Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUCD/RP7VQDOHPHu0m_vGRgPgasDzXhE.roa
File: RP7VQDOHPHu0m_vGRgPgasDzXhE.roa (raw, json)
Hash identifier: 2Dd8tUXHTkBTmnnISl4S4E5qGTYBR2XfdACs0lvtp3o=
Subject key identifier: 44:FE:D5:40:33:87:3C:7B:B4:9B:FB:C6:46:03:E0:6A:C0:F3:5E:11
Certificate issuer: /CN=35D63F285426D9D57209D42C46B9125B23A78EC1
Certificate serial: 4C
Authority key identifier: 35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/RP7VQDOHPHu0m_vGRgPgasDzXhE.roa
Signing time: Sun 02 Jul 2023 16:19:40 +0000
ROA not before: Sun 02 Jul 2023 16:19:40 +0000
ROA not after: Fri 08 Mar 2024 15:30:10 +0000
asID: 134823
IP address blocks: 2400:ebe0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 23 Feb 2024 15:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76 (0x4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35D63F285426D9D57209D42C46B9125B23A78EC1
Validity
Not Before: Jul 2 16:19:40 2023 GMT
Not After : Mar 8 15:30:10 2024 GMT
Subject: CN=44FED54033873C7BB49BFBC64603E06AC0F35E11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:81:30:4a:f7:7b:42:8b:28:93:a1:37:06:cc:
fd:43:aa:77:67:32:2a:a9:11:36:a3:5e:9d:a4:a8:
62:6a:e7:bb:17:9d:5c:b9:02:3c:2a:af:d0:e8:90:
36:b7:2d:41:c5:1b:f1:e8:9e:39:2d:61:d2:29:ca:
f2:9d:73:7c:98:ee:f9:5f:08:f2:cb:97:a3:9c:00:
9c:44:a8:38:4b:f6:9b:6d:aa:22:a8:3f:4f:7e:92:
7b:5e:b8:4a:78:2f:32:84:dd:96:47:15:1b:27:8e:
10:cc:a6:37:ba:d2:d8:3c:ee:dd:c2:b2:1f:e2:88:
a3:91:61:7c:7c:78:a8:32:30:1e:9b:60:94:d5:bc:
da:76:e2:22:08:70:b2:e0:32:35:b0:64:16:c8:65:
c1:6b:5f:03:40:a4:69:52:16:4f:61:4a:49:d9:3e:
0c:4c:7c:0b:58:28:7a:b8:d6:6f:d2:39:9c:08:7a:
e0:2a:7d:10:6b:35:8c:b9:b0:c6:33:d8:de:41:99:
0b:13:02:1d:55:56:f3:34:8f:bc:cc:a0:28:e8:8b:
31:26:7f:18:66:a0:11:56:9f:7b:fb:ed:84:6f:75:
31:eb:5d:a6:79:ab:a2:c5:3f:ca:1b:85:f5:35:8a:
8d:0d:ff:a1:8d:18:19:f1:6a:0d:11:70:94:06:f2:
57:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FE:D5:40:33:87:3C:7B:B4:9B:FB:C6:46:03:E0:6A:C0:F3:5E:11
X509v3 Authority Key Identifier:
keyid:35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/RP7VQDOHPHu0m_vGRgPgasDzXhE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:ebe0::/32
Signature Algorithm: sha256WithRSAEncryption
ac:c2:29:f1:a2:76:5d:6f:92:91:fe:6c:75:e2:8c:d8:05:06:
5e:68:e5:91:5c:5c:ab:dd:d7:c3:fd:8a:2d:3d:1e:b7:4b:51:
af:52:0a:53:27:91:b4:e9:88:c7:97:5e:b3:de:14:29:7f:fe:
61:31:b5:43:e6:0b:18:26:ec:49:1c:1a:37:d6:de:8d:db:b8:
f7:80:60:e0:04:19:ba:8e:b9:bf:65:0d:da:fa:78:a8:09:ff:
d3:af:44:f7:a1:96:34:41:a5:67:d4:43:f4:21:30:84:f4:b3:
b2:ec:ef:b6:2b:65:37:a8:f5:26:73:b2:eb:34:9a:a8:42:5f:
ca:d8:94:e6:7b:dd:95:c5:90:f0:24:02:c4:d0:80:ab:3b:a6:
37:cf:71:d6:fa:db:f7:d3:f1:c9:ad:4d:a1:ad:9c:46:c2:56:
0b:d5:14:1f:f7:e0:e1:51:1c:0d:a3:5a:93:60:9c:f1:f8:8d:
9d:68:5d:d8:29:0a:aa:47:00:32:90:0d:e2:f4:44:51:84:f3:
0f:b4:1d:6a:ed:79:82:b5:fc:2c:f9:58:3b:57:7c:2d:f8:4b:
e9:1a:95:4f:b2:a8:c0:9d:e1:48:be:b9:f2:e4:bc:08:23:6b:
f7:dd:d0:23:6c:8c:60:d2:2e:28:03:7a:c8:5f:5e:0d:17:23:
d4:89:b2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 19:25:54 2024 by rpki-client on console-ams.rpki-client.org