Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4q--Ogw_FkwU3dWgOgPn_dTwd5Y.roa
File: 4q--Ogw_FkwU3dWgOgPn_dTwd5Y.roa (raw, json)
Hash identifier: yngkQXQA4wmfTCSf1lvsKq0oIaC2NAgp1ttJE13SJTI=
Subject key identifier: E2:AF:BE:3A:0C:3F:16:4C:14:DD:D5:A0:3A:03:E7:FD:D4:F0:77:96
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4q--Ogw_FkwU3dWgOgPn_dTwd5Y.roa
Signing time: Thu 15 Sep 2022 02:43:25 +0000
ROA not before: Thu 15 Sep 2022 02:43:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E2AFBE3A0C3F164C14DDD5A03A03E7FDD4F07796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:96:d2:a8:b1:51:55:6a:cb:69:c1:82:df:a4:
ad:4b:8d:a7:ba:c9:25:15:78:c9:51:96:b2:ea:b7:
d7:49:9d:bb:2b:1d:90:75:95:93:16:5c:34:1a:43:
26:19:7a:25:a7:f5:52:bf:71:3b:2a:f7:e7:fb:27:
a8:06:d6:6f:8f:27:27:a2:c8:b3:89:34:ef:cf:0a:
7b:4e:de:68:41:a9:3e:c2:27:04:00:d7:9f:f6:68:
cd:09:90:54:e1:87:cd:9e:f5:7a:51:08:8c:b0:bc:
47:d9:aa:90:7b:6f:af:27:05:45:d5:22:f2:ea:9a:
7b:7b:08:55:cd:d0:f2:49:a2:f8:7b:15:3b:ff:90:
40:3b:da:cb:0d:33:73:7d:0a:e1:2b:4e:0d:2c:32:
4e:85:7b:b0:36:d6:4b:bd:03:09:fc:87:89:df:e4:
2e:54:b3:42:14:c5:ba:02:62:7c:21:8e:16:26:76:
e6:72:ef:98:51:8d:f2:e7:82:36:3d:a9:28:a8:ae:
76:c7:47:d6:34:50:9a:12:53:e2:10:72:46:d6:ee:
be:1d:0b:27:22:21:6d:12:95:3a:07:3f:da:20:4c:
09:3d:d3:7c:fb:eb:c2:a2:4a:ea:9e:d6:a0:f3:41:
b5:6a:18:95:3b:37:dd:e5:5c:72:5e:d6:bf:25:f3:
34:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:AF:BE:3A:0C:3F:16:4C:14:DD:D5:A0:3A:03:E7:FD:D4:F0:77:96
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4q--Ogw_FkwU3dWgOgPn_dTwd5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
07:91:25:49:e6:3a:f7:fa:9e:6d:3e:9a:11:d6:83:31:7e:3c:
ed:f4:9e:df:71:42:e9:af:21:5e:f0:9f:cb:87:f9:bf:42:51:
1e:ec:aa:16:7d:25:fd:97:d2:31:cd:b6:38:7f:be:8d:bf:2d:
15:d6:3a:31:18:aa:ca:a9:c1:80:70:9d:49:4f:fa:21:6d:0e:
a7:c9:f4:84:6b:6b:9b:ab:85:84:b4:43:d1:66:90:b9:28:94:
ec:a9:dd:6c:af:57:2e:93:24:4c:80:ca:d7:9e:23:68:ab:4f:
b6:ea:10:8a:38:cc:c9:b6:e8:ec:3b:15:fd:c0:e0:2a:a2:4f:
ad:87:75:d1:d2:5d:f7:5f:3b:13:3d:49:ee:43:cc:e5:90:b6:
49:3f:04:53:32:76:12:35:e0:63:88:c5:3a:51:eb:a7:d6:ae:
fa:03:3d:c7:10:fc:24:25:94:4d:f3:a4:6e:64:2f:a2:00:d3:
44:a1:75:98:8f:ff:97:46:f1:b2:bb:8c:b8:56:50:af:cd:af:
74:1a:4d:ee:bb:e4:af:f8:f3:36:76:50:68:b2:bf:7e:0d:8c:
23:c8:db:53:aa:fb:de:7d:7d:f1:6a:03:9d:7b:92:63:72:da:
f4:fa:11:38:cd:2f:5a:31:03:f2:e4:d3:b4:64:3e:ba:25:9e:
da:22:7d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org