Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/F1AZffA8KfEcW1UiB__rYSIPXhM.roa
File: F1AZffA8KfEcW1UiB__rYSIPXhM.roa (raw, json)
Hash identifier: VA61Y5Ivm8nyJP17qIitK96PoFf5oTqNEFAbBI9OGkc=
Subject key identifier: 17:50:19:7D:F0:3C:29:F1:1C:5B:55:22:07:FF:EB:61:22:0F:5E:13
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1088
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F1AZffA8KfEcW1UiB__rYSIPXhM.roa
Signing time: Wed 01 Feb 2023 10:28:41 +0000
ROA not before: Wed 01 Feb 2023 10:28:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4232 (0x1088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:41 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1750197DF03C29F11C5B552207FFEB61220F5E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7c:69:24:2f:42:d5:3c:78:61:62:53:5c:eb:
ad:4e:6a:d2:80:83:13:3c:d4:ff:80:0b:89:29:31:
cb:0c:d2:b9:f4:b1:2b:2f:5e:62:e1:da:50:25:fa:
91:49:d0:83:1c:c9:f0:50:80:bf:0c:11:1b:ee:5f:
b2:40:e7:91:04:52:96:c8:1a:03:3e:b7:11:af:b5:
ad:4b:32:5e:17:78:96:d2:dc:99:5b:c2:dd:e2:d9:
c3:90:3c:4f:ad:96:b1:2e:bc:5f:14:e8:81:96:34:
33:0f:21:18:2f:ea:24:99:5d:04:63:f2:08:10:17:
21:a9:79:05:a6:ef:cc:42:7e:52:61:cc:36:57:93:
a3:c0:c1:23:f2:14:c5:66:f2:f7:e3:6c:b8:26:e9:
50:4a:7f:ee:4c:87:af:c4:6f:c9:c5:93:7d:28:7a:
22:21:11:3c:ef:ea:77:93:56:7f:fc:53:eb:aa:0a:
c8:51:30:ae:23:30:81:fa:31:07:b3:94:81:6b:69:
34:32:4c:a1:c8:f5:73:04:4d:66:1c:ea:85:a2:ad:
0e:b6:33:7b:cd:d2:93:7c:42:13:23:3c:95:4d:d0:
bd:69:0d:db:df:17:05:a9:38:30:45:85:4c:52:92:
59:f1:af:21:7b:ab:84:a7:08:0f:6f:78:08:68:f2:
09:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:50:19:7D:F0:3C:29:F1:1C:5B:55:22:07:FF:EB:61:22:0F:5E:13
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F1AZffA8KfEcW1UiB__rYSIPXhM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:15:28:86:47:5f:68:ed:56:b8:2a:9b:89:68:a1:de:37:ad:
de:64:4b:c1:58:e7:b5:9a:4b:2f:e6:2f:6c:8b:2a:be:f3:fe:
42:97:08:39:10:3b:46:79:4b:6a:20:12:b7:f2:02:b8:fd:cd:
1c:70:03:d5:4c:fb:1e:e4:22:07:64:bc:16:7f:69:fa:44:35:
21:8b:38:06:3d:96:6c:0d:15:87:46:50:d2:d7:8a:de:7d:00:
e8:da:b9:2d:8d:3a:d3:b2:15:89:5e:c7:15:76:b0:37:97:4e:
4c:0d:6e:1f:9f:75:b7:63:f0:2b:66:eb:fe:ce:c5:73:34:66:
7f:a0:a8:a0:97:18:c0:db:d1:33:bb:70:e4:76:b6:ef:a6:7c:
ed:07:9b:f3:47:08:e5:52:df:07:c1:a2:30:a0:f4:f9:39:e8:
4d:64:a9:28:81:f8:d3:0c:40:2c:55:40:3c:3a:1f:88:97:71:
8b:16:70:3d:77:2a:f1:b7:b7:08:d3:08:0c:06:36:91:28:6d:
af:4e:e5:06:56:94:fe:50:ce:98:97:f9:c7:65:a2:4e:f3:63:
87:0c:8d:fc:0e:db:5e:31:f3:cd:21:8c:a7:a6:05:67:f1:1e:
0d:cb:1d:15:44:bd:d7:86:94:74:4b:63:3f:e4:94:0e:de:2d:
a1:0f:a5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org