Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pApWtY4x51wpRh-b9uzkPo8RWwg.roa
File: pApWtY4x51wpRh-b9uzkPo8RWwg.roa (raw, json)
Hash identifier: DB3Lb5vcVpjGH3OPYXM+MHJ6P2xkg2wWqGopHtY5xjc=
Subject key identifier: A4:0A:56:B5:8E:31:E7:5C:29:46:1F:9B:F6:EC:E4:3E:8F:11:5B:08
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BCA
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pApWtY4x51wpRh-b9uzkPo8RWwg.roa
Signing time: Mon 27 Mar 2023 23:14:06 +0000
ROA not before: Mon 27 Mar 2023 23:14:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24168
IP address blocks: 121.50.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3018 (0xbca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:06 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A40A56B58E31E75C29461F9BF6ECE43E8F115B08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:cd:c9:70:47:7e:1c:10:d5:85:0e:2f:07:
19:6f:c7:fd:c4:90:65:99:1f:9f:f7:97:2b:5c:18:
96:0c:52:6c:5f:07:b2:77:cb:b6:36:ff:84:5f:0a:
b6:3d:14:2e:f5:40:88:0b:5b:61:b1:f7:6c:6b:c7:
92:0b:55:7d:1d:69:8a:50:c3:67:f5:d0:67:88:91:
a7:f5:9e:d7:83:73:25:9e:40:c8:d7:9d:46:bc:f2:
40:c7:d5:9b:5f:40:96:31:f0:b9:c7:65:17:22:0f:
33:07:7f:84:65:bb:f8:7e:19:85:a5:15:2b:29:98:
de:b8:c9:53:08:9d:fc:21:1d:a2:00:20:e6:8b:60:
95:1d:d8:93:f3:c7:f6:5d:68:3c:e8:11:7a:ec:08:
2b:61:0f:03:74:ef:6c:3f:3a:10:88:ec:31:a2:f0:
9b:ec:d4:ad:b4:d8:42:d6:42:c8:cb:a2:97:09:f8:
82:f0:86:79:a6:b3:56:8a:54:93:cc:73:52:d9:6e:
a9:5d:f3:ed:3e:6e:a8:b7:ed:5c:2d:22:1c:22:fa:
b0:98:de:08:1f:7a:25:cc:6a:cd:29:a5:ab:8e:2e:
02:6d:d4:49:8f:f8:99:d8:68:3f:fa:75:59:42:f2:
fd:02:d3:42:97:d9:78:bf:b6:52:a1:e2:08:c0:9a:
63:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0A:56:B5:8E:31:E7:5C:29:46:1F:9B:F6:EC:E4:3E:8F:11:5B:08
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pApWtY4x51wpRh-b9uzkPo8RWwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.150.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:ed:b7:27:f3:e6:11:82:f1:46:74:d3:d2:8b:e3:5c:12:e4:
51:65:4f:a5:60:5c:a8:4f:d4:16:78:3d:08:af:dd:14:d7:ab:
d8:8f:78:6c:c9:25:17:c7:82:1a:ff:80:28:01:44:6c:5d:8f:
02:13:95:9e:fe:28:96:fb:73:bf:60:85:f8:3d:83:2c:22:e6:
c9:78:51:a7:05:29:f4:65:d6:76:75:a6:a9:f0:ac:53:5d:2c:
7c:cb:8c:4b:56:56:3d:64:e2:dd:f9:4c:73:c6:5f:4c:a1:10:
7c:e3:b0:45:87:a6:a2:11:05:58:04:82:62:ef:b7:04:a3:f3:
c9:bc:5b:1d:31:a9:8d:ed:d6:b0:cd:71:03:88:ff:ea:38:62:
ff:40:06:a9:e7:4c:3e:a4:3f:98:6b:74:07:01:f4:d2:f1:37:
7c:ce:61:52:cb:98:21:7c:c4:ee:08:f2:10:f5:80:f2:f9:e5:
bb:c1:35:29:19:a3:f7:f1:c0:4f:0c:2a:db:bf:a5:03:8f:d4:
7e:71:aa:a8:9e:cc:3a:b9:c5:f0:7c:f4:ab:b5:1e:b9:d5:9f:
41:d1:ab:8c:bb:b3:0c:66:f8:dc:2f:9f:b3:d2:a9:49:7c:06:
76:44:a2:9e:36:6c:bc:7a:9d:55:4c:69:5a:e1:2c:b4:17:a2:
84:a8:41:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org