Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0BG2VDFuztrkqSRPMadzCknLjno.roa
File: 0BG2VDFuztrkqSRPMadzCknLjno.roa (raw, json)
Hash identifier: ocHl5kUX9WqnGov0ZyhgUhLwUU3nh1yag0iDxtqkM9k=
Subject key identifier: D0:11:B6:54:31:6E:CE:DA:E4:A9:24:4F:31:A7:73:0A:49:CB:8E:7A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0BG2VDFuztrkqSRPMadzCknLjno.roa
Signing time: Thu 15 Sep 2022 02:42:53 +0000
ROA not before: Thu 15 Sep 2022 02:42:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.108.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D011B654316ECEDAE4A9244F31A7730A49CB8E7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:24:59:08:6c:c2:01:36:6e:51:c3:5b:70:d9:
f9:d6:19:ea:1d:b8:e1:4f:a0:b4:8b:96:69:3c:15:
6c:b2:d8:84:8b:c7:a2:a2:45:bf:16:0d:8d:73:42:
31:f0:e1:f8:ae:6d:2b:da:21:05:fc:8c:65:dd:61:
da:d1:7b:5c:f8:9e:f7:b3:32:33:46:7f:37:7c:dd:
ac:fe:7d:0f:9e:11:a4:d5:94:c3:76:06:be:9e:8e:
43:a8:84:6f:1b:2d:ea:49:41:a9:13:96:18:45:69:
ff:ab:00:88:d7:19:29:23:50:96:8e:04:b3:01:69:
6b:8f:5e:a9:ee:df:c3:b3:48:4c:60:2f:3e:e2:4b:
7a:86:d4:84:cb:50:30:b7:ba:58:d4:5e:60:e6:bb:
87:96:a9:4f:0f:fc:d8:fc:a1:e1:1b:cc:c3:0b:ee:
c0:e8:88:03:b4:32:88:7d:35:df:53:d7:7e:47:77:
59:db:3d:3f:48:9b:29:0a:58:b0:bc:3f:b5:9e:ce:
cd:bb:71:f3:05:e7:17:94:49:97:50:46:85:4b:d0:
36:c5:88:2d:46:98:ff:b3:87:81:d4:66:80:63:68:
23:91:95:9d:e7:3a:8f:5b:fe:08:1f:88:0c:75:06:
c2:21:fb:5a:d2:3d:a3:15:c2:b0:bd:a5:ba:36:44:
34:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:11:B6:54:31:6E:CE:DA:E4:A9:24:4F:31:A7:73:0A:49:CB:8E:7A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0BG2VDFuztrkqSRPMadzCknLjno.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.108.0/23
Signature Algorithm: sha256WithRSAEncryption
32:10:71:2e:8a:b2:70:3e:7c:28:d6:c4:08:29:8b:cd:c3:b2:
06:7e:41:a7:13:39:2b:e4:b4:09:18:07:d5:16:4a:81:c3:52:
a9:e5:11:0d:b0:56:ad:d2:d8:67:26:c4:f2:86:11:63:54:54:
62:49:26:ae:b3:a7:49:03:30:f5:90:f6:29:53:a3:11:c0:6a:
48:04:7f:63:01:65:ee:4e:32:e0:a0:2e:de:2f:a4:ed:c3:2d:
9f:32:ad:b9:66:d8:7e:39:7d:84:3e:c8:68:65:41:d8:9d:14:
2e:25:f0:87:e5:12:4a:d4:1a:df:89:76:50:01:e7:31:c6:06:
34:65:eb:fa:58:f7:2b:9b:cf:cf:b4:b7:9b:50:6a:f6:e5:14:
d6:82:bf:71:f1:3b:4e:b0:7c:80:f3:8f:e9:2f:09:5b:52:79:
2f:71:c3:8a:ab:35:e5:62:06:04:c8:23:4d:c3:9d:48:95:e6:
23:6e:9c:3d:6a:bf:cd:31:68:16:a2:12:ea:8e:9a:7a:18:77:
42:39:33:71:6b:a4:28:fd:e2:4e:6c:4b:dd:44:8b:63:20:89:
2d:4f:25:e6:bf:2e:6d:69:d4:72:6d:7c:70:01:d8:06:b4:30:
08:53:55:a4:4e:82:19:d5:09:64:11:e7:61:a5:05:b6:7e:3b:
9f:66:fc:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org