Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dx1ofD3r2FdFlsBaCZi0HAwS8VA.roa
File: Dx1ofD3r2FdFlsBaCZi0HAwS8VA.roa (raw, json)
Hash identifier: 3WWcspkWptR/JUi+7Sbd63TFB5d3pli0k52ETYxYwco=
Subject key identifier: 0F:1D:68:7C:3D:EB:D8:57:45:96:C0:5A:09:98:B4:1C:0C:12:F1:50
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 114E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dx1ofD3r2FdFlsBaCZi0HAwS8VA.roa
Signing time: Thu 06 Apr 2023 06:35:39 +0000
ROA not before: Thu 06 Apr 2023 06:35:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 106.105.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4430 (0x114e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 6 06:35:39 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0F1D687C3DEBD8574596C05A0998B41C0C12F150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1e:0d:22:ee:c0:e2:33:97:ae:ca:34:04:d7:
0b:03:20:2e:b4:52:4b:fb:a2:8b:7a:24:18:ca:c2:
78:27:ae:2b:de:5d:cf:b7:f4:a8:59:20:01:0c:74:
50:53:ad:8f:da:d2:ae:09:4f:e9:67:09:06:c0:1d:
eb:09:88:e0:ec:6f:63:26:11:9e:ef:10:94:54:5c:
82:10:69:04:12:aa:34:2b:4e:72:80:14:9f:b1:3c:
67:5a:3a:95:fa:09:38:82:a6:a6:43:6c:9f:07:39:
bc:fe:65:4e:de:f4:1b:cb:f2:fd:05:a3:91:1d:c7:
4e:29:01:8b:49:e1:72:a3:48:f4:3e:f7:a7:25:2c:
3b:cf:81:00:27:4f:fb:d2:23:6b:a7:3e:6a:38:c4:
cd:9a:b5:bb:1c:7a:a5:9d:25:b4:11:d8:6a:e1:30:
f2:b5:ec:0d:9e:13:97:b1:70:03:86:68:70:86:cf:
7a:6d:56:31:3b:b7:ca:ab:7b:8e:21:c4:5c:c1:18:
e5:9c:dd:0a:d6:8e:b7:af:b8:0e:83:03:a1:37:3e:
1b:38:b1:8d:9f:f2:cf:36:34:95:bc:4f:9c:e6:f5:
57:89:55:f7:85:a6:1a:8a:0e:d5:b8:5e:38:59:08:
49:90:d2:2c:3a:2d:15:60:e7:ec:4f:0f:dc:8e:4b:
ca:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1D:68:7C:3D:EB:D8:57:45:96:C0:5A:09:98:B4:1C:0C:12:F1:50
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dx1ofD3r2FdFlsBaCZi0HAwS8VA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8c:e2:a2:7e:fb:08:8a:1e:d3:1c:89:ae:a2:2a:04:8b:3f:0f:
b6:42:23:1b:20:7a:06:2b:37:1f:01:05:5c:37:40:08:18:49:
17:c7:43:67:0b:f7:ac:14:c7:3f:11:6d:79:6d:ba:3a:d0:d9:
2f:81:5a:0d:b3:cc:88:70:64:f8:12:a8:94:da:74:de:49:d4:
ab:5a:7e:8e:1a:75:88:ce:ad:2e:e1:b1:78:99:a3:02:29:e8:
0f:67:26:c9:db:7e:d4:6b:ee:55:66:11:78:09:d3:76:d6:a7:
6b:f9:74:40:94:02:dd:b9:5d:e6:f0:a7:d4:4a:4e:be:e4:96:
9c:7f:8a:c8:f2:5d:96:99:30:8c:0b:19:20:66:8f:a0:b1:75:
c8:7d:78:e7:4f:2a:fb:b0:1f:1f:4c:dd:64:58:29:ef:5d:b8:
5f:9c:90:55:26:90:b1:55:e7:69:54:74:9b:e4:a9:a8:53:61:
05:e5:b2:6e:93:6d:66:56:f4:ed:0e:f2:56:8f:c3:e1:1f:8a:
92:66:e8:96:e0:1d:81:bd:50:32:44:71:c6:b6:b7:80:c7:c6:
95:a7:6c:39:57:39:68:ed:ca:cd:a0:ed:d0:29:6e:c4:86:82:
ea:4c:a7:1f:14:14:1a:bc:18:fe:53:32:aa:cd:ba:c3:e8:a0:
df:57:51:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org