Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Dg3dsFqORN_DdogF7AN-OjsHX0.roa
File: 5Dg3dsFqORN_DdogF7AN-OjsHX0.roa (raw, json)
Hash identifier: RFwDTboZUWXT0Lzs+BjvNFxVKY6s4m/d6onLfRWbd94=
Subject key identifier: E4:38:37:76:C1:6A:39:13:7F:0D:DA:20:17:B0:0D:F8:E8:EC:1D:7D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Dg3dsFqORN_DdogF7AN-OjsHX0.roa
Signing time: Thu 15 Sep 2022 02:43:57 +0000
ROA not before: Thu 15 Sep 2022 02:43:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.146.64.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E4383776C16A39137F0DDA2017B00DF8E8EC1D7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b4:fa:e5:74:93:5f:a5:06:87:88:e1:4e:c7:
c7:b2:dc:74:ea:c2:94:b2:eb:82:25:cb:7d:ae:8d:
28:a2:d1:27:73:73:ea:b3:94:da:63:2f:1a:63:1d:
b5:68:40:f6:ad:78:42:c6:73:05:f2:7b:88:cb:ae:
1a:3e:f4:c7:9d:af:ce:93:d1:af:b7:fa:f8:db:05:
b3:d9:98:b9:26:6b:56:9e:72:a1:a2:b9:51:2e:1e:
f8:5d:7c:fa:89:7d:18:16:32:f3:65:f5:0c:7d:c9:
cb:66:fe:0d:68:7a:63:14:67:d5:62:d0:58:66:9d:
c1:5e:d0:93:5e:61:93:69:f0:85:4c:05:a8:79:7e:
ef:85:3b:6e:2a:17:6f:73:20:d8:90:40:5a:d0:0d:
a9:80:49:0b:ff:f2:b8:85:c4:ac:c8:22:61:19:7c:
8f:de:43:82:7c:85:b0:70:ed:e7:31:a4:be:68:5e:
ef:0e:8f:18:b5:3b:ec:01:84:5a:64:84:29:ee:ee:
1b:2f:b6:4e:c2:8f:b4:25:c3:44:8e:50:8e:44:38:
1e:8c:84:e0:14:50:1a:a6:f1:0d:b8:ee:40:ea:ca:
e1:1b:df:d0:13:9f:35:d5:f7:d1:6a:0f:10:bb:20:
e8:70:ef:f2:75:78:53:08:f4:a0:4f:8f:98:b9:69:
fa:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:38:37:76:C1:6A:39:13:7F:0D:DA:20:17:B0:0D:F8:E8:EC:1D:7D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Dg3dsFqORN_DdogF7AN-OjsHX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.64.0/19
Signature Algorithm: sha256WithRSAEncryption
bc:f9:cd:83:8e:39:71:97:de:a1:6a:f0:a8:77:41:a2:e7:bf:
68:60:84:24:8f:3a:53:57:20:29:a9:41:a7:d9:9c:0a:e5:20:
d3:a4:7f:61:a1:ef:2b:e0:db:65:72:68:cc:0b:ab:e8:46:d8:
28:6c:35:a7:ed:66:d1:9c:4d:05:df:2a:ea:0e:0b:bb:41:18:
a2:0b:1a:ff:e0:29:ad:1c:04:06:2a:9a:17:56:4c:ba:9d:f4:
dd:af:6f:b0:e0:06:68:2a:5f:9d:1a:e6:46:34:c9:e6:d4:9c:
e3:59:55:4c:ba:ef:3b:ca:cf:c7:46:33:92:fa:30:f9:cb:e5:
ae:bd:5c:b9:6f:de:dd:3b:80:09:6f:2b:f9:f5:9f:5a:c3:3e:
05:b5:50:22:29:8e:9c:22:1b:8d:2c:17:90:c7:db:c0:04:a1:
cd:96:81:3b:c6:74:12:bf:1c:85:e6:9f:55:04:09:c4:1d:d5:
96:0a:c5:04:0d:f3:de:78:3c:e9:b5:14:00:c8:d8:9d:4a:2a:
d0:26:82:d0:5d:23:65:7f:a5:fc:74:86:9b:95:1c:b9:4b:d4:
40:7f:33:66:e3:55:a3:49:b9:9f:e4:28:8a:f0:19:66:f6:dc:
06:ec:9d:77:61:f2:2f:45:66:15:b9:fc:1b:be:94:df:f3:9b:
35:cd:42:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org