Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-oWvmAKbysHrnEboVVySHpMax_4.roa
File: -oWvmAKbysHrnEboVVySHpMax_4.roa (raw, json)
Hash identifier: SvQNZOyqYRLw1WRZnIY7XUkmZ0qwT4zq1IW3UhWKb5M=
Subject key identifier: FA:85:AF:98:02:9B:CA:C1:EB:9C:46:E8:55:5C:92:1E:93:1A:C7:FE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10CD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-oWvmAKbysHrnEboVVySHpMax_4.roa
Signing time: Wed 01 Feb 2023 10:29:03 +0000
ROA not before: Wed 01 Feb 2023 10:29:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.146.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4301 (0x10cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FA85AF98029BCAC1EB9C46E8555C921E931AC7FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bb:3d:00:96:08:ef:46:0f:71:1a:29:28:c4:
6d:1d:b8:68:ea:45:b2:34:6b:e5:e4:e1:9b:a2:aa:
7e:a9:69:49:6c:52:bb:ea:f1:00:92:42:24:cc:df:
12:1d:64:eb:8f:cd:3f:43:70:35:ae:a0:9b:c7:a0:
e7:1c:60:db:05:93:e2:46:f0:1b:9a:2f:19:0f:20:
b3:c3:9a:3f:f4:40:57:60:72:62:80:4c:2a:5f:be:
92:bd:e7:6c:a5:20:60:8b:bb:fe:ad:18:82:c1:31:
ec:eb:8f:21:c8:ae:ae:39:9e:8f:b0:3b:ad:ae:e6:
70:5b:e1:b7:d4:d6:df:34:8f:32:1d:6d:11:e0:07:
5e:c2:49:b4:b5:09:6b:38:a2:c4:da:54:e1:a4:d8:
6f:c4:99:3c:90:ec:6d:3d:0c:4a:77:9b:2b:81:e7:
04:51:96:c4:9b:4b:60:3f:1e:f0:99:9f:d0:fb:1b:
b7:83:a5:c0:65:1d:8d:b6:1a:e3:af:ba:5f:4e:b3:
c3:a6:1a:8f:c9:57:a2:f3:42:b4:f2:c7:14:be:88:
03:a2:4e:c1:6e:61:91:b4:0b:65:62:b8:31:2c:3c:
8f:15:fa:e8:de:18:59:0c:8d:00:9b:53:36:31:31:
9f:97:7a:a2:70:ca:d5:b6:95:eb:f2:68:dd:73:48:
54:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:85:AF:98:02:9B:CA:C1:EB:9C:46:E8:55:5C:92:1E:93:1A:C7:FE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-oWvmAKbysHrnEboVVySHpMax_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/18
Signature Algorithm: sha256WithRSAEncryption
55:39:76:8f:4d:b8:ed:7e:c4:65:c4:8e:63:96:46:fb:b6:43:
34:2b:7b:24:21:5d:23:86:5a:36:66:33:83:75:36:66:f1:25:
10:f4:59:86:6e:aa:ca:ad:31:fe:96:d4:dc:73:6a:d1:e6:36:
87:7d:32:94:2e:89:85:f2:e6:93:c5:b3:40:5a:e2:62:c3:82:
a8:77:4d:9a:6c:f8:e8:2b:97:fa:78:f0:08:1a:ab:bd:ce:dd:
d6:9b:43:51:d9:a1:d5:50:69:73:de:72:be:d2:bb:06:4c:5b:
22:66:dd:c0:08:23:82:45:b6:17:8e:9b:d6:81:24:7b:86:1b:
c6:74:fa:9e:25:31:4a:1d:47:8b:21:b8:1d:eb:2a:ac:fb:f8:
49:94:1e:7d:50:e2:f5:45:38:36:7c:0d:e2:0f:ec:a4:e8:d0:
f0:2f:c2:30:03:26:68:91:0f:49:d1:94:6d:4f:18:27:52:47:
93:01:cd:dc:f9:b5:01:ae:8d:8c:c4:a6:35:cc:e1:28:3f:b5:
97:9f:08:b4:1c:c7:c4:2e:6f:68:ef:20:f4:89:ca:22:d9:c8:
60:5f:06:b7:40:f5:72:40:e6:af:8d:95:04:cc:ca:01:8e:9a:
3e:72:70:47:54:eb:9d:7b:c7:e0:40:7b:49:02:ec:83:5c:2e:
6c:10:3e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org