Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/z6fco2J1nGhZrT3N-qTJBr51KqU.roa
File: z6fco2J1nGhZrT3N-qTJBr51KqU.roa (raw, json)
Hash identifier: z9WhVzXpWeXo1Sh/zvhWGquA69PM3JfuVr7eyfyBSU4=
Subject key identifier: CF:A7:DC:A3:62:75:9C:68:59:AD:3D:CD:FA:A4:C9:06:BE:75:2A:A5
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 011C
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/z6fco2J1nGhZrT3N-qTJBr51KqU.roa
Signing time: Tue 08 Oct 2024 15:12:08 +0000
ROA not before: Tue 08 Oct 2024 15:12:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 202.160.64.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 00:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284 (0x11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Oct 8 15:12:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFA7DCA362759C6859AD3DCDFAA4C906BE752AA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:07:a3:34:49:ee:3b:c9:76:26:87:17:7e:da:
a2:8f:40:25:a2:fe:ef:5b:cc:88:7c:3a:bb:e1:02:
7b:aa:d1:bd:a9:c8:1e:51:dc:16:a3:b2:32:23:6a:
d2:68:c0:f5:6d:19:05:5b:3b:0d:e8:bc:4d:ea:23:
99:83:e7:98:06:5f:47:a2:81:00:41:2f:cb:f5:9f:
3d:71:87:56:b8:8b:88:4b:1e:5c:30:7b:4f:c6:bc:
58:0b:40:54:c8:ba:ab:b8:b7:79:72:ea:6d:f5:23:
e5:1d:4c:f4:46:93:ff:46:a8:a4:85:a5:77:60:e2:
2e:ae:e2:b3:97:7b:c4:a0:13:3d:a0:f1:ad:a9:f2:
a5:1f:bd:b3:c7:d5:0c:39:d1:7e:db:03:d1:57:18:
c2:d5:9d:39:57:23:e4:92:e6:c6:04:ad:27:e8:17:
22:96:6e:07:75:8d:46:06:0e:d4:3c:98:ea:9d:10:
02:cc:9e:a4:9c:ef:55:f6:2c:24:cc:ce:7f:34:e4:
6c:9c:4b:cb:70:68:5f:4f:17:f5:94:4f:be:1a:fc:
0f:d7:95:8e:1d:10:9a:87:34:9d:20:a8:3c:9b:91:
da:44:59:8f:75:fa:cb:53:b8:71:93:a7:d2:c8:7f:
e7:71:3c:2b:03:1d:de:8f:31:d7:27:26:24:17:50:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A7:DC:A3:62:75:9C:68:59:AD:3D:CD:FA:A4:C9:06:BE:75:2A:A5
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/z6fco2J1nGhZrT3N-qTJBr51KqU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.64.0/21
Signature Algorithm: sha256WithRSAEncryption
68:ec:5d:51:26:80:d5:35:2e:03:30:7b:02:b5:f8:59:d3:72:
d1:85:29:52:4b:d4:38:e1:2a:c6:ab:e1:67:fd:14:ca:56:7a:
46:a0:78:ac:99:37:7a:1f:d4:63:f3:15:0c:82:35:a4:47:c6:
57:d3:34:f0:97:92:b8:5a:59:c7:a4:51:a6:47:1f:c3:0f:7c:
d8:e1:d1:8c:8f:22:00:03:d3:86:ed:72:d2:b9:55:d9:cb:c7:
9e:98:ad:45:e8:9e:21:0e:5f:61:ad:8e:8b:6f:e6:b8:d9:95:
58:9e:a0:81:a6:0d:1b:c3:fc:9b:b0:9e:4d:5f:92:8b:c5:0a:
c4:22:b3:b1:09:04:e7:38:fd:bc:63:c0:43:86:83:12:8f:b6:
32:44:d1:06:1e:15:78:6f:68:5f:b0:3b:3c:96:e9:bd:2a:24:
c6:4e:bc:f6:05:ee:ae:cc:01:00:d6:a1:88:bc:cf:15:80:8d:
c3:1e:30:db:fb:43:43:5f:89:6a:6d:b4:cd:ed:51:9d:cd:83:
4b:3f:47:b4:84:8f:e9:2f:15:47:e5:7f:a6:ef:f0:1d:86:2f:
a4:29:35:6d:1c:4d:91:e7:70:e9:0e:91:0a:cb:6c:cb:47:3d:
63:e7:50:18:31:16:53:e0:60:cc:c6:6a:fb:1c:6f:fd:50:50:
76:40:e3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 03:08:19 2024 by rpki-client on console-fra.rpki-client.org