Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DyQs67u6mxqbzap7lFQrb-6riZI.roa
File: DyQs67u6mxqbzap7lFQrb-6riZI.roa (raw, json)
Hash identifier: aDzJMrxr2DugDE9AOEhuQSiPA2YjU3tYbmpEqvOMEi4=
Subject key identifier: 0F:24:2C:EB:BB:BA:9B:1A:9B:CD:AA:7B:94:54:2B:6F:EE:AB:89:92
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DyQs67u6mxqbzap7lFQrb-6riZI.roa
Signing time: Thu 15 Sep 2022 02:43:31 +0000
ROA not before: Thu 15 Sep 2022 02:43:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0F242CEBBBBA9B1A9BCDAA7B94542B6FEEAB8992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ac:e0:2b:cd:e8:53:09:e5:3d:dd:d3:ff:df:
cb:50:a6:94:ce:d6:41:7b:fe:0d:20:24:12:34:59:
63:ea:53:b5:99:99:64:3e:cc:78:05:cc:16:c2:c9:
06:49:cc:46:fd:5f:82:64:41:79:42:5f:66:d8:b6:
15:84:19:e5:16:30:15:27:08:9a:3b:d8:d3:c9:65:
bc:65:9f:e8:63:c4:45:df:0c:ad:f0:f8:b9:22:9e:
83:11:ea:62:40:8a:27:ab:fd:c8:6e:0b:b4:36:53:
b0:10:dc:c5:c5:dd:58:31:46:fe:2a:9a:50:e2:70:
33:ca:6d:6c:e3:c7:18:00:55:8d:df:cb:40:c9:dd:
76:1f:77:f2:ea:7c:f5:81:75:aa:4f:d1:f5:6a:c2:
96:03:fd:85:b9:6a:fb:ef:8e:24:af:f8:92:f6:a5:
d9:a5:2a:d9:84:c5:34:f9:41:17:fa:f9:48:ec:54:
a6:b3:3f:09:c9:3b:35:d8:d3:53:ad:70:5b:96:d3:
d0:da:59:4f:1a:f6:ff:73:78:b9:bb:28:9f:de:f4:
25:92:b3:63:bd:ee:c1:ca:7a:cc:a8:73:1d:98:a1:
fc:c2:1e:46:aa:9c:5e:d8:04:0d:1f:e9:cb:97:89:
b7:57:21:6f:23:be:44:32:9a:96:4e:23:78:fa:b2:
4d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:24:2C:EB:BB:BA:9B:1A:9B:CD:AA:7B:94:54:2B:6F:EE:AB:89:92
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DyQs67u6mxqbzap7lFQrb-6riZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:cf:6a:d1:32:aa:72:32:93:28:72:86:8f:f9:56:99:12:ad:
79:b1:87:88:b5:ee:7f:68:f2:5e:7d:f4:79:1d:ae:a3:7c:e3:
14:31:87:e3:b9:0e:93:0f:39:44:43:f6:79:df:78:4f:dd:6e:
38:a3:22:54:ed:b1:ba:15:1b:14:17:23:bd:9f:5d:eb:0b:21:
62:c9:93:b3:8d:90:45:bc:0f:46:75:27:85:c9:fb:69:49:8f:
cc:fe:2f:40:cc:9a:3d:d1:9d:f9:b1:9e:4a:37:e1:7d:62:92:
44:ee:6b:8f:82:1b:40:4d:db:d3:9a:a4:30:3f:87:22:0f:d3:
57:09:fc:13:3f:f8:bb:5b:9d:e0:3b:50:c7:41:0e:a6:aa:ed:
a5:94:4b:2f:da:c6:eb:8b:d2:b4:a7:b0:2a:fc:05:96:19:a7:
42:8a:d4:d4:b7:28:de:50:70:83:2e:80:c0:13:d0:5e:b0:7a:
b7:05:95:ae:6a:b9:1f:99:46:34:39:bd:d5:7e:63:4b:a9:63:
1a:a0:06:a5:28:ee:c3:30:46:6c:8e:74:84:d4:4d:55:cb:ac:
b8:de:ac:d8:58:ae:cd:1b:e5:59:97:74:b7:2c:4d:1f:e6:0e:
44:70:25:e4:4b:fb:c4:6d:af:2b:97:b6:c8:57:aa:7d:70:da:
cd:d0:e6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org