Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IoxgbwM3-U4-7u3699KPTtvey4k.roa
File: IoxgbwM3-U4-7u3699KPTtvey4k.roa (raw, json)
Hash identifier: Pz6z1VAmjX2XmENYxun8TTW2OeHhx3YMDxfyKyB7C10=
Subject key identifier: 22:8C:60:6F:03:37:F9:4E:3E:EE:ED:FA:F7:D2:8F:4E:DB:DE:CB:89
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 103A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IoxgbwM3-U4-7u3699KPTtvey4k.roa
Signing time: Wed 01 Feb 2023 10:28:18 +0000
ROA not before: Wed 01 Feb 2023 10:28:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4154 (0x103a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=228C606F0337F94E3EEEEDFAF7D28F4EDBDECB89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f8:b9:42:54:e3:4c:9b:74:c4:43:bb:5e:d0:
85:6c:00:b1:41:21:a7:10:bc:01:6b:2b:8b:9b:8d:
8a:27:a4:37:46:a0:56:b1:b4:2a:f5:85:9d:81:c3:
bb:2a:7b:fc:14:00:bf:ce:eb:ea:99:9a:f0:02:00:
fa:92:a7:ff:3c:97:e0:44:04:69:88:8e:78:86:d4:
52:36:f2:b3:23:6f:ce:e2:0f:9b:60:1a:fa:0f:2b:
a2:b7:9e:2b:63:c3:8d:e7:ea:8c:b3:58:c1:e5:f3:
cb:5e:e4:6f:9d:83:81:2e:f6:79:be:61:ad:57:35:
85:20:51:31:f7:0e:f2:23:85:f3:4c:4f:7c:95:4d:
06:ac:12:ed:2b:31:90:a6:55:c2:ad:3b:87:33:e1:
e3:5c:b0:13:e3:05:f3:60:43:0f:46:9d:9e:bb:07:
5e:ea:99:7d:14:ca:6f:c0:2e:1e:e6:98:27:80:31:
e6:76:ee:a9:c0:81:c3:e3:fc:00:46:51:a8:37:40:
2b:0d:04:c1:6d:2c:ec:b2:34:e8:7f:2f:5b:9e:82:
a3:51:d2:88:11:45:f7:a0:fb:01:cc:59:6e:23:c2:
0d:09:95:40:b0:50:43:55:89:4d:f4:aa:63:85:7e:
8f:67:e0:2b:91:ed:0e:c3:92:49:40:61:e7:44:9d:
18:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:60:6F:03:37:F9:4E:3E:EE:ED:FA:F7:D2:8F:4E:DB:DE:CB:89
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IoxgbwM3-U4-7u3699KPTtvey4k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
91:08:9e:5a:e9:91:6b:ab:4d:12:a6:cb:1b:19:e2:ec:3d:e4:
1f:ec:2d:15:de:fa:ee:21:ae:2d:1c:d5:bb:9c:5e:24:b7:df:
a0:ea:e6:db:aa:a6:7f:a1:29:bf:11:3a:e1:bf:03:b6:01:ca:
5f:49:81:72:98:f8:96:af:93:d6:17:42:f7:90:ec:84:68:52:
cd:27:13:1b:a8:fe:a2:9c:51:cb:71:bf:c3:4f:c8:ec:96:da:
e6:ca:6e:2d:41:d9:b8:c5:29:e5:f4:fd:72:4d:78:d6:1e:6e:
4f:12:22:7c:84:f9:74:c7:00:b0:ad:9f:5e:11:8d:c7:73:51:
6b:a6:f8:4f:c9:70:1e:91:24:57:db:b8:4c:ef:4e:4e:d3:42:
8e:7d:01:50:8f:cb:8f:5c:c7:ea:83:e7:38:ce:81:76:f3:53:
0a:5b:7f:64:0d:16:ff:66:95:00:bc:7e:7a:ba:2b:23:2e:37:
62:86:1e:f6:10:63:91:6f:dc:8e:2c:35:92:15:56:de:60:5b:
77:a6:95:d8:3f:50:5d:a8:9c:84:b0:2e:00:6c:0c:61:0e:b4:
d6:4f:f4:19:0b:50:48:80:ae:66:eb:84:82:a0:cc:45:8e:6e:
9a:9f:cd:30:29:ec:80:f8:6c:d4:34:b7:8c:9d:80:6c:f4:ff:
b3:33:44:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org