Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ld7hTVZ2cKWMT4cCZvc-ik5cs6E.roa
File: ld7hTVZ2cKWMT4cCZvc-ik5cs6E.roa (raw, json)
Hash identifier: BbA5rjUFwiKBIQtW9NlyMVHkr8F64ZAJD0D8g78XIwc=
Subject key identifier: 95:DE:E1:4D:56:76:70:A5:8C:4F:87:02:66:F7:3E:8A:4E:5C:B3:A1
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A51
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ld7hTVZ2cKWMT4cCZvc-ik5cs6E.roa
Signing time: Thu 15 Sep 2022 02:42:21 +0000
ROA not before: Thu 15 Sep 2022 02:42:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.17.8.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2641 (0xa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 15 02:42:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95DEE14D567670A58C4F870266F73E8A4E5CB3A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fb:c4:ba:f9:20:96:02:7a:8b:d2:c2:06:5b:
c5:1a:bd:a8:ad:4c:99:06:be:fe:38:e5:42:53:a0:
92:c7:e9:18:68:7e:2d:0d:82:0f:85:0d:a3:ae:74:
ed:7f:9b:2f:df:0d:7e:10:36:47:94:48:9e:25:1c:
7d:1d:bc:de:96:5c:ff:e8:98:4c:47:46:78:46:f4:
19:12:95:7a:aa:e2:04:11:1f:c3:0a:72:a7:b4:69:
a4:de:bf:95:4c:36:61:ea:bb:9f:3e:74:80:78:5c:
d9:1b:99:ea:54:81:1a:90:3a:30:64:2a:6f:79:5c:
b4:54:19:ab:05:13:1d:5b:5d:6e:3c:88:e0:b0:99:
3c:b0:0b:34:32:eb:37:a1:ca:b7:ea:5c:d5:27:22:
f0:bf:af:61:ac:20:a3:22:22:ad:95:6b:38:ff:c6:
8a:4d:ee:ce:04:fd:61:d9:1b:3f:16:49:e5:bb:c3:
62:83:97:ea:51:b1:83:8c:4b:c7:44:05:21:7e:52:
2b:48:c6:96:6d:a6:0f:33:d8:17:11:6d:1c:8e:c9:
38:a3:1d:67:0b:be:7a:75:fc:c3:cc:47:bc:2d:ac:
fc:e0:24:82:e7:d7:f4:ff:22:80:26:22:c7:2f:e1:
ab:39:5d:04:d2:61:91:b0:79:b3:0d:d6:58:56:bd:
49:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DE:E1:4D:56:76:70:A5:8C:4F:87:02:66:F7:3E:8A:4E:5C:B3:A1
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ld7hTVZ2cKWMT4cCZvc-ik5cs6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.8.0/22
Signature Algorithm: sha256WithRSAEncryption
29:0a:08:bd:13:29:3e:f3:ea:00:54:b4:95:da:28:73:d5:ad:
b7:d1:5a:ac:5b:7c:4a:de:e0:c8:fc:74:fc:b6:3e:6f:da:0f:
92:0a:89:75:a8:d4:c1:f1:f7:00:f0:e9:0c:9b:6a:6b:28:3a:
e9:7c:b1:22:60:38:f2:7d:fd:ba:42:55:4f:c9:2a:15:0e:95:
8f:e2:5d:1d:c2:67:67:03:07:bc:38:f0:f8:2f:bd:3a:59:dc:
2a:68:2f:56:9e:5f:f1:32:c0:60:26:92:f8:73:c9:c0:e8:c3:
90:5a:d5:5a:9c:79:46:6b:b1:3a:6e:54:a8:39:22:4b:df:7a:
3e:b8:e6:75:1b:9a:84:64:6f:20:91:48:bc:f3:74:46:58:fb:
83:f9:ef:4e:34:22:b0:b0:2c:9d:80:92:bf:fe:68:39:a2:f7:
f6:56:a1:86:39:13:de:d6:66:a5:56:0b:91:71:cb:d8:4f:50:
2d:3b:53:6e:d9:94:e0:24:23:50:bf:6c:3a:36:30:fb:cd:34:
67:7d:25:3c:d0:26:06:f4:aa:de:5c:a8:62:79:e7:95:5b:2d:
e8:ca:bd:ea:b5:95:b3:2c:ee:5c:1f:6e:45:1e:7e:c5:d7:7d:
2d:09:da:01:59:ca:c8:2b:47:6e:5d:af:cb:9d:82:62:40:b1:
81:cd:2f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org