Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/YPx9E_by_2LcHySryA-XxSU_NWk.roa
File: YPx9E_by_2LcHySryA-XxSU_NWk.roa (raw, json)
Hash identifier: 6+06W35NT9+wQdRugSwfcaxZWH0Bcgw3JXJtWjXq7wY=
Subject key identifier: 60:FC:7D:13:F6:F2:FF:62:DC:1F:24:AB:C8:0F:97:C5:25:3F:35:69
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 10AA
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/YPx9E_by_2LcHySryA-XxSU_NWk.roa
Signing time: Mon 07 Nov 2022 03:41:07 +0000
ROA not before: Mon 07 Nov 2022 03:41:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 2403:ac40::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4266 (0x10aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Nov 7 03:41:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=60FC7D13F6F2FF62DC1F24ABC80F97C5253F3569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:7f:47:f5:0e:34:33:97:b1:52:34:7d:07:
ad:12:2c:46:ae:d4:73:75:e7:22:50:e7:c0:cb:14:
d8:e4:53:c8:ba:02:51:fe:b8:1f:64:dc:39:fd:23:
51:f9:cf:a2:6b:9d:97:fb:14:18:be:9d:f0:06:2f:
9e:9b:e0:5b:e7:39:92:b3:a9:d9:f0:30:30:87:cb:
4a:2e:64:fa:09:e1:8f:ce:95:e1:68:86:25:77:36:
f9:cd:a8:ba:aa:0d:06:c0:10:df:f3:8b:b6:a2:19:
6c:a7:42:06:84:7d:50:f5:90:7c:04:a2:ff:42:87:
e9:00:72:ec:1c:df:26:8b:57:c7:09:e5:24:28:9e:
20:ba:ff:47:c8:3b:4e:fc:d7:71:48:20:c9:1a:5f:
86:11:ab:5e:e3:44:1a:ee:6f:50:7d:7d:db:53:ec:
20:f9:3e:c3:1c:fc:e3:c6:89:dd:e5:83:3e:ee:7d:
53:6b:ba:a7:86:49:a7:b4:37:84:db:ba:c9:f7:4d:
16:e3:6e:a0:61:c1:d3:38:12:df:70:ab:62:a7:c2:
03:fc:a5:05:c5:73:77:9a:2f:65:ba:8b:e1:fc:d3:
b0:37:0d:00:b6:40:29:a4:26:6b:3b:06:78:e9:9c:
88:14:67:3a:24:31:6f:96:6e:9e:f1:e4:97:69:d1:
6b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FC:7D:13:F6:F2:FF:62:DC:1F:24:AB:C8:0F:97:C5:25:3F:35:69
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/YPx9E_by_2LcHySryA-XxSU_NWk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ac40::/32
Signature Algorithm: sha256WithRSAEncryption
3c:4f:bd:f5:18:38:09:38:2f:d2:fb:8d:27:27:15:75:91:76:
e3:99:2e:55:32:35:ee:a5:0a:62:9a:2c:b1:d8:80:87:c6:3a:
cd:22:ac:77:a6:50:99:bb:35:5f:46:64:37:4e:d2:25:fb:1a:
31:d5:ee:cb:7c:75:1d:3e:a8:7d:28:0c:89:7d:a5:77:ab:04:
4a:ae:e8:8c:ce:51:9b:f5:e3:63:fa:ae:36:56:18:24:ff:d2:
d1:27:0d:0f:8d:96:7c:f1:53:dc:59:d4:c7:b2:83:b2:25:5e:
ba:e5:cb:b2:83:e5:d5:65:37:2d:1f:f0:c4:d3:10:c8:2d:85:
9c:74:f7:19:79:ec:b4:ab:c8:ce:25:8f:f2:c8:f4:bb:1f:d7:
8e:88:22:24:50:06:41:2c:8a:47:39:25:16:50:d6:ba:df:1e:
24:59:0d:54:6d:50:c7:08:32:a9:67:5b:cd:17:8d:c6:a7:fd:
01:3e:a4:21:c4:ce:71:a1:d3:90:4d:f2:58:7a:a2:07:02:e9:
dc:d7:ae:ef:cc:b1:78:0b:ef:dc:96:6f:7c:b2:77:21:f4:d8:
a4:67:ce:b1:02:e1:9b:2f:75:b0:a0:71:74:13:ae:bc:c9:ac:
9e:8a:89:1e:18:64:74:7f:bb:6c:f0:97:b1:38:66:a7:b9:26:
7f:e1:a3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:13 2023 by rpki-client on console-fra.rpki-client.org