Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/08Ua4-3EQPqA8scIL8i2Me4naSM.roa
File: 08Ua4-3EQPqA8scIL8i2Me4naSM.roa (raw, json)
Hash identifier: pZb5mAncFluRbuaFnzOUwBS4oZlAYQewY9iWbSrOIZg=
Subject key identifier: D3:C5:1A:E3:ED:C4:40:FA:80:F2:C7:08:2F:C8:B6:31:EE:27:69:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10FE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/08Ua4-3EQPqA8scIL8i2Me4naSM.roa
Signing time: Wed 01 Feb 2023 10:29:20 +0000
ROA not before: Wed 01 Feb 2023 10:29:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4350 (0x10fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:20 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D3C51AE3EDC440FA80F2C7082FC8B631EE276923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d9:59:87:b7:a5:5a:6d:2b:cd:9e:1a:62:cb:
3c:1c:25:ff:49:6f:f0:ee:5b:56:7d:5d:3d:4e:a1:
7a:ab:30:74:8c:4b:ad:4c:69:d1:9a:ac:24:99:5c:
30:f9:97:2d:ef:de:9e:3d:1d:60:8b:c2:e6:73:0f:
49:a7:78:1a:7c:5a:b0:e4:2c:c2:c7:fd:5e:ff:3f:
7f:87:30:0e:ce:06:f0:d8:a1:47:7e:40:58:d9:bf:
db:a6:52:0f:6a:98:33:fd:1b:fc:76:46:c7:d6:03:
83:66:4c:75:ce:f7:26:5e:8e:5e:80:51:ea:90:5d:
bc:60:6b:8c:a9:cc:95:93:19:9a:99:52:e7:16:a7:
07:04:95:b0:ce:be:e7:e0:bd:5c:a4:36:5b:cb:df:
dc:66:e7:4f:f6:5e:dd:10:90:4b:34:40:fb:f1:5b:
06:e2:d7:cd:ae:61:2b:ef:36:ad:3d:dc:98:66:3c:
a4:ea:93:74:8c:5e:80:45:46:df:02:1f:33:9a:1c:
db:49:11:6e:6c:e1:09:4c:42:b0:64:81:a7:77:ec:
e2:8d:5c:c9:e4:53:40:f4:87:4b:62:48:c1:16:ba:
cf:15:02:f4:54:0d:d9:49:88:0b:7f:32:02:7a:04:
2a:a1:91:da:4d:d6:f4:64:4e:39:88:69:7d:6e:d9:
5d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C5:1A:E3:ED:C4:40:FA:80:F2:C7:08:2F:C8:B6:31:EE:27:69:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/08Ua4-3EQPqA8scIL8i2Me4naSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
72:a0:4a:aa:4b:d9:4c:0e:20:a1:2a:dc:99:e9:4f:f5:04:06:
23:ca:cc:1a:95:4d:e4:2e:29:45:35:3d:36:9c:2e:52:6a:f5:
ee:38:8c:c5:96:97:16:04:0e:57:9e:fa:c1:4a:02:9d:b6:12:
f6:66:cb:6e:39:94:ee:60:1e:9a:48:08:07:8b:92:62:48:01:
e5:d4:53:bd:6b:cc:58:9d:36:b4:46:f4:c3:44:10:36:c0:9a:
81:f7:9b:f8:06:fe:08:8a:60:73:20:87:57:4c:fd:14:3f:8f:
b8:b4:5c:3d:b1:56:5c:f7:62:18:fa:44:ca:e2:c5:50:e1:73:
e3:9f:d0:76:93:3a:f6:6f:94:64:76:cc:ef:0f:be:47:9e:f8:
d4:ef:b1:b3:8c:34:76:ad:f2:af:bc:6a:3a:37:81:53:30:ad:
26:60:31:49:e9:9f:b4:2f:10:41:f3:ce:52:19:19:d8:c2:1a:
61:0f:eb:e5:c8:ec:d9:40:6d:5a:bd:9d:1e:a7:2b:e5:ab:12:
96:45:65:c8:48:52:fb:8f:b1:4a:95:95:aa:1c:17:f5:e5:81:
98:dd:c3:b7:f4:18:ec:91:26:95:ca:25:e4:a0:45:d6:40:2f:
5c:9f:75:67:f2:e3:79:78:9e:22:9c:fd:8e:9e:53:9f:a1:9e:
32:2c:29:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org