Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2KXbB9U4FnbFMNiATpSElCVlkBA.roa
File: 2KXbB9U4FnbFMNiATpSElCVlkBA.roa (raw, json)
Hash identifier: +oEHmtAQMhvAq+ce6uxeUZ2OcegcsHooPzghepITAQA=
Subject key identifier: D8:A5:DB:07:D5:38:16:76:C5:30:D8:80:4E:94:84:94:25:65:90:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2KXbB9U4FnbFMNiATpSElCVlkBA.roa
Signing time: Thu 15 Sep 2022 02:42:50 +0000
ROA not before: Thu 15 Sep 2022 02:42:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D8A5DB07D5381676C530D8804E94849425659010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4b:0d:6b:42:05:7c:5d:7b:51:7d:71:0c:ef:
96:ff:9d:ee:9b:ee:40:34:61:40:7f:81:87:6c:ea:
83:63:00:97:75:dd:aa:3e:78:bb:e5:e6:4e:28:3e:
01:b0:64:32:5b:05:78:af:12:e6:80:62:cf:dc:8c:
07:ae:db:97:f5:6a:4d:3a:d1:54:34:2f:72:3d:27:
83:aa:81:2e:d8:9d:ed:82:1d:78:84:09:54:fd:92:
44:a7:83:8c:28:c1:19:fa:0a:6c:a2:22:eb:a0:61:
1a:68:d8:dc:c9:ec:d3:f1:17:33:ba:c7:b1:bd:d1:
1a:a0:6e:db:d8:69:31:93:b3:7b:4c:8b:5e:d7:97:
9c:10:a4:a9:ec:4e:48:2c:21:9b:9a:00:17:a9:4f:
de:89:0d:47:46:3b:99:d7:dc:95:ae:c0:2f:61:18:
97:9a:7e:4e:fe:44:76:c3:19:ed:f1:b9:33:a7:d5:
4a:1d:c2:53:83:20:71:e0:43:34:c6:ad:0c:dd:33:
5d:42:79:e1:49:a1:87:07:c1:13:44:e9:eb:82:25:
68:79:8e:ac:1e:f6:9a:f6:c8:25:30:81:d2:db:21:
4c:ed:c1:a4:50:2e:66:8c:6d:18:6b:e4:fe:a4:08:
3e:22:75:cb:73:46:a0:9e:d5:2a:96:a4:b0:67:62:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A5:DB:07:D5:38:16:76:C5:30:D8:80:4E:94:84:94:25:65:90:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2KXbB9U4FnbFMNiATpSElCVlkBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
71:b7:7e:ee:92:57:6b:6d:bd:7b:3f:02:da:9e:f4:5b:99:3c:
f1:4f:2a:c3:1b:7d:87:56:db:b3:dd:3e:89:51:14:e5:d1:37:
7c:29:7a:a8:88:f2:5e:af:61:a9:2a:b8:3d:09:2d:27:92:dd:
3d:da:a5:3c:a3:fc:f9:f8:ba:26:f6:34:d8:bb:ce:89:23:dd:
4f:5e:b9:ab:cb:31:4d:71:51:d1:e7:74:6b:b8:f3:d6:74:cb:
58:5e:18:f1:ef:c8:92:66:6e:6b:7a:ff:e4:97:dc:4b:45:5f:
46:a9:24:a7:c3:3a:19:a4:f4:fd:c7:70:c8:08:85:16:da:52:
1c:2b:e1:32:8c:55:eb:7a:81:9a:d7:c8:b9:81:5d:c4:d6:dc:
68:b2:b9:01:24:92:26:77:6d:e4:f0:ad:a0:7f:e4:5d:aa:c3:
bb:aa:22:6d:a8:42:16:16:86:79:65:4e:4d:57:ae:40:e3:cd:
df:a6:b0:04:90:46:16:d2:30:80:ef:d0:8b:d5:d6:c8:ca:49:
24:53:0f:1b:d4:0c:b5:62:e6:b5:93:ab:e1:72:68:29:ce:6a:
40:71:7b:fb:39:a4:66:70:88:4b:9d:c9:f3:44:58:71:8d:19:
47:0c:0e:6b:ac:ca:36:a9:0a:74:26:8c:74:b9:40:d6:a5:61:
ee:b3:77:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org