Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6sdSE9SYgvnNEUlNqTkqcjHG8ko.roa
File: 6sdSE9SYgvnNEUlNqTkqcjHG8ko.roa (raw, json)
Hash identifier: iOfU5cgMZkPgNgYaFEgV9yX08q/Ok3tGZeCtj6Q8uD4=
Subject key identifier: EA:C7:52:13:D4:98:82:F9:CD:11:49:4D:A9:39:2A:72:31:C6:F2:4A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10FA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6sdSE9SYgvnNEUlNqTkqcjHG8ko.roa
Signing time: Wed 01 Feb 2023 10:29:19 +0000
ROA not before: Wed 01 Feb 2023 10:29:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4346 (0x10fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EAC75213D49882F9CD11494DA9392A7231C6F24A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:be:61:1c:01:38:37:d4:2b:06:eb:ce:76:2c:
3c:86:4f:09:b5:5a:b4:a7:dc:ed:5e:79:e4:bb:3a:
55:8c:91:10:69:d9:76:68:52:25:2b:2d:39:91:32:
88:4a:74:b3:e1:8e:ca:f5:40:85:2c:3b:96:80:f7:
85:65:11:ac:fc:ce:f9:d3:8c:e1:0f:49:5e:eb:bc:
e6:cd:0a:12:d7:e0:fb:bf:12:fa:f3:2c:d2:54:35:
4f:a7:98:c8:40:e6:f1:f9:c2:9e:2f:5f:e4:75:73:
c0:48:39:58:c7:8b:0e:be:5d:a9:63:75:a0:48:39:
bf:b6:fb:a5:ae:97:af:69:51:8d:68:d5:46:80:a9:
48:bb:e8:e1:40:bf:eb:78:5d:99:82:a3:c1:a3:16:
d3:dd:22:16:c4:ae:ff:55:00:bf:37:0e:eb:a9:89:
6d:ed:3f:7d:b8:4a:d7:39:31:89:a0:d9:d7:91:a9:
14:23:36:39:39:c0:52:4d:1e:2c:60:4e:ec:e2:e2:
2f:59:da:21:d6:9d:bf:72:ef:16:44:43:86:4c:2f:
a1:c0:df:9b:5f:e8:03:69:87:a4:48:35:8f:e8:f0:
ec:0b:2f:23:fe:79:3c:c8:99:65:c9:cb:39:e9:8b:
23:c7:c9:9e:79:c1:16:de:1c:ab:31:ff:c1:ec:4c:
23:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C7:52:13:D4:98:82:F9:CD:11:49:4D:A9:39:2A:72:31:C6:F2:4A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6sdSE9SYgvnNEUlNqTkqcjHG8ko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
83:e7:c5:23:c4:fb:44:53:ce:83:3b:f6:84:2e:0d:77:87:5a:
f7:11:4f:7b:80:58:92:f9:22:9d:23:68:53:c9:96:da:f0:29:
af:46:db:6a:93:b5:05:61:a3:5e:11:58:f5:78:b7:61:99:3c:
07:e5:93:66:0d:f7:01:a3:95:d8:26:24:fa:1c:4a:e6:cb:a6:
4c:b2:d3:a1:5d:3f:a6:01:a6:08:a4:7a:66:cb:d4:ba:38:df:
e7:0a:d2:4a:e2:54:2a:57:33:dd:c4:7b:bd:93:82:92:f4:bc:
0c:af:93:67:d5:b4:82:07:9b:23:17:c0:e2:4c:12:76:cf:14:
ea:ee:5b:ee:7c:3e:0f:c0:bb:35:01:26:db:81:0f:8d:57:d8:
8b:a3:f2:9e:c6:03:f9:6b:c8:cb:fa:4d:cc:0f:8f:79:01:e4:
ce:c0:e0:82:1c:69:44:65:53:50:3a:ea:ef:56:00:ce:27:a1:
d9:17:46:6a:e8:90:80:5b:cf:92:a7:db:bb:6d:52:2c:a5:ff:
ae:39:3e:2f:08:9f:ee:3c:ab:a5:a3:8d:e3:61:6d:7d:7a:c0:
30:6c:34:77:dc:70:be:18:08:95:0c:a8:84:27:0a:b0:8c:53:
e0:02:11:20:56:d3:03:ac:7b:94:dc:56:b1:16:8b:80:17:75:
32:e8:bf:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org