Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6cohhCjIom1nKPZWocS4Raj6Dlc.roa
File: 6cohhCjIom1nKPZWocS4Raj6Dlc.roa (raw, json)
Hash identifier: Mfk+XW6Uucxh3RHxbTu9z3VIo211f/Gqw53dnLAcCnc=
Subject key identifier: E9:CA:21:84:28:C8:A2:6D:67:28:F6:56:A1:C4:B8:45:A8:FA:0E:57
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1158
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6cohhCjIom1nKPZWocS4Raj6Dlc.roa
Signing time: Thu 06 Apr 2023 06:47:26 +0000
ROA not before: Thu 06 Apr 2023 06:47:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 123.205.128.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4440 (0x1158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 6 06:47:26 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E9CA218428C8A26D6728F656A1C4B845A8FA0E57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:d5:72:42:1b:62:20:80:59:c1:b0:01:8b:
84:49:28:10:59:8e:00:4f:f8:89:72:d4:52:c0:0a:
3e:d7:d9:20:8f:88:2e:95:5f:a1:ad:cd:1c:ff:0c:
70:60:b0:bb:a7:b1:5c:ad:b2:21:4b:98:59:0d:74:
75:62:88:3f:ac:34:2c:53:86:5a:a1:fa:23:ff:a6:
2f:05:da:55:19:84:61:33:5a:f7:0b:e3:da:b7:80:
09:79:ff:7a:ba:d6:de:b4:3f:f6:d1:9e:17:41:c4:
ba:1c:54:8a:a5:98:0b:52:2d:b9:df:31:00:5e:6a:
8f:9d:b1:bd:da:87:0a:d4:5a:2f:f3:f7:74:78:6c:
91:b1:05:66:d9:76:11:10:8b:dd:46:70:c3:43:1b:
66:f1:4b:d6:c3:24:5c:bb:e0:35:f9:48:c2:55:2d:
13:1b:d6:e1:2c:6f:a9:fd:09:1e:36:cd:f5:4f:ce:
ea:b5:32:21:85:c6:1b:c4:c8:7a:c9:e5:c6:15:47:
22:19:4b:31:ca:02:b7:90:ac:f0:c6:04:39:83:fb:
2d:53:2c:fa:03:cd:67:78:7c:d7:96:32:ed:60:7b:
8e:d5:4e:5c:5d:7f:4e:0c:3b:78:d9:e0:c9:92:9e:
1b:4c:cd:4a:96:72:33:b2:88:39:74:61:86:ae:8d:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:CA:21:84:28:C8:A2:6D:67:28:F6:56:A1:C4:B8:45:A8:FA:0E:57
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6cohhCjIom1nKPZWocS4Raj6Dlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.128.0/20
Signature Algorithm: sha256WithRSAEncryption
63:ce:06:fd:b9:d4:bc:c5:41:9b:dd:84:96:72:63:07:ee:70:
9f:89:2a:f6:24:58:03:19:1a:5a:77:2f:92:50:1f:1f:0d:29:
e1:77:51:bc:81:d4:7c:8c:e6:82:04:13:d9:6f:67:65:51:91:
f0:c4:1d:02:d2:c6:19:9f:de:9e:b7:f0:0e:59:0a:64:c6:b6:
30:97:eb:7b:5b:17:4b:bc:b6:de:05:45:64:07:64:3e:dc:ef:
8e:b6:bd:8f:99:5a:63:ca:8f:9b:68:c2:24:01:58:77:a7:a8:
b7:73:81:49:23:ad:fb:98:fd:b8:fa:d2:6c:76:19:d9:6a:d2:
8e:65:f9:50:57:20:64:2e:ba:94:7f:1e:68:d2:de:4a:7e:ed:
fd:f7:4b:06:4f:0b:f7:ae:c9:24:e6:db:74:a7:97:36:e9:b1:
47:8f:ed:29:e4:10:5e:c0:2e:7e:a8:eb:92:6b:3d:32:95:b8:
6f:63:46:6f:25:24:1f:c8:09:52:c5:ce:e0:b0:a1:4d:52:b6:
6e:7a:4e:18:72:45:24:54:1a:bf:1e:92:3b:6d:f2:81:cb:0d:
7d:26:87:04:b2:40:ae:54:1f:05:9a:29:0c:09:e5:be:fd:02:
40:3e:5f:2f:91:6a:d0:0f:5c:1e:65:b2:f3:21:44:cd:be:fa:
6c:6c:60:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org