Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YFCTELECOM/0OLxWXwkM6XuYNifc7F0TZgzocg.roa
File: 0OLxWXwkM6XuYNifc7F0TZgzocg.roa (raw, json)
Hash identifier: sMnCLmlCPAQbU22tdGwY34jzcJ+XieSfmjq9iEcaNSs=
Subject key identifier: D0:E2:F1:59:7C:24:33:A5:EE:60:D8:9F:73:B1:74:4D:98:33:A1:C8
Certificate issuer: /CN=97CAADC8439AACEC6C28CF433EC9D8BE0C69C4B1
Certificate serial: 10C8
Authority key identifier: 97:CA:AD:C8:43:9A:AC:EC:6C:28:CF:43:3E:C9:D8:BE:0C:69:C4:B1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/l8qtyEOarOxsKM9DPsnYvgxpxLE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YFCTELECOM/0OLxWXwkM6XuYNifc7F0TZgzocg.roa
Signing time: Thu 15 Sep 2022 02:38:18 +0000
ROA not before: Thu 15 Sep 2022 02:38:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 103.130.96.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4296 (0x10c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97CAADC8439AACEC6C28CF433EC9D8BE0C69C4B1
Validity
Not Before: Sep 15 02:38:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D0E2F1597C2433A5EE60D89F73B1744D9833A1C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:29:0d:98:5f:b5:48:ea:20:f4:45:7d:4b:
16:ad:1f:26:ad:5f:ef:e5:53:97:4d:38:9d:f3:ee:
bc:2a:96:46:2f:b5:6a:e5:f5:f0:7a:01:18:d2:28:
d3:d9:93:4e:eb:5d:99:81:a1:35:87:64:53:0c:ea:
09:5f:87:6a:29:17:57:45:cd:dc:63:38:a9:3f:78:
ff:ee:b8:33:53:c2:4c:8b:e7:3f:c7:c0:0b:94:26:
5e:96:11:a7:7a:03:77:c6:c7:15:33:3b:33:eb:1c:
25:d1:86:04:b4:0f:05:bb:d3:07:01:cf:57:19:05:
31:25:35:92:3b:24:c6:d5:d7:ac:15:a3:1b:71:c3:
0a:02:f1:9e:73:3b:ee:32:82:e4:76:d2:14:86:12:
92:32:c3:db:c1:6b:cb:20:c5:9c:29:31:50:fa:25:
da:b4:4b:3b:27:5d:e1:12:5d:b6:e2:dc:1f:3b:e9:
e6:c5:2a:17:8b:8f:6a:0e:47:cf:36:27:01:3c:65:
64:5e:07:cb:0c:36:89:33:ba:12:0a:0f:e1:ac:bd:
20:f3:09:bb:ac:f3:42:7d:3e:a6:95:fa:24:31:7f:
48:2a:2f:dd:e8:4c:78:9e:5c:25:08:d4:9b:bd:96:
e9:ee:20:77:70:b1:86:4f:e4:88:58:6a:32:4c:ca:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E2:F1:59:7C:24:33:A5:EE:60:D8:9F:73:B1:74:4D:98:33:A1:C8
X509v3 Authority Key Identifier:
keyid:97:CA:AD:C8:43:9A:AC:EC:6C:28:CF:43:3E:C9:D8:BE:0C:69:C4:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YFCTELECOM/l8qtyEOarOxsKM9DPsnYvgxpxLE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/l8qtyEOarOxsKM9DPsnYvgxpxLE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YFCTELECOM/0OLxWXwkM6XuYNifc7F0TZgzocg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.96.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:e2:71:00:f6:a0:d0:75:e7:ff:67:a3:48:78:d4:be:1f:90:
1e:17:2d:98:fb:9d:5f:c5:90:04:cc:80:da:82:e1:7e:bd:79:
aa:81:b2:7f:53:d2:21:04:ed:f6:2f:69:8e:29:75:69:33:ea:
1f:48:08:e1:54:7e:88:73:ec:34:c5:0f:5f:de:94:45:7b:9c:
c0:c4:9b:e0:c8:be:ce:07:69:fe:19:ab:f3:bf:8b:ba:2c:41:
7a:c9:d8:9f:ab:d7:f0:24:c4:24:5b:2c:bb:40:ec:bf:a1:97:
fe:24:2d:bb:8f:32:78:d3:26:1f:55:70:b9:81:c2:a7:87:1e:
42:d7:74:f6:79:b1:a3:36:df:40:32:a1:dc:17:b8:05:fd:1d:
20:48:84:84:bc:cc:e8:2b:bc:1c:9f:47:20:37:8d:59:3f:3a:
b8:05:cc:8b:57:29:00:79:e1:66:2f:06:fd:80:36:29:01:1d:
ee:12:f2:75:29:76:8a:f3:8d:4e:a9:af:04:5c:b8:02:c8:7c:
3b:cc:f3:40:de:19:0d:72:33:d0:2d:8c:ec:60:07:21:7a:88:
4d:75:77:a2:d5:a3:c8:76:37:70:13:d6:61:bd:9b:70:4b:e0:
27:77:d3:be:e6:bc:99:1a:1f:bc:87:f4:db:17:11:89:9b:50:
9f:9b:73:88
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:41 2023 by rpki-client on console-ams.rpki-client.org