Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/f1YZDQOzFhKxczdDueX3o38aklY.roa
File: f1YZDQOzFhKxczdDueX3o38aklY.roa (raw, json)
Hash identifier: RVG8KtLjpAN63hX7QJwTdOrXdl5zGSQh5Eu/+VeaZpQ=
Subject key identifier: 7F:56:19:0D:03:B3:16:12:B1:73:37:43:B9:E5:F7:A3:7F:1A:92:56
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B81
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/f1YZDQOzFhKxczdDueX3o38aklY.roa
Signing time: Thu 12 Oct 2023 07:20:33 +0000
ROA not before: Thu 12 Oct 2023 07:20:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.123.196.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 26 Aug 2024 02:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2945 (0xb81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Oct 12 07:20:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7F56190D03B31612B1733743B9E5F7A37F1A9256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b2:7c:6e:58:64:c1:a5:7d:dd:a8:d7:7b:30:
86:a8:40:ee:d4:28:ee:6b:a7:b2:91:a9:25:84:42:
e5:11:fa:61:12:19:b1:66:8a:a1:ca:0d:06:5a:29:
cb:c8:4c:a0:ef:3e:b9:19:7d:34:0e:c7:6f:69:c0:
05:21:be:3d:c4:d1:b2:18:2b:60:f2:18:47:bd:61:
ec:a7:ea:d7:6d:b7:55:9c:92:60:17:c3:5b:68:58:
8d:80:5b:80:f2:64:71:2e:4c:a3:db:4b:c6:e3:ac:
30:b7:d1:6e:de:45:dc:51:fd:a7:3b:a9:82:f9:03:
87:f5:85:00:15:ad:90:01:73:b4:c1:0c:97:97:c7:
4b:94:da:25:8b:ef:f1:73:a8:6b:7b:57:3e:02:c7:
5c:2a:9c:26:68:39:f5:fa:50:26:7c:6a:f7:55:03:
f2:e9:4d:f2:a4:6f:36:e1:ed:93:13:ee:57:b7:a1:
5d:53:db:65:f9:63:69:e1:f5:d0:c1:58:e3:94:a1:
8a:27:49:81:2c:99:0d:35:2e:02:56:2d:cc:54:14:
da:23:73:3e:6b:f8:4d:11:e2:eb:1c:e8:de:f3:ac:
06:d2:81:5a:c5:ed:c9:ce:50:36:91:41:e7:20:f0:
f2:39:45:4e:c0:d6:7d:38:9e:0c:39:fd:d3:96:b0:
a5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:56:19:0D:03:B3:16:12:B1:73:37:43:B9:E5:F7:A3:7F:1A:92:56
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/f1YZDQOzFhKxczdDueX3o38aklY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.196.0/22
Signature Algorithm: sha256WithRSAEncryption
74:7c:91:1b:12:02:3f:ff:6e:bf:b2:26:26:5c:5d:7f:23:c3:
3a:0c:13:c0:45:44:11:1b:4f:4f:0a:9d:ce:77:b3:4e:43:d2:
d5:42:a9:70:77:d3:18:6c:94:40:f7:e7:5e:4b:18:73:9d:cd:
9f:48:40:3d:1a:b5:35:13:cd:06:bf:62:46:e1:cf:b7:e4:5d:
ba:62:7f:88:f5:cb:fa:4c:57:51:1f:b0:aa:08:d9:cf:2c:fb:
aa:02:00:30:41:1b:ac:98:5e:5f:62:41:e6:0d:b4:75:c5:68:
93:b1:c3:ef:8c:5a:23:95:5b:5f:84:1e:5a:c4:e9:b5:1f:1e:
30:c3:f2:62:18:bf:2d:b7:dd:81:59:75:67:48:dd:91:14:a3:
ba:dd:a1:3a:78:b4:0d:f9:5c:59:2f:24:67:8c:17:2b:82:07:
5b:cf:3e:51:21:c5:5f:39:1c:7c:19:46:41:e2:3c:fd:83:c9:
99:16:3f:98:a3:1f:72:7a:e9:38:68:b7:3b:38:18:74:25:39:
85:41:b4:ff:bc:06:9f:2a:72:c2:3f:7e:6f:92:40:04:92:e9:
22:2a:4c:e7:16:c1:01:54:39:82:14:98:5e:de:51:be:2a:57:
9f:37:e7:a7:9f:7f:bd:15:aa:59:37:f6:b7:d5:18:99:06:a0:
8a:02:73:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 06:14:04 2024 by rpki-client on console-ams.rpki-client.org