Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4OvvO1m5ErAp6_KSxSSp0_67ug8.roa
File: 4OvvO1m5ErAp6_KSxSSp0_67ug8.roa (raw, json)
Hash identifier: CLAQHvoX4bqkdl+LkrExt9oQhgmshJ+BUR3sbBUFcDk=
Subject key identifier: E0:EB:EF:3B:59:B9:12:B0:29:EB:F2:92:C5:24:A9:D3:FE:BB:BA:0F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1066
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4OvvO1m5ErAp6_KSxSSp0_67ug8.roa
Signing time: Wed 01 Feb 2023 10:28:31 +0000
ROA not before: Wed 01 Feb 2023 10:28:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4198 (0x1066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E0EBEF3B59B912B029EBF292C524A9D3FEBBBA0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:be:fb:ef:96:fd:15:8b:7e:23:e8:8d:98:
c0:84:21:9f:93:ec:ee:38:5a:64:92:0d:c1:da:0b:
3b:09:6b:19:9c:da:a6:b7:ad:c1:bb:37:f9:10:1e:
8c:89:30:46:bc:38:13:2b:a3:f3:e6:54:36:b0:7d:
7a:af:a4:19:af:24:ff:a2:b7:67:f9:2a:ff:be:94:
84:b1:e8:95:f9:d6:e2:59:18:23:01:e8:67:94:c9:
d3:1f:f7:fe:fe:94:10:74:47:d0:a4:a3:a2:41:ad:
ba:e6:8c:4a:30:e5:d8:e5:5c:ac:a1:71:ff:1f:00:
59:88:bb:1c:9a:1a:54:db:ff:67:45:a6:16:c3:06:
64:9b:71:b5:eb:c7:d3:a2:0f:a3:bb:0c:19:2a:89:
61:3f:26:b0:9d:f9:02:a7:63:aa:cd:b7:7c:8f:2f:
a3:f6:21:13:c9:e6:10:f4:02:f9:7c:6e:84:e2:49:
68:f8:85:cd:97:cd:4f:43:c5:c0:fc:e2:a3:50:bc:
ae:46:dd:1f:97:4c:07:36:e0:9c:da:1a:84:56:11:
39:8c:a0:9b:3d:70:3a:7c:2f:5a:8f:2e:80:ad:c0:
5e:1e:c6:11:b0:e7:90:a8:8f:06:c3:12:4a:28:a1:
82:1c:29:03:19:57:db:e6:da:6d:25:db:b9:44:37:
bb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EB:EF:3B:59:B9:12:B0:29:EB:F2:92:C5:24:A9:D3:FE:BB:BA:0F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4OvvO1m5ErAp6_KSxSSp0_67ug8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.128.0/19
Signature Algorithm: sha256WithRSAEncryption
55:29:1a:49:43:a1:c2:b2:4e:7a:fb:87:11:82:1e:20:9c:b3:
5c:41:97:d8:78:5f:89:da:3f:f7:ed:be:b3:a7:8d:60:0d:a0:
bd:ca:39:c2:7f:8a:ff:f2:7c:e3:cf:a8:29:10:b1:da:21:f1:
f1:00:0e:75:98:70:0d:4a:12:91:1a:c1:87:53:e5:3f:65:f6:
0d:b0:aa:35:ec:07:ba:0b:29:e2:ef:15:7a:3b:0c:a8:3a:10:
c0:58:e8:12:e4:dc:1d:c2:f0:1c:6f:a2:ff:15:5f:05:d5:c3:
be:81:a7:ba:07:5e:fa:2d:8f:a4:51:9e:ad:47:05:12:7b:63:
5e:14:ba:44:ce:ac:8d:d7:4d:87:dc:44:e1:38:45:37:f9:ce:
64:4b:4a:c7:16:16:db:e0:3f:86:e2:97:0f:c5:4d:cd:91:28:
30:cd:0a:45:13:f0:ff:f5:b8:30:1a:c0:31:5a:05:75:1c:a0:
c4:4b:84:e9:25:9d:ae:e9:3b:75:4c:23:c9:18:10:e1:f4:ab:
5d:87:10:85:54:4a:1a:96:95:7c:36:51:3d:59:63:e3:25:5d:
24:c8:45:7e:d1:4b:31:b7:bd:1a:42:9c:f5:52:5f:86:43:b3:
ae:54:f2:23:16:07:09:b5:bb:15:23:9c:12:6a:99:34:fe:78:
74:5c:c6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org