Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uFS9m_sbWkAsgkryO1fLR9BiKOA.roa
File: uFS9m_sbWkAsgkryO1fLR9BiKOA.roa (raw, json)
Hash identifier: J0nWx6E94R+U1RfVDvKtmhvOxzKp5iry+xyWOO2AsD4=
Subject key identifier: B8:54:BD:9B:FB:1B:5A:40:2C:82:4A:F2:3B:57:CB:47:D0:62:28:E0
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: CE
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uFS9m_sbWkAsgkryO1fLR9BiKOA.roa
Signing time: Thu 11 Jul 2024 10:42:28 +0000
ROA not before: Thu 11 Jul 2024 10:42:28 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 9286
IP address blocks: 202.160.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 07:21:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 11 10:42:28 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=B854BD9BFB1B5A402C824AF23B57CB47D06228E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:ac:95:ca:ff:ca:25:e6:3c:d6:4b:7c:46:
4e:c8:ab:e1:a9:04:25:4d:a6:e6:ea:35:86:e1:a0:
43:1e:d1:3f:40:d8:b3:f6:92:22:5c:6e:0d:4b:1f:
b6:b5:ed:e3:1e:55:13:b5:8c:6f:6f:eb:39:ee:7b:
44:69:fa:07:c4:32:65:a0:f8:91:88:24:ae:10:3e:
c0:67:01:bb:76:83:59:95:89:a0:77:18:01:fe:c4:
9b:07:6e:fd:73:82:54:22:f2:91:5f:a8:f8:c5:a6:
a7:14:ce:1f:60:39:9c:29:7f:80:65:e3:7f:e8:48:
2e:ed:e8:33:13:34:29:d4:b9:39:10:fa:e5:68:82:
51:b8:b4:16:e8:5a:1b:0a:2a:88:5b:db:8a:64:35:
b4:5a:0d:49:ea:48:68:ee:8b:ac:05:4f:9b:a9:67:
6a:c9:aa:94:c1:91:1d:17:f0:e9:2f:63:dd:73:8e:
63:10:53:03:1c:b4:a5:f7:47:21:3c:31:76:6d:a6:
5f:4b:5f:56:22:d1:ae:bc:dc:2b:90:20:ee:8d:74:
ed:4c:78:08:71:14:f5:38:02:95:c4:4d:90:7b:bd:
e2:18:96:18:46:d4:02:07:32:5c:00:aa:81:a4:70:
0c:35:a0:f5:f5:23:03:7a:93:78:67:5f:c3:48:1c:
d6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:54:BD:9B:FB:1B:5A:40:2C:82:4A:F2:3B:57:CB:47:D0:62:28:E0
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uFS9m_sbWkAsgkryO1fLR9BiKOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.88.0/21
Signature Algorithm: sha256WithRSAEncryption
67:ef:03:62:8b:98:db:42:27:9a:8f:c6:b7:32:54:ae:77:a8:
98:34:b5:53:03:26:45:38:39:c0:f4:6e:2e:8a:a5:1d:fa:d6:
86:f0:20:21:34:03:9e:7d:c5:1a:b6:1d:5b:8d:91:8b:8f:5f:
3e:ed:fc:e7:64:c4:88:0b:48:eb:71:8c:38:37:09:3c:19:31:
50:e3:5a:10:0f:2a:7f:b3:83:7d:6e:cf:de:40:17:21:eb:b4:
b3:a3:c7:cb:e8:a5:a8:35:e3:b8:f3:65:83:0d:7e:d9:8f:ea:
e6:42:5d:ca:b0:5f:5d:43:da:a5:10:e1:57:0c:10:e5:ee:59:
ec:5e:24:26:50:93:4e:ff:11:8b:d8:99:79:43:3d:90:24:bf:
6a:c4:ca:79:58:d4:6b:97:40:4b:06:81:f0:c8:4c:a6:f4:b2:
2d:7b:98:fc:ec:67:9a:e1:4b:2c:ef:c0:ef:bd:35:d1:8d:66:
aa:2c:e8:bf:b6:4f:ef:d6:7b:b4:7e:da:bb:44:7c:07:61:c8:
6d:b0:a0:c8:49:5f:7a:34:4b:34:01:2a:9b:13:78:ca:b9:e5:
c3:0a:9b:e7:b4:11:84:ad:9f:e2:a0:d1:3c:db:93:c6:4b:48:
95:d5:30:a0:40:9f:67:0b:50:10:d5:11:b6:65:7e:7c:e9:aa:
92:67:5f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 08:55:10 2024 by rpki-client on console-fra.rpki-client.org