Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3oQa9FLUkaQp-O5M5J3vYqfeTsY.roa
File: 3oQa9FLUkaQp-O5M5J3vYqfeTsY.roa (raw, json)
Hash identifier: TqU7aE8wANx8o4zynsK0KMl+haoYrhHXK9VpdmuJ3zQ=
Subject key identifier: DE:84:1A:F4:52:D4:91:A4:29:F8:EE:4C:E4:9D:EF:62:A7:DE:4E:C6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1036
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3oQa9FLUkaQp-O5M5J3vYqfeTsY.roa
Signing time: Wed 01 Feb 2023 10:28:16 +0000
ROA not before: Wed 01 Feb 2023 10:28:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4150 (0x1036)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DE841AF452D491A429F8EE4CE49DEF62A7DE4EC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:59:b6:d7:69:b3:70:8d:77:63:ff:9d:39:09:
52:ae:e5:75:62:d6:ed:b1:c3:39:9c:2e:a0:c9:2a:
f4:18:68:ac:05:cd:4e:7e:c2:f3:df:7c:be:27:48:
03:5c:4d:30:e9:ee:b3:2c:ea:01:86:7d:3b:67:ca:
61:2c:08:15:04:51:f1:47:fd:30:d6:80:06:e3:f8:
2d:5b:3e:ed:ab:28:53:be:fd:ca:6d:48:5e:95:ac:
c4:b2:f9:74:2c:ca:8c:de:57:49:07:f0:0d:d0:8b:
af:e7:5f:49:be:3a:76:89:48:ef:1f:17:8c:c2:f6:
8f:21:21:3d:f2:ec:61:35:3a:48:01:25:aa:ee:6b:
7d:d8:5b:da:c6:6e:91:6d:b7:c3:23:1d:05:a0:5c:
41:48:8a:20:61:d3:98:6b:a1:1c:12:05:fb:1b:dc:
10:06:71:bc:2b:67:94:0c:0c:a1:c1:b5:6f:0d:c6:
96:ce:90:bf:e6:33:54:7c:b2:6d:70:63:bc:11:cd:
af:3a:5d:9a:bc:1a:09:33:3e:fa:26:e1:a9:02:a2:
4e:e8:6d:8f:e4:82:ba:9c:07:c9:4f:a7:76:c8:66:
6c:cc:20:a6:01:f1:18:a6:fa:51:68:4d:18:a3:be:
55:df:44:88:82:f3:9d:d0:10:59:b2:c3:1c:ff:19:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:84:1A:F4:52:D4:91:A4:29:F8:EE:4C:E4:9D:EF:62:A7:DE:4E:C6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3oQa9FLUkaQp-O5M5J3vYqfeTsY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:a3:29:7e:67:d2:70:34:67:8e:6e:f6:88:a2:ff:42:41:07:
ca:13:e0:11:90:a5:83:d9:3f:03:08:4f:6f:59:f2:1f:c5:77:
f6:ae:c5:d7:67:20:89:29:29:92:79:6d:13:ad:bb:ac:30:61:
eb:b8:ea:e8:24:d1:46:bf:c6:74:75:6e:79:a6:64:cb:d6:d2:
28:12:36:ce:4a:b4:33:f2:40:0b:92:ba:9e:07:b4:5e:26:04:
e6:14:ff:0f:b6:92:f4:d7:22:3a:17:1a:ac:25:26:c6:13:91:
24:5a:53:06:b1:c1:7a:1e:16:e0:c2:1a:13:52:4f:43:f3:5d:
02:39:01:72:75:dd:2b:62:93:0b:54:83:2f:41:6f:85:b3:cf:
9d:45:a4:e9:67:af:74:61:0f:68:2c:4b:8d:54:a3:5f:1b:ce:
27:e1:52:0f:89:b0:9a:ac:60:9f:d1:d0:36:58:47:03:ec:b7:
f6:85:77:52:39:3b:a1:63:65:c2:aa:aa:ee:95:fd:c0:45:d3:
7f:77:5f:f0:e2:24:9a:8c:72:de:b7:7d:b6:18:c1:de:06:2f:
de:8a:66:10:bb:15:b5:80:0a:01:c8:16:d7:3b:6a:43:c9:d6:
e5:e8:e2:61:d3:06:f6:51:7c:da:59:ee:23:fe:75:85:53:bd:
7e:f0:a1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org