Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Yl6zi9xbfxhtvxLuhQP39q5r9Q.roa
File: 2Yl6zi9xbfxhtvxLuhQP39q5r9Q.roa (raw, json)
Hash identifier: hnYiCNqrLDs5SokPfQlVb8N+r5RZe9Ox5CiUchMTxfI=
Subject key identifier: D9:89:7A:CE:2F:71:6D:FC:61:B6:FC:4B:BA:14:0F:DF:DA:B9:AF:D4
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Yl6zi9xbfxhtvxLuhQP39q5r9Q.roa
Signing time: Thu 15 Sep 2022 02:43:47 +0000
ROA not before: Thu 15 Sep 2022 02:43:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D9897ACE2F716DFC61B6FC4BBA140FDFDAB9AFD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:cc:9a:34:00:62:27:ee:56:80:f4:49:61:
30:16:38:a4:a8:8e:e0:12:cc:2b:a5:05:a8:4a:58:
61:87:a3:9c:d7:c2:bf:b1:e9:5a:d2:98:36:42:58:
ab:7f:41:50:3f:9d:ac:6b:b8:90:ce:ee:d8:23:8b:
9e:da:68:98:6f:7c:55:a9:8f:ae:c1:3b:3a:64:1b:
2b:54:1b:32:fb:34:75:d8:3c:bc:f3:82:a5:6b:84:
6b:c8:72:1c:78:b2:24:e9:17:38:44:34:06:85:a0:
42:e8:98:0e:b5:63:29:6f:1e:8d:b8:e7:0b:93:33:
25:de:bb:da:aa:19:57:9d:d3:43:49:84:17:93:79:
e4:c6:d0:93:b7:ab:e9:82:e9:02:24:7b:a8:85:dc:
06:e7:70:49:66:09:4f:99:75:40:0d:95:55:f6:ac:
ca:eb:31:99:08:76:91:72:ee:37:cd:59:84:8c:5a:
bb:84:15:c1:03:94:1d:76:07:fd:71:f7:c1:65:8c:
4a:6c:a2:58:38:17:b3:87:95:95:29:cc:9b:01:f7:
a4:45:07:49:22:e7:7f:71:cf:a4:d4:c3:66:a9:d2:
0a:8c:9a:b0:b1:2e:41:f8:89:63:f0:fa:28:1f:7a:
91:b5:02:f1:62:c2:7b:fd:73:50:42:e4:4b:6d:3c:
27:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:89:7A:CE:2F:71:6D:FC:61:B6:FC:4B:BA:14:0F:DF:DA:B9:AF:D4
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Yl6zi9xbfxhtvxLuhQP39q5r9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
61:69:94:47:c3:ad:85:e4:82:50:2d:15:ad:09:87:ae:19:cd:
0a:47:fd:02:82:01:68:41:22:f8:7e:4c:07:b0:2c:45:94:63:
bc:ce:98:26:7a:25:f2:d4:06:2d:08:67:da:cd:3b:48:55:83:
38:4e:20:12:eb:69:16:76:68:33:6a:4f:60:80:3e:12:40:0d:
e5:aa:5b:0c:b1:f2:fd:50:5c:50:b5:6f:72:b0:25:a6:82:87:
84:bb:3c:9e:fc:89:09:79:e8:2c:4f:4f:b0:12:19:4a:cd:dd:
47:10:2e:e9:1d:5a:03:04:82:90:e9:84:2c:57:40:f0:ae:ac:
06:7b:fc:d3:7b:aa:ef:bc:73:ca:1a:db:74:09:0e:12:92:45:
c8:ac:13:14:ab:96:68:6c:21:0b:81:f9:7e:45:3a:0e:a9:48:
aa:c3:c2:e0:48:4d:30:1e:35:1c:cc:93:73:d4:d6:60:5d:f8:
2e:50:0c:74:26:94:2d:be:59:5a:95:15:9c:8c:ca:74:d5:f3:
45:2c:6d:b4:99:a9:d8:e8:ef:89:17:7c:aa:72:0d:52:9c:ff:
28:e2:e4:6e:aa:04:85:fc:9c:fc:1c:48:af:56:4e:57:5f:51:
96:cc:0c:3e:f5:0f:ae:f5:30:03:86:d8:b2:46:b2:3d:4d:3f:
96:e3:45:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org