Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/_ymxwjomGtwpuQhpXKKdUAktu0Y.roa
File: _ymxwjomGtwpuQhpXKKdUAktu0Y.roa (raw, json)
Hash identifier: SlPjFyUyGXS/OWtvjczzhjcGh72zFd3qtv8t6plkSe4=
Subject key identifier: FF:29:B1:C2:3A:26:1A:DC:29:B9:08:69:5C:A2:9D:50:09:2D:BB:46
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: D1
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/_ymxwjomGtwpuQhpXKKdUAktu0Y.roa
Signing time: Fri 12 Jul 2024 07:20:39 +0000
ROA not before: Fri 12 Jul 2024 07:20:39 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 10103
IP address blocks: 202.160.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 17:34:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209 (0xd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 12 07:20:39 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=FF29B1C23A261ADC29B908695CA29D50092DBB46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d2:18:72:c8:ca:4a:4b:17:b9:a2:8b:61:a9:
39:2d:dc:30:ef:f2:2d:60:d8:28:97:95:a3:d3:f8:
e1:a7:78:78:86:aa:af:aa:9c:07:f0:43:ad:97:49:
0e:99:38:3c:dd:10:3c:b2:2c:9d:04:e6:70:29:95:
36:ce:f6:3e:e0:d3:ef:3a:5e:e6:77:21:8d:7b:8c:
7f:fe:a0:bd:0f:36:fe:f0:6b:3c:44:14:1c:6f:e8:
e3:90:25:8d:db:2d:99:3b:45:10:a7:f1:15:94:df:
81:17:a2:f1:1e:81:f0:b2:c5:7f:09:93:8d:ce:07:
6f:de:ab:5a:7b:8c:a1:00:73:e3:05:97:a4:e1:41:
1f:49:ee:08:19:9d:f2:da:d3:ce:ff:4d:f3:50:19:
26:aa:67:52:f7:9b:3f:5a:4b:b7:3a:c3:1f:c6:5d:
79:20:14:66:df:da:92:7d:e7:81:18:5b:58:6d:b3:
81:4c:50:b7:b1:d6:bd:21:f5:36:e4:4f:42:b4:bf:
11:3a:0e:f4:1e:92:f5:be:92:e7:f0:07:a5:40:f1:
58:d3:0e:60:66:83:5d:9e:f0:21:08:e8:38:5a:89:
ce:b7:d6:92:a1:41:0b:82:8a:8c:35:17:1c:53:f6:
b0:cd:a6:23:c8:f6:1b:37:81:64:4e:5b:20:d4:e5:
bc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:29:B1:C2:3A:26:1A:DC:29:B9:08:69:5C:A2:9D:50:09:2D:BB:46
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/_ymxwjomGtwpuQhpXKKdUAktu0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.88.0/21
Signature Algorithm: sha256WithRSAEncryption
60:8b:07:fb:ee:37:43:69:66:62:5e:73:b1:8f:fd:64:8f:ae:
bd:ea:98:aa:38:c4:0a:d4:56:25:9c:76:ce:b5:92:ee:5d:91:
ff:be:ca:2b:2a:9c:ea:85:eb:27:a7:3f:de:04:22:3a:68:3d:
12:fd:6d:0a:7a:61:c8:2d:69:de:2f:0e:af:39:3e:89:7e:5e:
66:6f:37:43:b8:3b:9f:55:7e:72:27:80:03:69:10:2a:cb:72:
bc:7d:15:3b:57:1b:6c:f2:61:82:55:99:27:e8:53:57:3d:9b:
15:c8:51:11:20:16:10:52:52:ed:b4:02:0d:eb:64:91:95:2e:
b0:9f:3d:62:c2:13:a7:7d:5c:cb:ab:7b:1f:ad:68:87:e6:29:
39:61:6f:f6:e7:49:1b:63:fd:3e:a7:93:f9:32:2b:fd:41:94:
bb:0e:fa:5c:42:fb:78:0d:c2:63:33:f3:9f:9c:32:3f:62:7a:
38:f6:a2:42:9e:c5:84:0e:88:6d:7a:4d:69:b5:3f:9c:35:9b:
cf:01:4a:31:4b:41:40:0b:ff:4b:66:c4:6a:16:25:3d:55:68:
a3:12:bd:bd:21:cf:80:5b:6a:0e:6e:37:85:6f:77:a9:b0:9b:
50:28:be:25:49:25:7d:00:d2:4d:6f:fb:9e:ac:2e:56:da:80:
58:16:1a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 20:19:37 2024 by rpki-client on console-ams.rpki-client.org