Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2b2cMXT41RVA-7ieEmgTUin92jw.roa
File: 2b2cMXT41RVA-7ieEmgTUin92jw.roa (raw, json)
Hash identifier: mtYBjOTSvjAzIyFXGkeCyP304j2f7O+Iqgkl4/BsmKQ=
Subject key identifier: D9:BD:9C:31:74:F8:D5:15:40:FB:B8:9E:12:68:13:52:29:FD:DA:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10F2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2b2cMXT41RVA-7ieEmgTUin92jw.roa
Signing time: Wed 01 Feb 2023 10:29:14 +0000
ROA not before: Wed 01 Feb 2023 10:29:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.51.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4338 (0x10f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D9BD9C3174F8D51540FBB89E1268135229FDDA3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c2:28:9d:11:a6:61:55:1e:9f:25:54:3a:f1:
b5:a7:d8:38:33:8f:26:41:78:e8:bf:5c:ff:21:e5:
56:0a:47:df:86:0d:3e:d7:73:f6:c4:8b:f2:38:ba:
21:00:61:61:bc:01:2c:6d:d4:84:5d:53:8b:0a:73:
62:57:8f:2e:af:10:51:2c:1f:fc:f8:cc:7f:48:59:
14:96:9f:41:a7:82:8b:ac:06:c9:38:26:31:54:71:
9e:52:7f:46:d7:8e:c5:32:0c:6f:50:c1:a7:d7:28:
83:dd:f5:12:9c:aa:2a:98:9d:22:4a:48:ac:79:f4:
97:3f:df:5a:a4:ac:92:d5:f5:ca:14:ac:7f:e8:ff:
b3:6a:06:09:0f:09:c4:b4:77:b9:39:b5:02:56:7a:
b7:c1:1f:f1:56:62:fd:45:9c:95:58:43:3d:73:b1:
66:13:c3:91:17:62:56:38:35:21:a5:3d:36:08:b9:
af:bc:a6:44:a4:4f:45:e2:c5:3f:ce:a8:8a:64:9f:
c1:0f:b6:0e:c5:02:0a:3f:fc:eb:b6:c7:42:cf:fa:
a6:26:e3:7c:12:d1:64:78:99:b8:8d:00:68:27:37:
e0:75:91:64:34:44:b7:f2:d2:18:c6:62:b5:52:aa:
1a:1f:0d:c7:a5:2d:da:ea:63:dc:d3:40:06:11:1c:
c6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BD:9C:31:74:F8:D5:15:40:FB:B8:9E:12:68:13:52:29:FD:DA:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2b2cMXT41RVA-7ieEmgTUin92jw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.181.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3b:f6:c7:8c:b0:2f:b4:83:11:24:f8:69:0d:3b:85:6a:70:
62:87:23:8c:b6:dd:47:70:0a:fb:fb:5e:ab:9a:cb:16:c1:8c:
98:e6:f1:6a:f8:7d:00:cb:19:a4:d4:80:fa:8b:24:ff:41:68:
de:f3:a1:cc:69:40:d8:00:81:54:62:be:32:48:5e:1b:5c:1d:
f8:0e:ba:5b:eb:c9:b6:42:4e:06:38:f3:f9:89:4a:f6:79:dd:
b3:d9:39:41:b7:5c:e2:74:01:06:8b:7b:33:78:f3:96:21:59:
01:3b:f3:b6:5e:fd:2c:e9:88:36:8a:1c:9d:8e:78:af:59:2a:
48:33:cc:82:06:82:35:61:dc:b9:fb:e8:4e:2a:d3:28:fb:aa:
91:8e:0a:65:3e:57:bf:ff:5d:ef:2a:e4:79:cc:da:a8:a2:27:
a7:32:d5:b6:ed:f0:54:b0:4e:92:69:5e:61:fa:5e:2d:a5:45:
74:c3:fd:03:f8:50:44:0f:b3:f0:c9:0f:fa:ea:72:9e:52:a7:
39:59:34:50:08:80:2e:f0:38:1f:82:89:bb:c7:4f:0c:d8:d2:
01:34:84:00:60:98:0f:42:cf:96:73:9e:25:fe:d1:15:f4:85:
fd:dd:de:d0:95:8b:95:a4:15:31:9a:3d:9e:cd:a4:b2:0b:84:
b8:9f:f5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org