Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/FdtCbERZyfJFU6dQk9NBjyHetEc.roa
File: FdtCbERZyfJFU6dQk9NBjyHetEc.roa (raw, json)
Hash identifier: 7i0RKTwwjb4gvJ6qNd8fKpGg+qBYGdHhvLqvMpBEzkM=
Subject key identifier: 15:DB:42:6C:44:59:C9:F2:45:53:A7:50:93:D3:41:8F:21:DE:B4:47
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A86
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/FdtCbERZyfJFU6dQk9NBjyHetEc.roa
Signing time: Mon 14 Nov 2022 02:35:50 +0000
ROA not before: Mon 14 Nov 2022 02:35:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 202.12.76.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2694 (0xa86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Nov 14 02:35:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=15DB426C4459C9F24553A75093D3418F21DEB447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:39:5e:2e:33:c9:75:b0:95:e1:5a:36:0a:
62:0d:9f:a0:f9:15:1b:c2:f4:fc:0d:c0:bb:34:3c:
93:5a:50:20:4a:36:5e:29:56:36:10:a7:75:80:cd:
0d:d2:d8:81:9b:fd:c0:1f:60:ba:b7:f4:0e:06:c7:
1f:54:e3:dc:38:5c:30:6c:8a:c2:57:18:b4:8d:0e:
fd:4e:20:14:22:6f:15:f2:b3:8e:e3:f1:90:f2:2d:
fc:3c:c4:b3:f1:08:5b:d2:29:d6:42:5d:f8:77:55:
d5:bc:88:72:2c:07:4b:08:0c:b5:f5:e2:bc:e5:f8:
3d:d5:9f:f1:5b:a9:df:53:9c:d5:de:2f:1a:d3:56:
b5:24:77:ec:65:05:32:4b:ab:02:58:22:ac:56:17:
11:cd:44:35:8a:a7:e4:7c:4c:86:08:61:f5:36:63:
c6:85:b7:6d:a5:90:f2:ad:11:3e:3f:9c:3b:6f:ab:
11:77:54:42:39:6b:7c:3b:5e:24:a7:0c:07:19:16:
4c:f3:94:b2:8b:5a:ec:44:66:cf:06:b6:80:60:37:
2c:22:2f:15:b3:fc:af:6e:d4:4d:c9:ef:5d:1f:6e:
de:76:74:df:e0:f4:f5:01:bb:8e:4a:1d:52:47:66:
63:01:11:d7:9a:91:f3:72:67:16:16:4f:de:40:28:
d7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DB:42:6C:44:59:C9:F2:45:53:A7:50:93:D3:41:8F:21:DE:B4:47
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/FdtCbERZyfJFU6dQk9NBjyHetEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.76.0/22
Signature Algorithm: sha256WithRSAEncryption
07:2c:c7:46:85:95:b0:51:3e:d0:b1:43:73:6b:d6:3b:bf:42:
56:00:d2:87:78:fa:ac:11:16:3f:eb:83:f3:f9:73:7c:31:bc:
8c:69:76:d8:74:3f:9a:57:a6:ec:77:33:42:6b:d9:bd:29:5b:
56:72:28:2c:4a:81:71:56:a3:88:12:f0:53:11:ff:96:35:e6:
42:ce:f5:2b:a2:4f:23:3d:67:2e:c5:33:ab:07:e8:b6:ae:57:
05:e3:60:6e:b6:11:20:9a:df:04:8b:c7:3c:c6:84:f3:c2:0c:
6d:6e:5d:f2:67:7b:25:a1:09:08:48:95:1a:a5:e7:b0:1d:bc:
8d:ce:9d:34:64:aa:88:51:79:09:0e:6d:c5:7d:40:26:de:42:
cf:e5:95:5e:0a:c7:3e:8b:94:36:06:05:1d:cd:c8:04:75:6f:
65:d6:dd:a9:38:83:1f:eb:8d:7a:48:34:75:e9:8b:b1:dd:a3:
38:08:a4:fd:2e:96:bc:ac:f0:71:e5:12:59:90:18:0b:0e:53:
65:56:2a:b6:88:75:c5:cd:48:37:3f:68:e5:c6:37:19:f0:77:
16:2a:82:52:b2:e5:98:0e:0a:77:2c:0f:df:c4:ac:1b:53:49:
2b:05:e9:36:e9:eb:c7:eb:c4:b8:eb:fc:04:9d:9a:51:fa:01:
59:eb:f6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org