Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HsOuGuf162oXbr04-yOZ0ewCd-s.roa
File: HsOuGuf162oXbr04-yOZ0ewCd-s.roa (raw, json)
Hash identifier: w4R11eokEx3b+05hXoSJ9wqU+dB3Z7VvYMUEJE3Id8o=
Subject key identifier: 1E:C3:AE:1A:E7:F5:EB:6A:17:6E:BD:38:FB:23:99:D1:EC:02:77:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10C4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HsOuGuf162oXbr04-yOZ0ewCd-s.roa
Signing time: Wed 01 Feb 2023 10:29:01 +0000
ROA not before: Wed 01 Feb 2023 10:29:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 122.147.160.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4292 (0x10c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1EC3AE1AE7F5EB6A176EBD38FB2399D1EC0277EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8b:45:34:77:63:a5:c3:06:a5:36:05:9e:5c:
38:0a:ac:9a:24:81:bf:82:27:69:48:ed:7d:d4:ed:
9e:8d:c0:9f:82:8b:00:10:01:7d:a4:9c:e9:5e:bf:
8c:8f:f4:66:e2:1b:8f:49:11:5b:37:53:c9:37:2b:
98:0f:6d:07:89:0d:68:8d:a7:cb:8b:17:6e:dc:ff:
5a:60:19:44:79:8f:96:7c:c8:98:49:58:d1:c5:dc:
47:9c:62:97:b2:19:9e:10:8f:98:b8:8f:2a:b1:88:
0b:58:61:02:ac:b0:ea:5a:25:4b:4f:e3:22:55:41:
28:ac:55:04:ab:50:ff:dc:d3:a2:1c:79:30:85:0d:
8e:c8:0a:67:43:e8:f1:cd:b4:6c:7e:ad:09:3e:3e:
d3:b1:39:13:cd:bd:bc:86:32:42:d4:c2:fd:40:92:
08:b5:1d:8e:82:b8:30:d3:97:f7:8f:af:7c:73:01:
ba:25:5c:b2:65:e7:ec:23:b6:cf:93:ac:41:e3:63:
55:00:64:e2:ae:d4:f6:bc:8e:c3:b9:9c:26:4f:7c:
8d:2b:a5:76:47:bf:33:34:1d:08:18:d2:08:24:cf:
c6:dc:9b:07:3e:97:8d:d8:a9:72:92:5d:2a:c2:c6:
57:62:c4:15:6c:44:eb:49:3c:ff:5d:26:e5:c0:a2:
76:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C3:AE:1A:E7:F5:EB:6A:17:6E:BD:38:FB:23:99:D1:EC:02:77:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HsOuGuf162oXbr04-yOZ0ewCd-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:33:ed:98:e5:ea:93:92:ef:a6:a5:43:18:72:36:18:f3:c6:
cc:35:42:bb:71:5b:13:17:86:e9:e3:c0:15:5c:d5:88:be:a0:
c5:89:6e:6d:57:73:e6:67:87:74:cd:d2:56:59:59:b1:94:5b:
00:dc:fa:a3:72:aa:7c:76:4b:a5:ef:6e:85:03:55:d2:9a:6d:
53:30:41:04:e6:52:b5:99:13:66:04:83:61:ff:3b:25:61:f8:
06:ff:b6:88:5d:ec:5e:a9:cc:43:37:db:2e:79:46:de:12:0f:
59:e7:2f:95:1e:9d:5d:09:4a:e0:19:b8:70:7c:a0:87:97:fe:
5e:9e:43:b1:b9:02:a3:0e:84:8c:99:67:2a:e6:a7:c1:b5:2c:
bb:e0:5f:0f:ae:d8:16:e7:d6:12:bb:14:bc:91:46:bc:12:af:
4f:75:88:f2:5d:38:9a:7a:e0:ac:3a:c4:19:70:a6:e4:c4:ac:
0d:5b:73:02:4f:fc:75:1d:b9:cd:56:3c:96:bd:3f:14:1c:4b:
d0:98:7b:91:78:ca:a2:5f:f1:c2:33:73:5a:da:4d:8b:d7:6c:
2b:78:8b:5a:bb:e2:04:0b:32:35:d7:85:b7:74:a1:69:f0:2c:
6b:d0:22:08:40:25:26:b3:e0:a4:a5:0e:32:2e:52:89:3e:dd:
92:a9:93:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org