Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/fWUfxqW8o1CBLd4itZpk1CF8tCo.roa
File: fWUfxqW8o1CBLd4itZpk1CF8tCo.roa (raw, json)
Hash identifier: bBBXQ9Le0KElemKPi9mLgRAb+CL/P9BwmD1GAOUtd3M=
Subject key identifier: 7D:65:1F:C6:A5:BC:A3:50:81:2D:DE:22:B5:9A:64:D4:21:7C:B4:2A
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/fWUfxqW8o1CBLd4itZpk1CF8tCo.roa
Signing time: Thu 15 Sep 2022 02:51:03 +0000
ROA not before: Thu 15 Sep 2022 02:51:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 58.99.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7D651FC6A5BCA350812DDE22B59A64D4217CB42A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a4:59:b0:4b:dd:93:e8:f8:a4:7c:2c:18:3b:
9a:4f:fd:4d:cb:8f:0e:f5:47:ef:e6:5f:0d:c7:de:
45:f8:cc:82:aa:ed:04:4e:9b:d7:7c:7c:c7:c3:4b:
49:8f:c4:47:91:38:20:16:57:f9:2d:fc:95:c0:3f:
50:50:92:b7:02:0a:5c:5f:b1:07:04:86:ed:4a:41:
18:33:38:a3:39:da:9c:3f:cf:e3:1a:d1:99:f5:a6:
01:de:5e:dd:b5:1b:50:3a:3f:04:9a:11:b7:e2:27:
ea:b5:8d:04:63:8c:8a:6c:e0:7c:cd:b8:ba:ad:3b:
08:1a:50:d5:a4:54:1b:61:7b:1a:58:fd:1f:7c:cd:
c8:aa:85:c1:b5:4c:6a:4a:bf:2a:cf:87:e4:78:35:
69:86:d2:9a:5a:14:1c:4d:2d:20:b7:60:b8:47:68:
e8:51:a6:6f:71:96:33:53:59:25:fe:f3:e9:6c:dd:
04:03:be:a8:82:e7:54:38:be:23:4a:0c:b2:4e:3f:
69:8d:42:69:a7:f5:ca:20:cc:52:f1:d8:52:41:ec:
5d:73:7f:e3:b0:46:83:24:b5:b4:a2:f0:c3:d4:00:
71:0f:9e:eb:ee:51:ce:bf:ae:d3:20:48:c6:ab:af:
24:c2:b2:66:60:65:22:30:3f:9f:18:e2:64:66:07:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:65:1F:C6:A5:BC:A3:50:81:2D:DE:22:B5:9A:64:D4:21:7C:B4:2A
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/fWUfxqW8o1CBLd4itZpk1CF8tCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.64.0/18
Signature Algorithm: sha256WithRSAEncryption
af:1c:9f:fb:e2:66:b4:35:15:ad:c6:53:6b:93:e9:1d:37:0b:
de:8e:85:47:c7:17:5b:91:95:3b:dc:30:0c:33:77:83:6c:2e:
da:3b:b3:ff:41:47:6d:19:5a:88:18:24:df:0a:fe:d0:c2:d2:
ed:03:39:3f:62:b1:cb:0e:e1:99:e2:a8:00:17:c9:c1:de:11:
16:9a:fa:19:d7:be:29:49:0c:05:bd:b8:41:07:cf:45:db:30:
70:e0:c2:08:37:4b:68:34:e5:a8:94:0a:3e:87:13:87:66:c1:
99:0c:da:04:22:70:f3:13:bd:76:14:48:c1:f4:e0:53:a3:62:
22:25:14:f4:64:11:1d:5b:71:b8:9d:71:a1:57:0e:b2:c6:47:
7f:c1:16:7d:80:b1:db:28:69:73:37:5f:a9:fd:12:e7:fd:1a:
34:a9:b0:32:47:38:02:1a:6f:17:65:ab:2b:ce:24:45:24:8f:
21:66:c5:0d:02:73:b3:50:70:5c:17:3d:aa:2e:57:a2:3e:fe:
dc:3b:ed:e4:21:32:e5:75:04:0f:07:8e:8a:5c:b4:f5:6d:da:
ae:32:ce:45:c2:20:11:0e:5f:37:0c:c1:e4:3a:d0:d6:8c:7d:
d7:3d:d5:d6:88:83:2d:d9:a6:ab:cb:db:02:a0:e1:9a:11:ec:
9c:e5:76:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:58 2023 by rpki-client on console-fra.rpki-client.org