Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/MXv3Rtlvs4jt1oSz7h4JCg2jSdM.roa
File: MXv3Rtlvs4jt1oSz7h4JCg2jSdM.roa (raw, json)
Hash identifier: fhwI/GEFx4hm74cAKF75u+DfjpokZWhlJIZuBShlsDw=
Subject key identifier: 31:7B:F7:46:D9:6F:B3:88:ED:D6:84:B3:EE:1E:09:0A:0D:A3:49:D3
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BC9
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/MXv3Rtlvs4jt1oSz7h4JCg2jSdM.roa
Signing time: Mon 27 Mar 2023 23:14:05 +0000
ROA not before: Mon 27 Mar 2023 23:14:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 2405:8700:3000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3017 (0xbc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=317BF746D96FB388EDD684B3EE1E090A0DA349D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:30:12:7e:d1:eb:2e:e4:91:52:e2:b6:58:
ac:83:1f:c1:be:41:c6:89:db:a7:d9:dc:49:15:a7:
df:b1:c2:c8:fe:6e:8f:1c:86:39:8c:33:b8:11:e9:
ed:c3:54:40:9c:c9:ea:41:c0:e3:0a:89:b3:82:c5:
85:e5:0b:01:1c:57:d3:58:0f:74:e3:f3:e4:0f:c0:
9e:02:73:bb:c9:68:df:ba:8f:07:ae:20:52:94:3a:
f7:0f:4d:a3:81:b8:14:06:42:2f:72:b7:4f:39:b5:
e6:5a:7e:9c:52:52:fa:ff:b8:21:93:9e:d6:3f:ca:
71:ee:eb:98:a8:7a:04:a2:7b:de:82:6f:95:eb:e4:
44:9a:cd:e2:5b:9e:33:6d:89:74:4b:32:ba:7c:91:
30:12:58:85:a8:67:2f:d1:2c:db:ba:64:fe:ca:5c:
f2:0e:94:e5:39:ef:97:7e:66:59:38:c0:79:df:85:
58:2d:2b:9c:4a:aa:e9:22:04:f1:34:95:9a:ec:72:
21:c6:0f:58:ef:de:5d:75:18:cd:d6:0c:a7:87:71:
6c:4a:1a:c6:86:a8:36:6b:03:24:d3:13:9f:4b:8a:
11:32:f6:dd:dc:9b:69:9d:5a:b4:b6:fb:8d:31:a8:
ca:d6:9b:d6:b4:86:04:87:91:f4:55:e1:d6:27:a9:
31:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7B:F7:46:D9:6F:B3:88:ED:D6:84:B3:EE:1E:09:0A:0D:A3:49:D3
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/MXv3Rtlvs4jt1oSz7h4JCg2jSdM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:8700:3000::/48
Signature Algorithm: sha256WithRSAEncryption
5f:13:5c:b2:d9:7a:98:91:d6:ba:df:f8:82:3a:e5:80:d5:09:
c2:fb:96:2b:9e:e1:ca:05:81:53:62:3a:de:5f:56:59:84:ca:
aa:78:a4:f7:2e:d7:c4:f8:04:9e:fc:17:d8:88:87:e9:ad:31:
3a:83:1f:4d:1f:b9:39:c9:8a:2d:98:7e:f4:b5:b5:6c:4d:89:
53:34:65:b3:30:ea:1e:6e:73:20:bf:eb:59:5f:22:9b:8f:47:
cd:b3:8e:c8:79:47:b3:12:ee:cb:09:53:46:e3:df:c8:6c:d0:
68:b5:02:b7:5c:63:05:d7:df:9c:62:f1:7f:65:17:d4:c0:93:
47:70:b9:01:57:b6:1b:15:62:46:6b:53:dd:89:2d:01:c0:87:
79:f3:03:09:a3:26:a2:af:27:d9:da:4e:9e:ac:2c:f0:58:59:
0e:b4:98:be:3d:28:8f:95:df:10:9c:b2:15:3f:da:7a:d9:06:
8d:0f:ef:12:61:1f:75:c7:8b:73:e8:22:76:6a:d0:34:d9:fe:
78:20:63:23:a0:8c:d5:7c:50:d7:60:18:71:b5:7b:a9:69:99:
45:4e:51:2e:f9:52:2f:50:07:14:af:e6:4d:a7:4e:27:7a:f3:
e9:be:6f:4b:b1:74:b2:a1:5d:51:55:5f:07:98:09:60:15:75:
0b:65:0c:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org