Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4cBU0bDVQGRlD_vThaomwgLRmAA.roa
File: 4cBU0bDVQGRlD_vThaomwgLRmAA.roa (raw, json)
Hash identifier: 96Km+boAhxKxtt6JwR75YtD/XWwx66tInIXYlr/Vr0I=
Subject key identifier: E1:C0:54:D1:B0:D5:40:64:65:0F:FB:D3:85:AA:26:C2:02:D1:98:00
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4cBU0bDVQGRlD_vThaomwgLRmAA.roa
Signing time: Thu 15 Sep 2022 02:42:55 +0000
ROA not before: Thu 15 Sep 2022 02:42:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E1C054D1B0D54064650FFBD385AA26C202D19800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:3f:85:2a:4a:d7:e5:5e:dd:4e:d9:bd:ec:
03:1b:65:0f:d6:59:95:b4:ae:24:9e:84:25:9c:f2:
73:17:92:60:62:4c:d9:8e:39:51:5d:be:9b:a1:26:
16:50:6f:07:64:05:c1:a6:ea:61:af:5a:f4:b0:11:
4c:f1:4e:52:1e:41:be:f4:1e:be:66:a6:f8:3c:ff:
17:a2:6f:e7:11:a5:a8:98:8a:3e:27:58:1b:5a:2f:
30:74:8b:07:69:ba:fd:b2:24:b3:0d:d1:91:24:61:
54:f5:9b:54:d0:62:76:f9:ea:17:e3:65:55:bf:39:
b3:9a:46:f4:57:17:00:9a:66:1e:17:39:c3:3a:bf:
96:b1:7e:06:5a:c0:86:e4:91:91:d4:44:9d:9f:64:
4a:bb:b8:9d:3b:63:64:b1:c2:f3:e5:33:89:7b:a1:
4c:ea:bc:e3:ee:29:24:40:d2:f9:5c:dd:c8:bf:c9:
d9:77:49:44:1f:e8:6a:a3:fa:5d:c2:b4:f4:6b:89:
02:bf:30:ac:e4:cd:cf:94:d1:09:d4:f7:d8:d2:24:
ba:85:21:5d:ba:85:f7:90:0a:72:63:4c:1f:9c:2d:
d8:82:89:a9:af:d9:86:4d:a4:10:8a:04:24:d6:e1:
b6:6b:3b:01:57:a2:74:8f:07:3f:d0:8c:62:ea:c2:
8c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C0:54:D1:B0:D5:40:64:65:0F:FB:D3:85:AA:26:C2:02:D1:98:00
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4cBU0bDVQGRlD_vThaomwgLRmAA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
26:d4:f4:bd:13:f6:b8:1b:d9:26:4f:00:f5:f0:88:00:01:e9:
4f:22:e3:23:11:d1:69:b5:22:56:82:2c:2e:a2:26:31:4c:a8:
e4:72:c8:8f:1f:fa:e1:29:11:3e:12:87:72:ea:ea:4e:8a:6d:
b5:3d:c0:27:ab:d1:ab:c9:30:8e:28:17:e9:d9:ba:d6:60:09:
1d:a6:ba:6e:28:f1:99:43:36:a6:ea:dc:6d:b6:67:c6:8f:af:
4b:91:fe:4b:03:da:40:03:f2:f1:d6:08:23:36:c9:dd:10:91:
88:7a:fd:5b:dc:d9:55:2c:93:82:d1:7f:ce:94:20:9f:bd:b8:
c0:b1:54:dc:7d:c2:b5:b3:33:a1:7e:d3:50:f8:d5:15:1d:83:
0e:1e:01:31:a2:4b:b4:40:61:4f:e8:f4:c5:74:5b:c5:9e:48:
57:e5:c2:91:fe:df:87:d9:99:2a:15:2c:3f:f7:18:7c:8d:d1:
c8:df:11:53:5d:8b:3d:ba:d7:2b:d0:78:15:c2:9d:de:90:fc:
1a:86:93:20:98:c1:09:4e:4a:e8:38:8b:88:e0:b9:cc:64:25:
07:5a:5a:8c:7c:41:35:d4:2b:fd:d0:75:01:65:bc:5a:35:e2:
4d:5d:60:9d:e0:f9:d6:f7:66:4b:b7:48:0d:6a:4c:82:17:c9:
9f:68:45:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org