Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_pBzNadc5Y1clkrpB4K_n36taY8.roa
File: _pBzNadc5Y1clkrpB4K_n36taY8.roa (raw, json)
Hash identifier: /aaeNH/YnmgiYDAUQTCMw0IuExBcMjPgBIhD1YIEwVY=
Subject key identifier: FE:90:73:35:A7:5C:E5:8D:5C:96:4A:E9:07:82:BF:9F:7E:AD:69:8F
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BCB
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_pBzNadc5Y1clkrpB4K_n36taY8.roa
Signing time: Mon 27 Mar 2023 23:14:06 +0000
ROA not before: Mon 27 Mar 2023 23:14:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 103.30.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3019 (0xbcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:06 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE907335A75CE58D5C964AE90782BF9F7EAD698F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:61:27:c9:38:eb:14:28:08:d3:57:a0:cb:
88:21:54:bc:50:c6:04:2f:ed:86:2e:bf:5c:36:1e:
84:d9:9a:76:70:95:87:ba:4b:bc:2c:fd:2c:0e:a5:
10:d1:1b:c7:34:d3:47:57:96:07:48:a2:88:71:6e:
ed:8e:72:2a:6d:43:4a:53:07:ba:ba:8f:93:ec:c5:
ab:43:16:d8:f8:66:88:7f:d9:ca:95:64:ea:80:73:
4c:41:ca:6d:03:bc:b7:be:8c:55:93:80:8c:3e:f3:
0c:a6:39:36:a0:54:05:0e:a2:2e:5e:d7:ca:d5:58:
2d:7d:19:aa:e6:74:a0:46:57:be:e5:04:73:fe:29:
e7:13:10:56:3b:ec:28:03:e9:7c:8b:74:85:d2:d8:
91:62:2c:4b:19:89:5d:00:69:f0:de:ba:04:0d:1f:
7a:00:4e:e7:f4:b5:6a:85:28:25:0b:49:db:c1:43:
5c:cf:91:fb:f3:24:e9:5a:80:ae:af:f6:11:ee:7b:
a8:81:1d:1b:af:3e:70:ee:06:93:39:2d:76:5d:65:
dc:84:81:05:6a:96:86:4b:78:cc:af:96:61:64:8a:
25:41:c4:82:73:6e:9b:a1:79:82:77:81:9f:ac:90:
f9:80:12:54:1b:6e:b5:12:76:e8:8d:79:33:3b:68:
ec:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:90:73:35:A7:5C:E5:8D:5C:96:4A:E9:07:82:BF:9F:7E:AD:69:8F
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_pBzNadc5Y1clkrpB4K_n36taY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.45.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:38:94:c8:f8:48:ee:c2:f0:e0:56:16:eb:5c:54:9b:6e:f2:
98:f0:19:7d:61:f3:9d:c6:75:c8:c1:98:6b:4e:17:96:f4:ef:
90:d3:60:68:50:bd:fd:e0:28:82:b9:d9:3a:c0:ef:db:0f:0f:
1e:7a:72:0b:25:4e:7f:a8:65:90:3c:15:60:bd:83:da:89:d3:
99:d4:df:63:1d:88:8a:04:11:e5:b3:24:c3:cb:01:9e:89:a1:
71:0a:92:ac:59:c0:44:0a:7d:9b:ca:b3:76:54:db:ca:a9:a3:
a1:9b:c6:a6:af:3c:da:41:55:69:4f:1a:c7:58:b7:d8:f3:85:
36:a4:15:69:3a:bd:f9:33:c6:9b:d4:a8:18:15:7a:0e:8b:01:
3c:7b:ca:f2:cb:5e:a5:97:49:d1:ca:7a:a4:c5:60:ff:50:bd:
e6:89:06:68:ad:6f:fd:33:f9:a0:1a:a3:70:b5:41:a2:31:f1:
97:7c:4a:cf:5a:11:8f:74:5f:74:44:cc:66:6d:cf:fb:71:ea:
28:04:02:7d:57:74:85:2b:22:08:f8:f4:11:d0:af:86:bf:19:
5e:af:66:74:4d:2d:0b:76:4e:50:b9:3d:5a:d4:d4:47:01:e9:
ce:f6:b3:0f:6c:cf:78:d6:8f:ae:85:24:a4:9b:96:81:9c:9c:
fc:9b:80:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:41 2023 by rpki-client on console-ams.rpki-client.org