Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3xqoqycFcaQ1EDbpptzN8x7vuEE.roa
File: 3xqoqycFcaQ1EDbpptzN8x7vuEE.roa (raw, json)
Hash identifier: lXmcqm43ftJXOgo13/OwiN81DXEM89zWVY3LekeLUyI=
Subject key identifier: DF:1A:A8:AB:27:05:71:A4:35:10:36:E9:A6:DC:CD:F3:1E:EF:B8:41
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1076
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3xqoqycFcaQ1EDbpptzN8x7vuEE.roa
Signing time: Wed 01 Feb 2023 10:28:35 +0000
ROA not before: Wed 01 Feb 2023 10:28:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 112.105.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4214 (0x1076)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF1AA8AB270571A4351036E9A6DCCDF31EEFB841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:8c:e1:13:c6:36:a3:d2:e8:a5:75:99:c1:
88:f7:92:b3:b7:d4:b1:bc:c9:6e:1f:5d:18:51:c2:
a0:d7:cf:47:9e:88:47:a9:43:14:1d:c0:a9:0a:fd:
d8:10:ad:54:90:7f:e1:c5:51:29:e4:d0:e7:02:17:
9c:f5:92:07:c8:64:70:56:cf:a8:c0:82:f2:93:5a:
ab:26:11:01:b0:3d:bb:8f:89:a5:ac:d0:0a:e6:af:
3f:40:f3:99:57:bf:26:4a:5d:d0:a7:6c:72:32:82:
27:08:a3:4d:dc:c0:ae:a0:14:ab:3b:70:07:0a:04:
db:21:a4:e2:9c:b9:7a:0a:9a:14:36:46:0f:ea:9f:
8b:07:f4:a1:b3:32:22:1a:72:d1:e3:2c:ca:91:fb:
62:24:b2:f2:3c:c4:2f:f4:4d:cd:6f:73:c1:34:7a:
42:80:9d:df:bc:ee:56:02:00:5b:2d:09:12:b2:57:
c8:6a:71:6a:a1:ef:b3:86:aa:20:17:2d:7c:bf:04:
14:34:59:bc:1f:2d:07:85:7a:ba:0c:f7:d8:db:26:
bf:fe:69:cb:c9:be:e3:67:a4:f5:17:ed:be:10:a8:
ec:37:94:4f:c9:bc:3e:ba:4c:98:88:41:38:50:3f:
d8:0b:60:1c:2c:4c:ee:d4:0b:67:3c:ec:8a:4e:b2:
e8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1A:A8:AB:27:05:71:A4:35:10:36:E9:A6:DC:CD:F3:1E:EF:B8:41
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3xqoqycFcaQ1EDbpptzN8x7vuEE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b6:41:69:83:01:9d:c4:33:68:39:96:eb:f1:50:0f:69:0b:81:
85:4a:8c:f9:03:2a:49:6f:c8:5c:d4:df:11:8e:b4:0b:25:9a:
cd:52:6f:e7:9d:8f:0a:bb:27:b6:5b:70:7e:46:72:af:32:68:
b9:fd:7c:0d:64:ff:f3:2d:64:28:b0:73:bf:50:0c:43:c2:72:
0c:b9:4d:c1:e9:e4:fe:09:56:cc:cd:d6:23:b1:40:4f:ba:fe:
03:43:0c:1b:90:e8:58:09:5d:d1:76:cf:14:5f:20:c1:1d:19:
d7:f3:2e:54:af:43:71:6d:8a:f8:72:8d:a2:09:ae:f4:b4:01:
41:62:07:18:a7:d3:45:54:46:e7:9b:d9:16:5f:bf:a8:96:dd:
e4:2b:88:a7:cf:9b:e3:85:a6:02:a5:73:93:9b:f3:54:c5:80:
d7:ed:67:d5:bb:65:f5:b2:75:5c:83:e4:90:7e:4e:39:57:50:
1e:27:f8:cb:be:ed:22:8b:20:25:e9:33:31:2e:72:7d:95:8b:
14:58:21:9e:c7:87:ed:cf:c9:30:7b:70:f2:79:8e:d8:f0:55:
fc:3f:06:05:83:ac:89:81:0a:b1:2f:8d:a1:a1:08:96:a2:b8:
17:f4:7a:17:64:52:b3:2f:c9:d1:00:d7:57:45:ba:74:c3:bf:
ea:f9:e5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org