Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/G2hc8EqzK8jIaNsRFGBZ8FxwZsk.roa
File: G2hc8EqzK8jIaNsRFGBZ8FxwZsk.roa (raw, json)
Hash identifier: Meysz+6Z1VbMGB9IYRWR+ox/Tci7Tp4OZ5oWt7TCc0Y=
Subject key identifier: 1B:68:5C:F0:4A:B3:2B:C8:C8:68:DB:11:14:60:59:F0:5C:70:66:C9
Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Certificate serial: 07
Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/G2hc8EqzK8jIaNsRFGBZ8FxwZsk.roa
Signing time: Wed 06 Dec 2023 07:16:16 +0000
ROA not before: Wed 06 Dec 2023 07:16:16 +0000
ROA not after: Fri 29 Nov 2024 15:30:20 +0000
asID: 201217
IP address blocks: 210.79.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 15:52:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Validity
Not Before: Dec 6 07:16:16 2023 GMT
Not After : Nov 29 15:30:20 2024 GMT
Subject: CN=1B685CF04AB32BC8C868DB11146059F05C7066C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:45:5f:4d:a1:5c:69:d5:5e:e0:76:89:5d:
6d:fb:9f:ec:25:42:e4:03:03:de:17:c6:b7:3e:0c:
dc:40:86:57:92:0a:d6:78:24:a3:ee:24:af:f0:48:
14:5d:a6:e8:94:a4:d7:b1:45:29:74:1e:dc:d7:e7:
a2:e6:c5:24:c8:5f:75:ab:85:ef:1a:dc:f7:6c:c6:
43:d7:7d:50:2d:e6:57:26:11:54:9e:f0:8d:af:09:
03:f8:31:2e:c8:bb:3e:ac:9f:42:b6:f9:b0:5e:37:
f8:f8:a6:39:ab:b7:45:49:c6:f6:c7:69:cb:51:17:
a1:4f:df:03:90:9f:9c:8d:14:87:76:4d:fd:d2:55:
65:34:ee:97:e8:98:b2:a2:31:04:5a:17:94:5e:07:
0c:4b:f0:f8:56:f2:ac:88:89:8b:5c:fe:b6:5f:e3:
14:66:fa:bb:8a:11:83:55:e5:a0:68:0b:e0:b9:64:
45:0b:e2:50:b9:27:d0:82:96:ce:df:31:09:76:95:
4c:82:eb:d3:28:d6:9a:73:48:f3:60:8d:c8:98:73:
9c:02:56:c5:a1:b1:92:f1:55:28:4e:0b:96:d4:3d:
85:bf:64:98:19:9a:37:fc:a3:b5:f6:4d:76:5d:3c:
ab:7d:c8:ac:3d:bd:6c:74:b8:8f:84:d3:e0:84:75:
57:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:68:5C:F0:4A:B3:2B:C8:C8:68:DB:11:14:60:59:F0:5C:70:66:C9
X509v3 Authority Key Identifier:
keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/G2hc8EqzK8jIaNsRFGBZ8FxwZsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b7:27:a2:62:15:70:dd:f4:fe:24:5e:a7:ad:04:e9:aa:a8:
c9:59:84:0a:b8:87:e4:a0:59:73:4d:8c:d8:b4:18:b1:94:45:
93:5f:b4:00:6d:dc:69:e4:35:ab:6d:0b:fa:7a:c3:2b:bb:29:
7a:4e:ad:89:ad:bf:58:f5:34:4d:f0:87:e0:a6:26:e4:05:bc:
d2:95:18:3b:5b:f7:e8:07:f6:7e:3f:f3:c2:b2:93:48:94:db:
46:66:1b:62:f6:78:a6:de:21:75:26:98:b8:06:38:e3:b2:dd:
26:bf:59:6b:67:7a:94:d2:cd:d7:33:a4:b2:fa:93:23:f7:c3:
1d:98:35:a1:c4:7f:e3:cc:b4:8d:b4:c0:e2:6f:de:b7:56:ab:
32:4c:f5:a3:95:09:52:f7:d6:3c:ce:2c:7b:19:3d:c7:97:a3:
16:19:56:d1:f3:fe:4d:9f:ce:4a:54:3f:fd:6c:ce:b1:9b:11:
e1:3b:18:a6:a4:42:0c:d4:bb:ee:60:ef:68:5f:8a:a3:a9:f0:
86:dc:ef:2d:4d:be:32:0c:2e:45:d0:f6:ff:8f:7e:ba:7e:2d:
79:36:f6:6b:6a:eb:6d:0e:db:c4:3f:aa:80:51:99:cc:c0:98:
02:70:1f:88:24:7a:a7:4d:3d:67:62:2c:b9:d4:4f:fe:30:4f:
33:d1:3b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 18:09:04 2024 by rpki-client on console-fra.rpki-client.org