Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bHL6eTYbEJN1YWaNlT3OOok6gFM.roa
File: bHL6eTYbEJN1YWaNlT3OOok6gFM.roa (raw, json)
Hash identifier: I4fyLMoahQcqohYZu8xRU90nUn9eEXubYGeew+oUBdE=
Subject key identifier: 6C:72:FA:79:36:1B:10:93:75:61:66:8D:95:3D:CE:3A:89:3A:80:53
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BC8
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bHL6eTYbEJN1YWaNlT3OOok6gFM.roa
Signing time: Mon 27 Mar 2023 23:14:05 +0000
ROA not before: Mon 27 Mar 2023 23:14:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 121.50.144.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3016 (0xbc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6C72FA79361B10937561668D953DCE3A893A8053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:70:28:97:c4:9e:67:5d:72:b6:3c:61:f6:93:
e5:0f:bf:cd:26:4f:c9:e3:05:15:6e:09:bd:61:a5:
18:de:86:55:cb:56:57:21:93:14:63:20:40:49:79:
a9:b1:3c:5e:8e:ff:33:98:50:a3:d6:3f:f7:27:49:
0d:4d:ff:cd:a6:aa:9f:86:f6:f0:d7:d9:ca:52:f3:
96:df:07:1f:dc:42:fd:f0:a6:e0:6f:2f:06:64:c5:
a4:b1:3d:ea:a4:ac:44:26:22:6f:d6:d2:ae:31:55:
e8:ca:7a:b7:b8:fa:3a:08:bd:e7:23:b0:82:68:b5:
b9:47:9b:30:9c:9f:fa:8f:0d:25:8d:93:f6:d1:0c:
ae:08:2b:af:c4:82:5d:d7:0d:83:bd:ec:a8:43:24:
93:5c:75:cf:28:84:83:de:1f:d4:67:19:d1:73:9e:
ae:9d:71:9f:6a:e1:93:53:39:a4:9f:e2:00:cd:5c:
3f:b7:e3:64:2e:3f:6e:bf:6a:7f:0c:35:73:73:3a:
49:70:e9:98:49:e7:ee:3c:09:72:ab:3f:b3:11:61:
b3:f4:a4:fa:64:1d:65:f2:c4:1f:7f:56:3c:00:4f:
7d:3d:a4:44:b0:78:28:9d:6d:49:b9:6d:15:67:3c:
f6:25:37:46:ba:52:0e:64:b9:57:58:b2:e1:67:45:
39:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:72:FA:79:36:1B:10:93:75:61:66:8D:95:3D:CE:3A:89:3A:80:53
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bHL6eTYbEJN1YWaNlT3OOok6gFM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:e3:20:04:9f:21:cb:b3:ed:77:00:db:db:27:39:af:c2:8f:
a3:5f:45:86:f8:c5:31:7e:5c:2e:6a:a5:4d:3a:5a:05:18:54:
eb:46:c5:38:eb:82:4a:29:d5:15:f8:7b:4c:97:0f:bf:a0:a2:
da:2c:70:8e:db:0c:a4:33:a6:ba:62:ff:d3:90:15:a2:25:ec:
27:d4:06:cd:5b:6b:69:15:af:39:18:83:a6:d3:d8:6c:b3:67:
2f:ec:9f:61:c9:33:d4:dc:59:78:e9:bb:f3:16:1e:01:a3:d1:
1e:9b:ae:37:aa:60:d6:6f:e2:26:20:e1:2f:8b:48:3d:16:2f:
95:a1:b5:1e:45:b6:ab:57:17:c0:18:b4:5b:9b:a4:b5:27:64:
a3:f8:4d:8d:54:3d:77:18:5d:91:f5:48:e6:b1:68:0f:af:43:
fd:12:4f:60:a5:bd:3b:a9:aa:29:99:01:97:03:e9:cd:4b:32:
c1:61:02:a2:3b:6a:32:88:53:7f:a6:3d:5e:22:08:ef:42:06:
25:a2:d4:ed:4e:03:63:1a:c3:d0:18:bb:66:2b:9f:66:3f:ff:
ca:74:e7:ca:f8:bd:ff:10:29:8b:bb:c0:8e:d7:af:bc:e1:d3:
09:08:ed:84:52:87:e4:6f:c2:52:3b:b7:f5:d5:a0:d6:65:42:
a3:40:2d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org