Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pR0eDNgMGxw1Y_Js7UT6zCFvzxc.roa
File: pR0eDNgMGxw1Y_Js7UT6zCFvzxc.roa (raw, json)
Hash identifier: s2xqAWZt21sdeEKHyzOjKO3qw69sOZcbBGqoNo0gIfs=
Subject key identifier: A5:1D:1E:0C:D8:0C:1B:1C:35:63:F2:6C:ED:44:FA:CC:21:6F:CF:17
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BC7
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pR0eDNgMGxw1Y_Js7UT6zCFvzxc.roa
Signing time: Mon 27 Mar 2023 23:14:05 +0000
ROA not before: Mon 27 Mar 2023 23:14:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 121.50.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3015 (0xbc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A51D1E0CD80C1B1C3563F26CED44FACC216FCF17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:63:d8:99:39:a4:9a:73:9f:9b:21:1c:81:
36:0d:fd:de:c4:53:18:ed:47:ab:e6:ba:34:c9:22:
ac:b1:21:ff:a3:63:3f:31:b5:c4:34:d9:7b:69:c3:
2a:c2:0d:19:90:c8:aa:11:c9:a2:92:18:f0:f0:da:
82:c1:70:63:ef:b3:3d:b2:bb:39:71:9e:d7:fd:a1:
36:09:5c:ff:e6:50:8e:e0:0e:80:08:c2:90:cc:b9:
fa:18:25:b9:52:89:0a:fa:f7:ae:2b:15:ac:15:e5:
a6:60:5b:96:44:a4:7b:d0:62:7c:3a:10:3b:b2:bf:
23:63:74:78:1c:32:64:ce:e2:8b:09:6b:8a:a2:32:
ae:30:69:bd:88:28:8b:9c:ca:b3:98:a3:07:41:66:
81:f0:3e:ad:9d:b4:89:83:b7:67:84:8f:2f:ea:8b:
70:b3:55:65:44:36:54:53:94:43:4d:e4:c0:ce:2f:
3b:18:ff:8d:62:27:77:2e:e5:1e:34:4e:a4:c6:65:
a7:65:aa:3e:9f:8f:e8:5e:65:aa:79:e0:3e:fc:4c:
92:6c:6d:29:17:42:53:87:f3:fa:b9:04:e4:f5:78:
e0:bd:44:c3:ac:09:9a:03:27:6e:60:d1:97:d7:30:
57:4d:d9:e8:63:27:7d:35:c6:84:53:82:c5:5e:cb:
b6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1D:1E:0C:D8:0C:1B:1C:35:63:F2:6C:ED:44:FA:CC:21:6F:CF:17
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/pR0eDNgMGxw1Y_Js7UT6zCFvzxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.148.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:c0:05:1e:5b:95:8f:42:76:0c:dd:ad:0f:c1:b2:04:81:2c:
d7:23:3a:5a:54:0b:89:1f:45:c5:ed:0c:f3:d7:1f:6a:dd:2d:
59:e6:94:bc:0f:ae:3d:62:98:67:76:e6:50:86:94:0e:10:07:
2b:2f:86:04:4f:40:31:6c:c1:43:d4:c8:11:79:03:83:9b:e9:
3e:64:10:ce:79:6d:1c:48:54:50:16:94:ee:ba:c4:5c:79:ed:
3d:0d:e4:80:87:79:68:72:59:1d:25:9a:a1:42:69:ef:61:aa:
63:42:4a:9c:bb:70:67:e5:ff:42:68:11:2b:42:8d:61:57:06:
30:83:67:44:db:0d:77:74:07:b2:b5:d8:e1:18:03:bc:89:49:
a1:9d:be:d6:39:12:21:bb:82:b1:74:c8:87:97:2c:51:8d:5d:
eb:a8:bd:39:93:bd:62:ee:a1:3e:19:c1:fe:c2:be:43:04:ee:
06:0f:8e:20:2b:5f:f4:f6:b0:e7:89:23:d6:6a:5d:4b:ba:49:
26:a6:1f:6e:8f:f7:85:f4:6e:b3:6a:cc:e8:72:1e:a4:ad:23:
6b:a7:f9:a6:21:94:78:c9:e9:6f:cd:02:4e:fb:c8:b7:f5:78:
9e:95:e2:1c:08:47:8a:70:28:ad:37:8e:1c:80:fa:39:54:80:
a1:f9:b1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:41 2023 by rpki-client on console-ams.rpki-client.org