Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7DIbwLMZV7Vlq1E8oHhCvHKdADg.roa
File: 7DIbwLMZV7Vlq1E8oHhCvHKdADg.roa (raw, json)
Hash identifier: pCB19m2TW2trt4j78xZco0EmS0xpSvV49tcCASUurW8=
Subject key identifier: EC:32:1B:C0:B3:19:57:B5:65:AB:51:3C:A0:78:42:BC:72:9D:00:38
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7DIbwLMZV7Vlq1E8oHhCvHKdADg.roa
Signing time: Thu 15 Sep 2022 02:43:05 +0000
ROA not before: Thu 15 Sep 2022 02:43:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EC321BC0B31957B565AB513CA07842BC729D0038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:59:ec:61:51:bb:fc:6d:92:56:81:08:9b:66:
7b:a6:93:c1:af:91:25:ec:82:9d:0f:c6:cf:ed:b3:
a1:89:ea:14:f0:6a:d6:6e:41:0f:8b:a7:d9:21:9b:
f4:26:a0:f8:58:f4:ce:61:80:be:b9:ab:38:81:b2:
03:cd:c5:a9:21:93:ef:3e:94:dc:7f:3e:84:a9:f4:
a2:af:a1:cd:fd:00:c5:22:79:f8:fa:ce:57:32:ec:
40:32:30:4f:89:72:eb:a2:a6:de:ee:cc:f8:96:f9:
3f:70:0a:10:7d:9c:5d:be:d0:2c:95:30:81:0e:1e:
c7:a6:74:bc:5b:7e:39:1a:12:b4:93:38:e9:fb:81:
ba:d9:9b:b2:91:db:ca:2f:9c:4b:f9:69:51:da:fd:
58:76:64:cb:5f:55:4c:fb:30:14:b8:40:30:a4:d5:
ca:14:fc:3a:eb:b7:36:13:ac:b6:96:db:44:7f:77:
08:c2:c1:b3:22:aa:b1:39:e4:b9:f1:a1:a8:02:ef:
53:b2:98:d6:77:aa:6e:c1:68:6f:5b:db:03:25:02:
cd:17:4c:45:b5:ef:87:50:bd:fc:f7:27:31:60:9e:
35:43:fb:f3:e0:2a:35:ad:6d:2c:63:81:b0:4b:bd:
de:c9:90:96:e1:3d:b1:0f:cc:8c:2a:f6:46:3b:3c:
d2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:32:1B:C0:B3:19:57:B5:65:AB:51:3C:A0:78:42:BC:72:9D:00:38
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7DIbwLMZV7Vlq1E8oHhCvHKdADg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
29:ab:e2:3e:e5:4c:27:4c:e2:d0:c5:60:d9:9d:75:28:5e:84:
b2:7e:7e:f2:82:ae:a6:72:cf:c3:ca:67:3e:49:db:6e:1d:f6:
f4:fd:e2:02:16:53:53:f7:f6:7d:de:cb:b2:a9:27:3a:58:6c:
87:e5:e8:2f:8c:ee:90:aa:2a:e4:ab:f2:ff:f2:38:68:83:18:
57:94:5d:70:64:05:fb:2d:0a:b5:f9:6a:02:35:b3:85:13:fe:
1c:6d:4b:6a:a2:36:7c:1d:c1:3e:02:a9:86:38:c0:7e:32:2b:
9e:54:18:a9:4f:85:c2:2f:a1:73:7b:e3:7a:82:d4:d7:69:0c:
db:83:b3:21:90:a9:2a:7d:ab:14:1e:85:85:70:97:09:d2:e8:
66:dc:1e:40:6c:73:f5:50:e6:a2:77:74:4b:9d:a8:59:f8:83:
ed:83:31:88:b5:ad:c6:19:9c:e7:61:bb:8b:e8:3d:6f:9c:2b:
62:a1:0f:53:9b:d1:2a:38:64:98:cd:8d:14:bd:7d:be:57:43:
ba:2e:b2:6c:28:40:6b:d4:a5:6e:af:19:13:3f:ec:9c:0e:a3:
5f:9b:7a:f5:54:ee:9d:4e:3d:e2:8b:09:34:20:e1:e2:8c:6d:
f6:a0:98:02:e1:c3:83:54:84:ef:29:4c:98:a4:d8:91:b7:36:
93:a2:5b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org