Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2iGArsZxvnwlP5uuFb2W8VUErnU.roa
File: 2iGArsZxvnwlP5uuFb2W8VUErnU.roa (raw, json)
Hash identifier: NPsv8DuekLE2CQ3Pq3YkcSlODe2oX9ExQ9DRCAU72V0=
Subject key identifier: DA:21:80:AE:C6:71:BE:7C:25:3F:9B:AE:15:BD:96:F1:55:04:AE:75
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1069
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2iGArsZxvnwlP5uuFb2W8VUErnU.roa
Signing time: Wed 01 Feb 2023 10:28:32 +0000
ROA not before: Wed 01 Feb 2023 10:28:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4201 (0x1069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:32 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA2180AEC671BE7C253F9BAE15BD96F15504AE75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:58:46:a3:e0:52:48:c7:ba:17:ca:b5:d7:
a4:24:15:7b:5a:bd:a1:1d:94:b8:66:ae:92:bd:8c:
2a:7c:46:6d:0b:88:46:4d:24:a5:af:22:06:12:18:
d6:6f:ba:4a:e6:f8:e2:8f:1b:7d:ff:2d:06:7f:d7:
7a:db:de:21:b7:91:e5:d3:ff:4f:24:4a:59:fc:58:
41:77:a6:ca:a8:3a:70:6d:d5:a1:eb:eb:a6:30:7a:
96:99:11:72:2f:20:91:e4:d3:77:07:78:0d:e8:27:
96:da:71:a4:89:7a:c6:db:31:0d:c2:5b:e8:a7:04:
35:72:07:33:d1:57:de:59:51:7c:cd:c7:8b:ec:3a:
b6:81:84:31:2a:c1:6e:89:5e:87:0d:1b:26:21:ae:
52:0d:f0:82:eb:b3:61:88:e6:5f:e7:2a:57:57:33:
fa:a2:0a:6a:0c:e6:f4:a5:16:23:f3:48:3a:a9:40:
a9:0a:97:1f:9d:28:bd:de:12:57:eb:9e:b3:c9:cf:
a2:45:ba:10:a7:b1:b3:12:3a:de:29:75:15:42:20:
14:dd:53:a3:ad:79:10:28:fa:ef:be:a5:32:e5:50:
3f:fb:ba:31:46:6c:0b:3a:de:80:9a:f7:ae:95:51:
30:c9:ce:bc:51:35:6e:ed:1e:11:8d:36:8f:d9:15:
20:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:21:80:AE:C6:71:BE:7C:25:3F:9B:AE:15:BD:96:F1:55:04:AE:75
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2iGArsZxvnwlP5uuFb2W8VUErnU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
4a:a4:99:a6:5e:25:6b:5c:41:bf:1e:76:f9:93:22:29:f8:18:
a1:96:33:d0:b5:5b:d5:60:91:dd:5e:c8:c3:3b:54:fa:73:d1:
18:62:08:f2:f7:77:6e:7c:49:6c:f2:63:dd:e3:54:5c:25:8d:
44:0a:23:6e:d5:9d:04:8b:17:43:41:fc:72:4c:1c:db:05:3f:
0f:17:1f:b9:50:bc:04:d7:8e:fb:41:7f:37:81:9a:db:18:48:
6b:15:f0:ad:bd:0c:26:94:4b:92:01:17:7d:22:44:48:a7:68:
13:3f:a5:0e:d4:a2:1b:32:09:a0:dc:d1:82:4b:36:40:01:16:
4e:1f:e6:ce:44:ed:cb:c9:74:c5:88:f9:cd:37:37:8c:db:34:
76:fc:f7:8a:26:f9:30:99:e7:3a:f3:36:f9:d9:ce:24:05:d9:
06:6f:df:60:b5:0a:b2:d8:08:e4:1f:be:5f:ba:69:e5:4b:57:
a2:d3:77:d9:d2:a6:5c:b2:24:da:c6:32:ba:77:69:46:67:c8:
db:22:3c:71:3b:21:6c:da:41:d6:da:61:de:61:79:77:e9:81:
2d:e0:8a:15:42:b7:80:7b:40:dd:98:06:a8:54:bd:96:9c:46:
a4:bc:a2:48:5c:aa:bc:3a:3f:d0:15:53:32:bb:62:2c:49:a5:
39:6e:3a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org