Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/AaQ6I76v0cIyQz9upIbqBR7UI1c.roa
File: AaQ6I76v0cIyQz9upIbqBR7UI1c.roa (raw, json)
Hash identifier: TmiQA5h8mSvjfZ2l8KUVqChbLGjxsoQuHHrwrcTL0uE=
Subject key identifier: 01:A4:3A:23:BE:AF:D1:C2:32:43:3F:6E:A4:86:EA:05:1E:D4:23:57
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 0688
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/AaQ6I76v0cIyQz9upIbqBR7UI1c.roa
Signing time: Thu 15 Sep 2022 02:37:15 +0000
ROA not before: Thu 15 Sep 2022 02:37:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.150.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1672 (0x688)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Sep 15 02:37:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=01A43A23BEAFD1C232433F6EA486EA051ED42357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4e:c4:1e:be:3e:55:04:d2:ed:d3:da:5d:d1:
9c:09:34:bc:67:75:85:e3:36:8f:73:5c:25:c8:6f:
77:aa:11:db:36:5b:0b:18:30:c7:7e:e2:ce:c2:4a:
85:dc:37:d0:31:9f:22:95:65:7f:cc:d2:3f:eb:fd:
17:a7:08:2e:82:9d:8e:70:d9:28:c8:f3:bd:43:2b:
65:48:f9:86:95:31:6e:53:88:4f:1f:43:94:4f:45:
eb:d4:4c:e7:e5:c5:df:55:37:4c:5c:6a:75:41:e0:
35:26:d8:5d:ec:26:c9:15:95:8c:66:33:c2:fa:27:
3a:36:e5:aa:9d:3f:a1:66:ba:8f:68:bb:78:08:7a:
16:36:e9:ea:17:94:0b:7a:b1:ab:79:a2:c4:70:41:
a9:8f:b8:2e:d1:88:c9:66:46:1a:99:48:78:85:a1:
86:dd:d4:a2:d5:b1:f7:aa:92:75:eb:9a:4f:a4:d2:
75:d9:53:cb:7b:ca:ee:f2:97:c5:9a:10:de:c1:d5:
01:33:c0:56:d4:90:c7:18:3f:6f:41:38:44:9b:1d:
56:11:7b:13:06:ca:b0:5d:5f:77:97:fe:16:98:93:
d7:dd:b2:fe:17:e2:01:a9:45:1c:03:57:6a:fb:18:
d8:05:d3:3f:59:c5:c7:71:b9:2c:c9:fb:be:d1:50:
78:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A4:3A:23:BE:AF:D1:C2:32:43:3F:6E:A4:86:EA:05:1E:D4:23:57
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/AaQ6I76v0cIyQz9upIbqBR7UI1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.37.0/24
Signature Algorithm: sha256WithRSAEncryption
67:b2:f6:07:e2:54:7f:61:a7:e3:16:b1:9a:9b:88:ab:2a:90:
29:de:c4:eb:3d:c4:c8:e1:8b:6a:3a:54:6e:c3:80:d8:5f:66:
4f:cf:82:b4:05:61:b0:90:f0:da:6f:90:cf:5d:1f:6d:0f:f3:
af:f7:fd:02:eb:f1:90:6b:d2:03:7a:89:34:4e:e6:c2:56:86:
5f:cf:0c:8d:b3:b9:09:c5:ff:c4:c1:9b:2d:8a:66:b1:c3:19:
6a:33:96:4a:8f:bf:6e:da:f8:5f:13:04:95:0e:73:59:16:09:
91:73:c3:a3:65:bb:00:d1:5e:df:a0:fc:c3:1f:65:f0:0b:9c:
6e:67:de:d6:98:b6:cb:e7:a7:0f:b9:4a:72:6f:37:89:a3:aa:
94:70:78:17:35:5d:ca:6a:27:54:dd:28:83:79:14:23:b2:86:
12:f1:d8:b4:03:1e:92:a8:04:73:2d:3d:30:ec:7e:7b:3f:a4:
cf:2c:74:fb:8b:ab:50:64:e8:0b:20:e5:61:de:8c:48:16:5c:
ce:56:c6:4d:f3:2e:fb:bd:8e:68:1c:ef:8a:e5:46:79:db:b5:
d7:07:91:c4:78:ae:b9:65:e2:01:86:6a:1c:02:a2:c7:ad:7e:
7b:b6:e4:f8:15:5b:bc:dd:f0:82:eb:2f:f9:bc:5a:de:aa:b2:
5a:d5:03:21
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:13 2023 by rpki-client on console-fra.rpki-client.org