Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/TP_fvjEfJXnkmUrEEj3rrSDqkHY.roa
File: TP_fvjEfJXnkmUrEEj3rrSDqkHY.roa (raw, json)
Hash identifier: CIjRMZSxsNSk3uBIAP9t9Qvg43AxHMr8LXLDQ0Vgvxw=
Subject key identifier: 4C:FF:DF:BE:31:1F:25:79:E4:99:4A:C4:12:3D:EB:AD:20:EA:90:76
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: C3
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/TP_fvjEfJXnkmUrEEj3rrSDqkHY.roa
Signing time: Fri 05 Jul 2024 08:16:09 +0000
ROA not before: Fri 05 Jul 2024 08:16:09 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 2914
IP address blocks: 202.160.80.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 07:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195 (0xc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 5 08:16:09 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=4CFFDFBE311F2579E4994AC4123DEBAD20EA9076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:31:9b:0e:c8:1a:35:ca:5b:cc:90:03:cc:6f:
45:6a:63:f9:c8:ff:79:c5:55:4a:6a:a6:7b:66:49:
b5:5b:a6:d5:1e:22:4e:a2:99:f2:ac:cd:f7:29:43:
71:4a:2d:b6:5a:db:ce:44:70:43:24:30:e8:0e:81:
d6:ea:aa:a7:7e:90:42:aa:d2:e9:ff:ab:1e:07:58:
c1:c3:8a:3d:4e:71:01:22:72:ba:17:ba:b0:c6:6c:
ad:f9:2c:dc:85:df:8e:28:54:96:73:cc:05:72:99:
26:ac:d0:fd:ac:f6:f2:95:7c:d6:58:93:de:15:52:
ac:0d:56:23:45:6f:59:e9:8a:a4:b4:60:66:c9:6b:
7e:48:20:b8:e6:8f:4e:f4:7c:84:53:42:73:68:c6:
c1:14:0c:bb:06:2c:c3:08:85:ef:72:c3:04:15:6f:
ad:61:75:8d:4e:d8:af:95:6d:c9:df:03:b5:90:32:
f0:b0:ec:76:67:cf:dc:98:35:a4:42:da:d1:bd:ff:
dd:2e:3c:78:23:a0:f1:c7:2b:7c:aa:cd:50:5e:40:
40:f4:5e:fa:05:68:b0:0f:2a:84:f7:4e:51:bb:15:
e5:82:87:d0:b6:85:05:73:58:a9:00:1f:ca:3a:3a:
65:54:2f:90:74:c5:cc:3b:79:66:f8:22:5c:95:70:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FF:DF:BE:31:1F:25:79:E4:99:4A:C4:12:3D:EB:AD:20:EA:90:76
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/TP_fvjEfJXnkmUrEEj3rrSDqkHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.80.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:8b:92:5e:3a:9e:e0:a1:05:61:21:ca:b8:e0:61:06:b7:0b:
d3:8a:50:21:02:0a:69:d1:1b:9b:16:de:b6:cb:99:ba:1f:f8:
70:89:ee:f9:fb:04:14:a7:6b:7a:34:4e:21:cf:0c:dc:eb:4b:
c0:1a:43:45:55:a4:a2:4c:b7:47:d8:36:35:5f:f2:cf:18:b1:
58:28:1e:79:21:57:3d:eb:fe:c0:78:fd:0e:19:e4:80:49:1e:
73:c8:43:6c:e1:19:e5:be:91:6d:00:bf:f2:05:29:81:32:87:
53:b3:32:8f:bd:30:3a:74:4a:03:65:b3:9f:4e:19:9c:d5:42:
46:ef:a5:99:ac:a1:cf:27:00:58:75:d8:e7:36:27:30:d2:c9:
59:97:4c:fb:1d:cc:46:ce:39:94:62:d4:78:0b:8a:13:21:11:
84:23:e8:23:da:9d:a6:8a:12:90:fe:8c:17:e1:2e:ef:da:87:
1d:c2:88:f9:0e:56:f8:bc:e8:cc:dc:4e:e4:73:90:bc:eb:a0:
e1:c9:29:bb:f6:48:c8:78:bf:8d:99:06:0d:09:e9:8f:10:0b:
cd:10:f8:e7:0d:ff:e2:b5:d4:c4:c7:59:dd:81:7c:4c:03:03:
0f:20:a3:df:5e:55:2f:cc:55:7c:a5:d9:48:bd:22:a7:9d:99:
bd:e3:a1:69
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 20 09:46:30 2024 by rpki-client on console-fra.rpki-client.org