Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aZTzwP_OlUdbwbcXmHcRLKivJHU.roa
File: aZTzwP_OlUdbwbcXmHcRLKivJHU.roa (raw, json)
Hash identifier: nsh6HGPFGUZJfzomL0xrH4JNd3TbQX0d9tkAXDNziys=
Subject key identifier: 69:94:F3:C0:FF:CE:95:47:5B:C1:B7:17:98:77:11:2C:A8:AF:24:75
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aZTzwP_OlUdbwbcXmHcRLKivJHU.roa
Signing time: Thu 15 Sep 2022 02:50:46 +0000
ROA not before: Thu 15 Sep 2022 02:50:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131618
IP address blocks: 61.58.41.128/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6994F3C0FFCE95475BC1B7179877112CA8AF2475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:1c:85:d2:a0:66:16:54:23:eb:48:4a:8d:
86:40:a1:ac:24:b0:d5:08:33:ef:ca:91:c9:9a:58:
7c:94:75:31:2f:11:1c:1a:de:cd:42:d0:3e:b2:0c:
f2:96:9c:2e:4a:fc:56:75:80:db:d8:e8:23:41:da:
df:b4:84:1e:8c:39:58:a8:16:07:8d:49:80:35:6b:
c3:52:53:15:fb:9f:09:7f:21:e5:c5:64:0b:77:96:
3e:52:6e:22:b3:a5:44:0d:98:de:b5:23:88:19:71:
08:2b:00:99:33:7c:3e:3d:af:9f:f2:8c:4b:b0:d0:
17:12:1a:1d:0f:0b:b0:b9:a5:e0:e7:2e:fb:03:dc:
54:2d:ec:01:72:b8:eb:20:5c:0c:bc:48:21:d8:6e:
c6:4a:8a:f2:66:11:2d:28:5e:55:28:19:2a:d8:72:
85:5a:b0:9f:05:ee:c8:f6:6e:0a:07:b9:8a:ed:8f:
4c:e0:fc:09:3b:62:21:92:6c:36:32:ea:9b:17:92:
9f:4a:4c:38:4a:e4:d3:2a:f6:c4:4e:01:94:19:6d:
3f:0f:7a:3d:d1:a3:e6:1a:f5:7b:21:f8:1f:57:86:
e3:90:07:a4:e8:0a:a5:72:5b:19:2d:04:63:cc:09:
89:8e:84:4e:26:76:f0:af:51:a0:88:28:33:06:11:
aa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:94:F3:C0:FF:CE:95:47:5B:C1:B7:17:98:77:11:2C:A8:AF:24:75
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aZTzwP_OlUdbwbcXmHcRLKivJHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.128/29
Signature Algorithm: sha256WithRSAEncryption
c7:f2:c7:14:fe:1e:9b:0a:f2:89:57:0c:be:c4:03:57:bd:31:
3f:65:08:7f:d3:c3:6e:a5:a1:f6:81:4c:b0:c4:73:51:a6:4f:
b4:59:ba:de:48:7f:29:17:a3:ea:2f:48:45:66:75:ec:22:4a:
d8:6b:3e:b2:4f:5a:22:a7:15:62:0d:16:d8:3a:0b:16:b7:8f:
10:a8:59:88:b2:90:90:90:5b:c2:e8:7f:10:d2:af:0a:8b:36:
44:b0:c0:5d:ce:de:e8:ff:bb:cf:d1:0e:52:31:8b:5f:e4:42:
ac:ae:5a:05:2f:f9:1d:e3:e5:06:b6:d5:ca:2a:aa:ce:f0:b2:
98:6d:c6:ea:12:09:44:1e:00:75:30:6d:d9:6a:c4:f4:07:9c:
28:36:a7:76:3a:1d:88:ac:61:44:22:30:5e:fa:5e:34:17:6c:
9f:be:cb:ae:04:be:52:a6:72:23:73:c8:52:80:b9:7b:dd:29:
bb:91:9f:f2:63:b7:88:a5:63:7d:6e:4a:26:c6:00:87:aa:77:
7b:6f:4c:b9:07:6e:1d:d6:9e:31:85:90:ef:ba:32:4e:e9:91:
6c:ab:f4:14:f3:1a:60:fc:15:2c:30:5c:2f:7a:0b:86:44:d3:
3d:54:2f:c0:21:43:32:ca:6a:4c:39:e8:84:50:47:81:d7:4e:
67:8b:64:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:37 2023 by rpki-client on console-ams.rpki-client.org