:27:8c:29:d7:84:31:1b:de:72:0a:
29:a1:24:d2:53:4c:eb:35:d2:21:9c:c3:af:7c:d4:
9f:d3:94:52:5e:97:75:01:c1:46:a1:31:73:29:98:
f3:25:6d:b9:40:23:ee:e7:f0:a1:ee:3e:70:4d:f0:
5b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:6D:69:33:86:E7:21:40:5D:5B:83:65:47:7B:E6:50:5D:20:26:B6
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Om1pM4bnIUBdW4NlR3vmUF0gJrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.118.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a0:85:43:cf:01:db:10:1b:af:14:f7:d1:24:56:6e:16:4d:ca:
e1:7b:71:1e:1e:62:80:3b:e7:52:90:8a:0c:f3:b2:8f:49:8d:
50:d2:35:14:d2:c0:f2:a6:6c:c3:40:30:68:f9:70:cd:30:58:
9c:82:ff:ec:0f:25:86:dd:c0:6b:af:07:5f:21:2e:12:69:95:
2c:74:ce:99:00:8b:77:db:c4:cc:ef:b7:38:7f:3f:e6:51:59:
24:24:e0:28:3c:89:7e:89:ff:69:76:ed:45:27:f2:05:76:a3:
63:9a:aa:13:31:0b:e5:8c:09:ea:b9:79:3c:e6:92:1b:70:03:
6a:e7:d3:06:11:61:86:50:46:e3:dd:93:7a:a5:27:35:4c:e8:
76:23:f4:4c:76:8f:b6:68:0e:35:a2:55:76:2d:2f:e9:2d:dd:
cc:4c:89:85:70:0b:e0:7f:f7:96:b7:3c:f8:ac:8a:ba:fd:54:
32:82:07:38:52:23:11:dc:dd:d8:54:7c:1f:35:2a:35:f7:d9:
d3:e7:e0:f0:f7:73:e5:6e:a5:3b:45:22:f8:4a:ab:f9:4d:b1:
c9:f5:da:04:77:34:0b:9d:3e:0a:1d:40:6e:d2:75:7c:f9:48:
09:ee:cb:0c:59:f9:be:14:9c:85:41:96:35:43:c2:c9:45:4f:
9d:dd:f3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:19 2023 by rpki-client on console-ams.rpki-client.org