Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7b9LZ2XOuOuJsuEp4HyO7-IGqcM.roa
File: 7b9LZ2XOuOuJsuEp4HyO7-IGqcM.roa (raw, json)
Hash identifier: 8oUxjhwonwsiAQvqBPf7M9Nx8CMxej04WreIgMt0Pa0=
Subject key identifier: ED:BF:4B:67:65:CE:B8:EB:89:B2:E1:29:E0:7C:8E:EF:E2:06:A9:C3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7b9LZ2XOuOuJsuEp4HyO7-IGqcM.roa
Signing time: Thu 15 Sep 2022 02:43:58 +0000
ROA not before: Thu 15 Sep 2022 02:43:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 60.245.96.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EDBF4B6765CEB8EB89B2E129E07C8EEFE206A9C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:13:04:c0:90:71:a2:52:e4:06:5c:fd:1b:4b:
15:3f:13:6a:88:54:02:cf:5d:fa:05:c5:80:26:a1:
2b:90:f7:2b:86:9a:21:32:ad:be:92:cb:85:c3:1d:
96:af:b5:53:fd:22:56:49:b9:73:e6:52:87:a5:70:
69:71:72:f1:0c:71:13:e2:86:07:0a:78:1d:a0:33:
5e:1d:2e:d0:5a:6e:e9:28:a3:c3:9d:4b:ad:03:7a:
70:9a:60:31:8c:ff:5f:af:f4:f4:7d:26:18:76:2f:
1c:48:3b:45:1d:4a:57:b1:b7:76:28:6f:1a:72:b7:
11:55:5c:90:8a:c1:db:f5:e9:05:ee:fc:d1:9e:84:
5b:67:ba:79:29:43:db:02:43:f1:66:00:d4:f7:34:
96:52:8b:b1:cc:bd:d0:03:b4:07:59:cb:ca:8f:ec:
6a:69:72:cb:5e:ee:28:5a:b6:ea:2f:fd:10:23:b2:
9c:81:0d:7b:68:82:7f:c0:71:5e:85:f2:62:a3:1e:
99:7b:e1:2a:27:bb:cc:f5:f9:c4:45:e2:1e:c8:e6:
58:24:1d:14:f4:71:20:0d:cc:15:7d:47:86:16:90:
ec:b5:31:80:46:e0:c1:6f:db:4b:98:61:e9:48:7d:
d1:82:31:0e:db:6c:16:d5:84:dc:9b:46:9f:f2:8b:
4c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:BF:4B:67:65:CE:B8:EB:89:B2:E1:29:E0:7C:8E:EF:E2:06:A9:C3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7b9LZ2XOuOuJsuEp4HyO7-IGqcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/20
Signature Algorithm: sha256WithRSAEncryption
85:3f:f8:b2:a7:cd:87:f3:27:41:27:1a:f0:da:5f:04:e5:8c:
74:98:82:64:4c:0f:f8:0f:89:91:85:2e:2a:7f:53:43:f8:ae:
df:dd:7e:d4:34:23:7c:72:3c:2d:7a:f0:81:2e:92:1c:04:30:
43:0c:a3:ff:39:f4:5e:10:c0:a5:d3:68:d1:d7:1c:35:0e:12:
ae:52:78:ff:17:22:36:7e:6b:92:63:4b:08:22:ff:79:4f:9e:
38:b7:eb:26:9e:57:6c:30:f8:e1:23:05:2a:2b:df:7b:b5:8f:
93:d4:53:64:d7:0d:d3:1c:ef:0f:eb:76:1a:67:d1:13:8e:0c:
61:ea:60:1d:28:99:8c:92:d4:46:5c:08:a6:ce:04:ef:a2:77:
01:2c:fe:51:99:8b:14:55:3f:75:44:3c:65:70:34:ed:3c:7e:
0e:e8:52:56:0a:58:2c:8b:d9:f7:b0:b0:26:d8:a5:d0:81:d8:
29:3f:55:79:89:3f:cb:d6:bd:28:32:94:60:73:7f:f1:81:7a:
f9:ea:55:07:29:ab:e2:ef:50:57:bc:b6:16:8a:1b:2a:a0:57:
d7:cb:2d:0b:81:2f:fe:80:06:13:a6:c6:41:12:7f:dc:63:19:
44:2d:fb:a3:9f:02:5d:bc:58:0c:b4:d8:7a:eb:a6:3b:13:05:
f3:39:59:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org