Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ytIZ35DpDYjtpvQVPaKppPW4M-A.roa
File: ytIZ35DpDYjtpvQVPaKppPW4M-A.roa (raw, json)
Hash identifier: rKcqMFCDrAh9xYSAQCacFKQtzCYD8BsXt0B9uKsqlQQ=
Subject key identifier: CA:D2:19:DF:90:E9:0D:88:ED:A6:F4:15:3D:A2:A9:A4:F5:B8:33:E0
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0BCF
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ytIZ35DpDYjtpvQVPaKppPW4M-A.roa
Signing time: Mon 27 Mar 2023 23:14:08 +0000
ROA not before: Mon 27 Mar 2023 23:14:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 121.50.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3023 (0xbcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Mar 27 23:14:08 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CAD219DF90E90D88EDA6F4153DA2A9A4F5B833E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:a9:5e:c0:c2:96:89:e2:66:29:a9:b1:19:
fc:16:96:d1:e9:40:a6:96:d7:a0:93:e5:9e:d2:da:
3e:e6:d9:7f:b5:6b:1c:08:e4:02:8e:95:6b:46:a9:
83:d0:a7:b3:8e:8b:d5:21:ab:ba:c3:ab:1f:d4:b4:
22:a9:05:53:ce:ba:4f:38:8a:25:d2:57:5d:bd:0f:
df:5c:9b:fc:1f:74:5d:1e:0c:c0:67:15:01:3f:65:
c6:4d:3a:54:02:6b:18:84:38:68:07:b4:8e:3e:83:
df:a9:cf:09:2a:09:3f:20:81:d8:64:bb:c1:28:fe:
e2:71:31:2c:d4:06:a2:07:e2:99:b7:2a:da:b0:1c:
01:00:92:56:72:d0:dd:a5:c2:75:cd:ab:3d:50:1e:
1f:9b:75:95:ba:23:cf:c4:4f:cb:4e:db:b5:4a:ac:
cc:46:c6:87:f3:d5:fb:33:6b:e3:5a:f1:d6:d2:81:
5e:ba:82:0e:b3:17:2f:37:79:64:e4:84:2b:d8:70:
66:6a:22:df:50:2d:88:b9:55:f7:11:80:58:34:69:
aa:08:04:d3:bb:01:43:86:6f:c1:06:e3:24:f4:2a:
d8:6f:a9:89:c1:69:0c:b6:20:3b:2e:ef:06:a9:8f:
e6:38:b1:6f:3e:01:43:5c:eb:df:68:5d:90:5b:1f:
10:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D2:19:DF:90:E9:0D:88:ED:A6:F4:15:3D:A2:A9:A4:F5:B8:33:E0
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ytIZ35DpDYjtpvQVPaKppPW4M-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.145.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:46:11:54:e2:30:68:27:67:2a:5e:96:42:ae:b8:2c:58:38:
fd:25:d5:aa:7f:52:74:6b:a3:d4:eb:fc:34:b1:89:04:f4:55:
99:65:6b:e7:7a:fc:3a:b7:2d:19:c1:b4:ec:b4:18:8f:50:91:
f5:89:97:53:73:f3:15:73:e4:88:74:a1:d3:13:43:30:61:56:
db:92:5e:e0:87:e4:07:73:6f:77:a3:61:7a:08:12:a7:77:e5:
5f:ae:bf:f9:e7:55:ff:a7:8d:0e:15:97:79:e8:df:a6:80:fa:
f1:52:78:cf:8c:42:67:13:06:f1:3d:8b:df:2f:42:39:8f:14:
15:e4:07:44:23:aa:41:6c:e8:98:7e:29:a2:03:22:e3:05:c3:
b1:10:e5:b6:db:09:4f:c3:59:af:de:a9:e8:cb:1f:d4:4e:54:
41:79:52:c7:99:ea:2d:cf:7b:d5:3b:58:37:35:f6:aa:d4:32:
fd:04:84:19:7b:90:fc:f5:25:22:41:29:62:aa:d3:9c:64:8a:
9f:92:69:b5:88:d1:d2:72:2f:a7:81:a1:6a:e8:e2:71:db:52:
38:bd:fa:99:bc:96:ce:b9:be:1e:46:0c:b9:65:6c:15:32:a2:
4b:63:7a:c0:84:cc:c3:a3:0b:b2:b9:5f:0f:82:3d:a2:24:3c:
8a:7b:f9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org