Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BF-8rr9Zq_sx8evwxc--H2jJypA.roa
File: BF-8rr9Zq_sx8evwxc--H2jJypA.roa (raw, json)
Hash identifier: D8MibkZCH281D1qZLEQzH8isZMEnRLfmRpR150la2l0=
Subject key identifier: 04:5F:BC:AE:BF:59:AB:FB:31:F1:EB:F0:C5:CF:BE:1F:68:C9:CA:90
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 104D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BF-8rr9Zq_sx8evwxc--H2jJypA.roa
Signing time: Wed 01 Feb 2023 10:28:23 +0000
ROA not before: Wed 01 Feb 2023 10:28:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 60.245.120.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4173 (0x104d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:23 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=045FBCAEBF59ABFB31F1EBF0C5CFBE1F68C9CA90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3e:54:0d:08:8c:e7:58:2e:ab:1d:90:3b:ee:
f7:df:f0:38:c2:ab:36:13:c0:19:d3:9b:d3:30:3f:
8e:5c:a7:04:d6:8c:03:1c:89:16:1c:4c:4d:fd:4b:
63:3b:14:d0:7b:8c:e4:f2:45:7f:26:71:e4:5b:d5:
5a:45:b4:5e:06:72:b3:da:da:23:34:16:c2:19:ff:
48:ff:77:8c:ba:8c:d8:30:8b:97:0a:fe:d1:d3:59:
34:62:08:d6:87:77:b9:c5:3f:78:ca:b1:4e:e4:49:
c7:bb:ab:06:b4:a2:d4:ed:62:6f:cf:47:df:ad:39:
ca:3d:18:8f:36:a4:3d:8d:21:62:51:66:5d:a0:65:
c2:a2:57:1b:df:71:28:97:1f:e0:0b:93:c2:6f:63:
25:a4:a9:fb:0e:93:dd:e6:38:cf:bc:b7:b6:8e:77:
91:fb:ee:8e:fe:15:bd:6b:b9:e1:ad:89:2f:ec:30:
30:4d:83:a3:d0:29:5f:db:24:a8:65:82:39:ea:13:
0b:f2:84:c4:0a:5b:da:47:5a:f4:98:54:d3:9d:2a:
3e:e6:d6:29:04:16:43:4f:54:49:74:9f:c6:fd:f3:
7c:26:87:1f:6a:95:1d:b4:51:77:26:2c:a1:c9:57:
87:ba:82:9f:96:a9:49:24:98:35:fa:c8:6c:d8:c2:
e0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5F:BC:AE:BF:59:AB:FB:31:F1:EB:F0:C5:CF:BE:1F:68:C9:CA:90
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BF-8rr9Zq_sx8evwxc--H2jJypA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.120.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:59:b1:fb:37:c8:d0:25:7d:9b:90:e3:1b:82:e1:b0:29:a6:
ed:2f:ba:e5:89:27:2e:aa:69:86:4a:46:f7:1f:6c:4f:58:b1:
56:07:37:cf:4e:b4:4b:15:3a:51:58:a2:1c:b9:db:0d:a9:4c:
cc:ed:5b:30:c7:5c:b5:b8:e5:6a:18:b1:21:12:20:05:49:95:
3f:d0:c0:c9:16:d9:db:2c:37:6d:11:10:36:16:9c:c5:8c:77:
91:0a:59:15:39:02:08:6b:9b:2c:fc:29:a1:71:3f:04:d4:20:
58:cf:6d:a6:2e:f0:4b:15:f3:98:70:70:06:6a:68:9e:ce:be:
7e:a2:6d:25:7f:7c:25:64:ae:0f:4c:f9:90:2c:0f:b5:ff:cc:
81:5f:2a:5c:e8:72:f8:60:df:b4:f9:ff:03:68:da:b4:c9:34:
b3:b9:af:ff:a1:eb:bb:fd:c3:f2:eb:5d:26:dc:2b:8b:b8:6a:
c3:72:25:75:df:88:f6:a7:73:62:df:b2:9c:27:d7:a0:1c:a5:
ec:eb:f6:e0:cf:29:39:3b:55:b2:e8:9c:60:3a:2c:56:32:46:
64:4f:18:a3:3b:00:9a:5e:fa:9e:75:71:ee:ac:11:d3:cc:17:
e5:9e:25:51:f7:49:c0:63:c1:a8:07:46:b0:bc:a4:42:67:39:
8a:4e:17:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org