Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FuryKOwI6-Y_HlFwgxgJmAyO-O8.roa
File: FuryKOwI6-Y_HlFwgxgJmAyO-O8.roa (raw, json)
Hash identifier: ggEe6VaRZsAfkyxaU5Aok/979IlmPdoe1+DeoQlzmBQ=
Subject key identifier: 16:EA:F2:28:EC:08:EB:E6:3F:1E:51:70:83:18:09:98:0C:8E:F8:EF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10D5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FuryKOwI6-Y_HlFwgxgJmAyO-O8.roa
Signing time: Wed 01 Feb 2023 10:29:05 +0000
ROA not before: Wed 01 Feb 2023 10:29:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 106.105.240.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4309 (0x10d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=16EAF228EC08EBE63F1E5170831809980C8EF8EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:9a:0e:9b:f5:72:de:23:d1:90:81:a5:75:
ef:1d:ff:ad:c3:75:a6:95:8f:c5:da:0e:33:d6:67:
84:ac:f0:88:e1:31:a8:ec:57:0f:77:43:6e:18:c8:
db:2d:23:02:61:38:a7:9e:4c:99:37:2d:ef:f8:4e:
14:f9:af:96:ba:bd:8a:38:6f:55:ad:87:87:39:1a:
54:a8:73:3d:0e:b3:74:d8:a1:fc:2c:71:59:67:88:
94:60:86:c2:99:83:9e:72:a2:c5:99:ca:e7:45:cd:
fc:ae:4e:be:01:f8:37:a1:5f:7b:fd:17:33:c9:00:
3e:76:26:f2:26:ad:4d:55:f0:3b:cb:56:1b:b7:f6:
e5:91:f2:4b:70:1d:39:21:1f:62:70:ff:ee:e3:c4:
3a:e4:56:b5:19:c0:43:5b:d5:f4:0d:21:ea:cf:0b:
a3:2e:ea:fd:99:09:a6:29:23:5c:8d:eb:7b:b5:25:
d4:29:0f:af:d3:b2:c5:a2:0f:35:81:3b:a1:64:9f:
69:73:41:d2:3c:63:88:51:76:aa:52:64:84:fa:6d:
7e:9b:e0:62:a9:b7:2b:b5:c7:44:68:ae:48:67:cb:
da:03:a3:3f:5a:5d:82:64:34:28:d3:88:cf:42:a8:
b6:58:02:0f:1c:40:84:bc:ba:a4:6b:c4:f2:f1:64:
f3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EA:F2:28:EC:08:EB:E6:3F:1E:51:70:83:18:09:98:0C:8E:F8:EF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FuryKOwI6-Y_HlFwgxgJmAyO-O8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.240.0/21
Signature Algorithm: sha256WithRSAEncryption
80:29:25:f0:b5:9d:b8:a8:1b:94:5a:7b:fd:7b:6e:e2:9a:d2:
b2:45:08:6b:77:04:0b:1e:8c:6f:c9:30:de:60:4c:fc:af:9d:
25:7e:8f:1a:c4:17:40:ec:ce:dc:18:32:9e:f1:e6:03:82:db:
3d:da:c3:03:20:4e:7f:96:d5:ce:10:3d:d5:d3:60:79:08:ce:
a8:67:ff:57:97:30:79:fe:39:06:c3:85:1f:e0:6a:48:35:7a:
c8:b1:9d:fb:32:e1:e0:c8:1e:57:ac:d8:2e:35:3a:07:c4:dd:
bd:b0:ba:4d:75:4e:df:c7:9d:96:a0:75:11:c1:d7:34:a7:6b:
7c:2f:92:e7:19:96:e0:e0:1b:18:ed:f5:b8:08:21:d6:ba:41:
12:ba:fa:86:f8:53:f3:d5:4c:5d:7d:fb:f2:ac:c8:db:35:dc:
3e:25:83:e0:06:12:08:f7:6d:22:03:74:45:1b:4a:47:36:da:
ab:e3:a9:cb:fb:54:cb:5c:a0:7b:52:0b:03:6d:79:da:7f:a8:
00:e1:3f:dd:16:ae:16:b5:d1:10:11:5d:6a:8b:b6:24:be:dc:
c1:8d:a9:02:7a:cc:58:e0:89:21:64:42:57:9d:7d:f5:c0:46:
d8:8b:2f:0a:4c:18:6f:cf:97:f6:68:5d:02:d2:66:89:a2:59:
b7:e9:27:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org