Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-0orleoLWIk1fq7q2kwK8HHxDd0.roa
File: -0orleoLWIk1fq7q2kwK8HHxDd0.roa (raw, json)
Hash identifier: qeQZyLZcncSaJp8XhzPaVO5oYfqtng1n8wYYgrwX354=
Subject key identifier: FB:4A:2B:95:EA:0B:58:89:35:7E:AE:EA:DA:4C:0A:F0:71:F1:0D:DD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 108B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-0orleoLWIk1fq7q2kwK8HHxDd0.roa
Signing time: Wed 01 Feb 2023 10:28:42 +0000
ROA not before: Wed 01 Feb 2023 10:28:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4235 (0x108b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FB4A2B95EA0B5889357EAEEADA4C0AF071F10DDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f4:85:ee:b4:4b:e8:e1:ed:9f:50:9a:98:cf:
bc:e1:31:fe:8f:c5:af:02:f6:30:98:b0:f5:b8:b8:
15:c3:6f:b1:62:f2:3a:a8:1d:98:fd:03:f2:e6:88:
70:57:52:43:3c:65:a3:43:70:a9:10:f5:24:39:72:
da:7d:56:f6:67:c8:bd:25:cd:fc:18:e0:77:0a:4f:
4a:6f:07:7a:92:ec:49:70:c1:72:b9:11:57:58:d5:
a0:84:96:d0:95:89:20:cf:ee:ea:8d:f9:eb:e1:78:
9b:57:7e:ef:ac:f4:a0:82:d6:42:7b:84:a4:07:e6:
7c:4d:65:c8:ab:ed:0c:b6:e1:95:d9:9f:e4:1d:08:
4f:1e:c1:fb:83:58:d9:6d:ec:a8:1c:c8:36:d6:db:
bc:f1:5c:36:32:72:78:b8:16:0c:a3:ef:78:fb:0e:
35:92:00:c0:2f:a8:8b:96:d4:be:e3:38:5a:ab:58:
56:21:50:b9:d1:2e:09:91:9f:34:eb:6a:22:51:2a:
e1:a5:48:42:5c:a7:65:ae:cd:01:7f:56:d9:f4:8a:
c9:2d:02:43:59:58:0c:c4:3d:60:c3:27:f5:bb:a5:
cb:81:a7:29:a5:91:0a:a9:ad:db:75:5e:8c:7c:67:
d9:77:80:1e:dc:b3:72:d8:fd:36:04:9f:0d:7a:4d:
84:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4A:2B:95:EA:0B:58:89:35:7E:AE:EA:DA:4C:0A:F0:71:F1:0D:DD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-0orleoLWIk1fq7q2kwK8HHxDd0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
24:41:22:cc:ff:21:51:27:0a:63:45:c0:97:b0:82:42:92:ce:
f7:de:04:90:80:6f:b3:a8:21:9f:f5:6e:01:85:36:06:c4:ca:
be:59:12:7e:ea:55:f5:10:dd:80:83:0c:a1:e5:85:67:c4:71:
a4:b4:3d:45:69:00:5a:9b:39:7e:21:5d:54:39:d0:ae:96:fe:
00:d3:1b:12:07:28:29:42:44:29:f4:2e:a3:a2:9f:da:47:23:
c1:13:13:8b:d1:d4:d0:c5:5c:55:03:b5:ba:24:07:b2:50:c3:
d6:67:65:3e:23:22:7f:4c:2d:9f:c4:ce:6b:34:ad:bd:7b:d5:
14:ef:90:64:34:4a:a4:b3:81:16:2b:be:30:99:df:ab:69:e0:
23:21:07:36:b7:ef:e9:31:c7:d2:a2:8f:5e:d7:de:7a:b8:f9:
11:c5:6a:b8:18:c3:d2:76:c8:0e:bd:12:aa:e0:18:24:34:41:
5b:5b:29:a2:71:ce:e1:4b:a5:bc:a8:a8:ea:9b:28:7e:f1:c9:
ee:b8:85:4b:77:f9:71:86:92:d7:2a:f8:31:8c:63:84:42:74:
d1:dc:55:af:d5:a3:23:75:0d:b0:ba:f4:3b:e0:b2:f8:d4:c1:
9e:3c:4e:6e:9f:ab:08:fa:55:22:0c:20:94:dd:f4:7b:27:f1:
9f:b7:83:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org