Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/TQbFiumgH2m2efJgMlEisCOH35Y.roa
File: TQbFiumgH2m2efJgMlEisCOH35Y.roa (raw, json)
Hash identifier: OFI/V18OP8p8PhOF/G/ekQ9KSn9UcWjtWRGJqjut3z4=
Subject key identifier: 4D:06:C5:8A:E9:A0:1F:69:B6:79:F2:60:32:51:22:B0:23:87:DF:96
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0DA4
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/TQbFiumgH2m2efJgMlEisCOH35Y.roa
Signing time: Thu 15 Sep 2022 02:41:42 +0000
ROA not before: Thu 15 Sep 2022 02:41:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2404:4fc0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3492 (0xda4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 15 02:41:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4D06C58AE9A01F69B679F260325122B02387DF96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0b:1a:40:63:14:45:eb:b9:51:36:11:ba:2b:
ea:e1:5f:79:31:c3:d9:a4:9b:aa:69:fb:18:71:98:
c8:40:61:a4:13:9a:51:5e:11:22:7e:de:62:1d:04:
74:e2:c6:5b:ee:bc:8a:3d:29:53:95:73:70:70:9b:
5f:eb:8e:9b:1d:c8:eb:1e:6f:3d:78:00:ec:ac:f4:
e5:e0:1b:0c:11:1d:87:af:a4:ec:74:b9:db:88:9c:
36:b4:6f:57:b8:66:21:8d:0f:58:73:29:ca:58:24:
9c:4f:66:3f:e1:fa:a7:9a:b2:20:3a:c5:21:0f:01:
a2:4d:7b:75:4a:a2:ea:36:72:b0:f6:08:2d:f4:c2:
7f:00:89:eb:6f:01:a6:f1:8c:83:d7:51:c4:95:07:
4d:60:00:83:2d:f9:55:33:d7:27:d0:f3:3d:d1:6b:
0d:b3:80:78:9a:a5:ee:b7:ee:7e:f3:74:19:27:e1:
96:30:e0:8e:01:53:43:e3:97:02:d5:39:3e:3e:a8:
0f:6e:9d:c0:78:38:23:2b:d6:23:d2:e7:10:dc:90:
7d:87:6e:16:64:dd:18:9b:43:dc:ec:6c:04:49:bf:
12:96:67:72:a8:13:9e:89:91:2f:d5:1e:24:ce:29:
78:3d:eb:0c:88:e0:dc:db:e8:ea:ba:26:14:0d:88:
f2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:06:C5:8A:E9:A0:1F:69:B6:79:F2:60:32:51:22:B0:23:87:DF:96
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/TQbFiumgH2m2efJgMlEisCOH35Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
b4:9a:4f:75:2b:c9:7e:b5:3d:71:c2:2e:60:d7:53:4f:f4:c0:
51:bb:61:c5:f0:08:1b:c2:80:34:af:94:70:b5:2e:47:75:f7:
02:4b:6d:74:d7:4a:41:ed:f4:e4:84:6b:ef:52:6e:f1:a5:76:
ee:bc:a0:9d:98:ec:b1:8f:cb:cc:87:2d:81:63:59:59:33:92:
41:46:b4:b4:a9:3f:62:20:8a:1d:b8:ae:0d:e9:a3:6a:06:4a:
bf:d4:88:71:f9:a1:27:e9:9b:c8:75:fd:bd:ae:5c:e2:c8:75:
a8:c3:75:5d:1c:64:b0:3b:2b:07:7e:35:0f:85:ee:05:b6:aa:
6b:ec:a4:6d:c7:08:94:88:30:44:9f:41:64:f8:d3:79:3e:5a:
1a:ff:0f:66:35:5f:9d:24:21:21:1c:aa:38:15:68:8a:d5:81:
0f:db:b5:d8:6d:8b:13:b5:6e:1c:72:8e:a5:01:d8:d1:d1:54:
01:fb:52:1b:02:54:a7:0f:51:7d:74:ef:fe:dd:dc:13:a8:a1:
32:e0:5a:aa:79:82:9f:0e:7c:1e:93:99:d3:b6:c2:f9:e5:be:
e8:aa:4e:e8:5e:0b:af:67:d5:b4:8e:4e:76:37:43:75:89:2b:
49:35:d3:3d:f7:cf:00:b3:91:f8:71:7d:17:8e:37:f4:68:cd:
8c:bb:f5:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:41 2023 by rpki-client on console-ams.rpki-client.org