Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/85i2r5VZ3jYFMqozmVMDqjDhRME.roa
File: 85i2r5VZ3jYFMqozmVMDqjDhRME.roa (raw, json)
Hash identifier: ZfhegmUr9p4DoC12W3fsaQp0XkpVwrBy6gKVBOPK7Xg=
Subject key identifier: F3:98:B6:AF:95:59:DE:36:05:32:AA:33:99:53:03:AA:30:E1:44:C1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/85i2r5VZ3jYFMqozmVMDqjDhRME.roa
Signing time: Wed 01 Feb 2023 10:29:11 +0000
ROA not before: Wed 01 Feb 2023 10:29:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 113.196.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4327 (0x10e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:11 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F398B6AF9559DE360532AA33995303AA30E144C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f9:f4:75:75:9d:5d:79:2c:67:e7:61:82:a7:
12:49:ef:60:6a:d5:4b:b3:ca:57:01:65:b2:bf:e1:
eb:4d:3f:5a:ab:65:95:2a:dc:6c:a5:1b:62:1b:c7:
85:6a:b8:ca:b9:1b:6a:e5:d7:6a:e2:c5:95:2c:19:
7e:64:ed:4f:73:63:29:1c:00:21:37:d1:cd:9a:0e:
2d:c4:9e:21:26:2e:02:b4:ae:7a:8a:e3:bb:d6:90:
10:3f:03:8f:9f:4a:68:7a:40:4c:9f:23:27:6b:40:
c5:54:4f:66:14:7f:9c:e5:86:6b:13:16:4a:2c:d9:
73:f5:45:8c:fb:63:d0:ea:d5:72:f1:b9:ec:0d:24:
78:76:b3:4f:6b:17:03:37:94:e9:03:2b:03:58:3a:
94:ca:c8:7a:9c:1e:16:ca:de:0a:50:4b:7a:6a:ca:
34:02:16:9c:4c:2d:f5:4a:36:94:af:80:f2:4a:22:
72:01:20:d2:09:4d:58:58:b9:9b:cf:45:e0:4b:31:
f1:a3:5b:7e:25:bc:08:da:26:ac:72:c8:00:47:20:
ef:a5:7e:67:a0:20:1a:c2:70:62:48:21:cf:c5:8d:
a8:6b:bf:8d:59:cf:76:c5:f9:ce:de:bc:59:80:b5:
22:57:0d:ef:f6:b0:24:2f:b4:4b:94:24:0c:c6:56:
c0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:98:B6:AF:95:59:DE:36:05:32:AA:33:99:53:03:AA:30:E1:44:C1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/85i2r5VZ3jYFMqozmVMDqjDhRME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.39.0/24
Signature Algorithm: sha256WithRSAEncryption
84:52:0f:63:a8:28:dd:c9:a4:c1:ed:2c:e6:1a:10:e6:da:63:
4b:b9:cf:e5:c5:65:bc:95:cd:b3:b5:7e:84:85:e3:da:65:4e:
b5:45:b6:b3:23:ac:cc:bd:ee:df:81:46:92:92:ed:23:59:a9:
2a:00:a9:f6:ab:4e:26:70:4c:5b:49:eb:77:e2:8c:62:9c:2a:
95:63:62:49:96:c7:56:01:6c:48:13:af:f1:ca:ff:35:5c:cf:
09:07:65:ac:85:2e:5d:fc:ab:8a:84:33:99:ca:07:1f:e4:f0:
f3:04:2a:08:c2:3a:8e:f1:0a:37:f5:76:4f:14:08:27:ab:44:
b4:fa:54:77:ff:3e:3d:0a:ba:97:63:6a:c3:07:a6:1a:b7:1a:
cf:6a:85:02:7f:ed:da:1e:0a:08:61:53:8d:78:6c:ea:ab:5b:
30:30:40:18:5e:11:ea:10:57:e2:bb:2a:8a:dd:20:5c:cd:e2:
f4:ec:c1:fb:7c:f8:c1:e4:f8:02:23:73:da:02:3b:7f:e3:a6:
41:ad:a2:9b:58:68:63:d2:ea:83:35:f4:2f:4f:ba:67:e8:23:
c6:61:2d:a6:1c:88:ad:89:e5:33:78:20:bc:36:17:09:3e:4a:
1e:27:1e:f1:d2:44:70:3a:1a:f9:fc:71:06:b8:a6:ac:a4:4b:
dd:08:e8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org