Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-MhX3dUwOZxg8SdAAi2Gf7u2yo0.roa
File: -MhX3dUwOZxg8SdAAi2Gf7u2yo0.roa (raw, json)
Hash identifier: SeshDKTwaSTpzH/7TEDL+tmWsLRZdhQzdnDa0SAQa0s=
Subject key identifier: F8:C8:57:DD:D5:30:39:9C:60:F1:27:40:02:2D:86:7F:BB:B6:CA:8D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-MhX3dUwOZxg8SdAAi2Gf7u2yo0.roa
Signing time: Thu 15 Sep 2022 02:42:59 +0000
ROA not before: Thu 15 Sep 2022 02:42:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F8C857DDD530399C60F12740022D867FBBB6CA8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:d5:97:01:60:69:27:fb:2e:15:7a:4b:53:
19:ad:1e:49:74:72:50:0f:bb:2e:11:26:fb:76:03:
5f:27:30:6f:dc:a2:07:e6:7f:68:f6:e4:20:5b:5a:
75:09:b2:d9:9b:e5:e0:c1:92:05:a7:21:3d:c8:f7:
ec:6f:1e:94:52:ba:10:1a:2e:b7:c4:84:56:5d:e8:
15:6f:2d:39:a2:f2:bf:3b:f9:73:27:08:3c:c9:fe:
fd:5b:0b:27:c3:37:5f:f4:84:e6:50:38:cd:a6:45:
da:47:f4:d4:0c:87:21:c1:e4:37:ee:66:b7:7b:62:
97:65:dc:bd:71:65:f1:48:c7:27:58:43:c6:d2:6d:
67:bb:37:65:79:55:b8:fc:67:32:fa:ea:f5:97:5f:
64:f1:0a:1c:61:c6:ed:20:9e:55:b9:a6:93:70:6c:
b3:8e:70:b6:0f:f4:d4:fc:59:e2:aa:ec:55:a5:d7:
79:b7:9b:6f:07:08:ce:4b:83:83:b5:f6:f7:1d:f9:
68:7a:a9:5b:7a:13:71:a8:86:61:d1:81:b3:c9:52:
17:e4:96:d1:d8:a1:ed:6d:68:1c:99:5d:c1:b8:b9:
05:b2:a1:b9:2c:e5:32:ee:c1:2d:a9:c3:4f:58:fb:
8b:62:b2:9d:6d:c5:b6:c6:80:ff:25:bc:69:af:a7:
1f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C8:57:DD:D5:30:39:9C:60:F1:27:40:02:2D:86:7F:BB:B6:CA:8D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-MhX3dUwOZxg8SdAAi2Gf7u2yo0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.128.0/19
Signature Algorithm: sha256WithRSAEncryption
17:71:75:7e:d4:51:99:b3:b9:a8:7c:01:85:59:6a:03:85:de:
9f:9a:70:6b:0f:30:37:dc:6d:8d:d2:2a:ee:b2:89:29:95:cd:
ea:b3:10:39:bb:48:f1:e4:25:02:0d:a4:7a:00:1f:34:35:fe:
0d:f6:ef:08:da:8c:9e:99:59:bd:69:31:e5:a2:14:58:03:3b:
72:fb:93:57:56:92:45:e4:3c:02:b5:fd:08:e9:eb:d3:9e:7e:
86:ee:11:c4:59:16:da:67:15:9e:c4:6f:61:d7:b7:67:1c:33:
07:04:59:64:b0:09:11:d8:e9:5e:df:a0:ef:5f:67:4f:ca:a8:
ec:d4:df:47:45:f9:c3:02:5b:91:ff:34:02:40:3e:44:0c:30:
4c:e9:a8:71:6a:ea:b3:97:a7:0e:e5:96:c1:94:bb:07:1b:49:
cb:28:be:18:b0:1c:dd:9d:ff:e5:a4:f9:0c:50:33:e7:6a:8b:
b3:ed:32:7a:e9:6d:d2:0d:fd:72:1f:bd:71:ba:dd:79:99:7d:
4c:42:66:e1:c4:eb:ac:75:7d:46:fd:45:75:d8:5b:13:98:5d:
63:69:27:7f:f9:0a:6f:94:a3:f3:d3:cf:54:2f:bf:c4:93:e3:
8a:da:f9:38:18:08:df:ac:ac:bc:60:cf:42:57:bb:9a:c1:5f:
2b:2d:55:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org