Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Hqm51hUo3ybRqZeEFutCZr5S_tw.roa
File: Hqm51hUo3ybRqZeEFutCZr5S_tw.roa (raw, json)
Hash identifier: 6xs67rRjRCW0Em+U7TbWEWkXfXqUiI7E8FM3aHMdBWY=
Subject key identifier: 1E:A9:B9:D6:15:28:DF:26:D1:A9:97:84:16:EB:42:66:BE:52:FE:DC
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0B37
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Hqm51hUo3ybRqZeEFutCZr5S_tw.roa
Signing time: Thu 15 Sep 2022 02:50:32 +0000
ROA not before: Thu 15 Sep 2022 02:50:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 121.50.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2871 (0xb37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 15 02:50:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1EA9B9D61528DF26D1A9978416EB4266BE52FEDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f4:6a:94:a0:84:44:7d:c4:83:ae:e8:45:8c:
1e:19:c4:5f:47:8c:87:ce:be:72:50:23:f2:8b:d7:
5f:22:06:2f:8b:79:17:da:12:91:07:d5:3f:83:e8:
59:a0:90:22:ba:bd:e1:b4:90:bd:c2:7a:98:7b:94:
d4:87:dc:35:db:89:81:9a:b3:66:f3:2b:40:0b:d2:
88:c5:4f:3c:ab:0a:d2:9c:20:52:d8:b0:0b:dc:2c:
83:40:9d:27:71:e8:3e:fd:05:61:b6:76:d2:fa:2e:
5c:09:88:40:a1:19:41:4b:2f:47:55:65:c1:c4:3a:
79:b4:90:23:d0:b5:e8:87:d9:4c:c3:3d:61:f2:c7:
aa:24:01:bd:39:c7:68:0e:b1:1a:b0:44:b2:47:c7:
bd:42:25:a6:f3:5b:72:c7:0b:de:be:8d:cb:df:80:
b7:f9:80:8a:45:1b:2a:d1:0d:7e:d1:28:de:4e:56:
23:0b:f5:f1:9c:f9:3e:3d:d4:ad:93:06:d7:2f:0b:
31:d4:53:f7:d6:cb:15:41:91:8b:96:0d:d6:a2:5b:
de:a0:f5:9e:29:5a:f8:a1:67:1b:95:02:ed:1b:92:
a3:87:3b:55:a6:f6:70:d7:fd:76:52:36:4e:86:06:
0f:ab:66:b8:43:da:b3:d6:d8:17:d9:d0:f9:c2:b5:
7f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A9:B9:D6:15:28:DF:26:D1:A9:97:84:16:EB:42:66:BE:52:FE:DC
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Hqm51hUo3ybRqZeEFutCZr5S_tw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.145.0/24
Signature Algorithm: sha256WithRSAEncryption
54:31:12:9e:39:be:1e:2d:61:66:c4:1b:4e:00:56:6e:39:34:
00:de:43:14:91:17:2e:fe:7e:a9:7c:63:24:ab:34:b4:5a:21:
9a:aa:a3:ce:01:7a:fb:e4:04:13:33:d3:ee:35:b1:db:94:4e:
d0:a4:97:5e:d8:36:97:f3:83:9d:23:b1:87:06:92:39:71:a2:
49:f3:fc:d5:06:74:10:2d:ca:d2:5a:87:df:05:49:c8:73:1b:
c0:42:82:4d:0e:ca:f1:e3:4c:90:bc:22:a7:b5:01:12:55:63:
9a:58:e8:8f:0e:f0:ba:e0:8b:1a:cd:ff:c7:2d:e4:04:91:70:
0d:a0:19:2d:0f:bd:64:d7:28:01:b8:7a:ae:e5:2f:7a:03:d7:
f7:9e:cd:69:12:8e:37:cf:fe:89:8a:bf:aa:2e:3f:c2:64:09:
60:a3:ba:38:78:ea:1f:42:74:c0:c4:20:b2:0e:9f:34:7e:b8:
a0:e5:f6:e6:fc:35:2d:a8:44:88:40:a0:a3:3f:f1:9e:a3:3b:
65:7c:12:6d:35:8f:b6:7d:73:c8:f2:63:c9:13:54:89:73:89:
c5:3f:d8:bc:6c:ba:8f:93:dd:3c:10:29:c1:e0:ad:c5:11:83:
90:5b:df:41:78:a2:7d:18:8c:51:78:7e:4c:9e:af:60:45:21:
41:5c:34:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org