Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JCETwuI5r4ojgHfZOy01YCnl0cs.roa
File: JCETwuI5r4ojgHfZOy01YCnl0cs.roa (raw, json)
Hash identifier: er56l3cFi6uvzznRtD/L7HdpKfZ9TtKUorZ4hQgEyA0=
Subject key identifier: 24:21:13:C2:E2:39:AF:8A:23:80:77:D9:3B:2D:35:60:29:E5:D1:CB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1113
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JCETwuI5r4ojgHfZOy01YCnl0cs.roa
Signing time: Wed 01 Feb 2023 10:29:26 +0000
ROA not before: Wed 01 Feb 2023 10:29:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4371 (0x1113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:26 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=242113C2E239AF8A238077D93B2D356029E5D1CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:76:b1:a7:f5:6e:fe:19:fe:14:99:8f:68:2d:
50:11:72:b0:26:9e:0a:e9:0d:3e:f5:8a:50:a2:b4:
19:0d:9d:ae:a6:07:4e:38:6e:d8:0b:4a:5e:b3:6f:
c3:47:4d:bb:f6:73:8c:45:03:ea:e5:11:60:56:9b:
bb:28:31:08:1c:10:25:c8:69:3c:96:cf:cb:60:1b:
af:a5:4c:00:26:6a:d5:3f:fd:52:6c:d6:21:91:cc:
53:8a:09:3b:09:17:d6:7c:5c:a8:76:f9:6a:6a:19:
f6:3f:39:8a:da:9d:14:07:43:9e:b7:28:31:54:47:
27:aa:43:5b:dc:e2:7f:9d:50:1a:d5:b7:7a:7b:02:
e5:f7:8d:3d:fc:a5:aa:d6:ed:29:be:67:01:40:9a:
87:a8:47:ae:45:e2:29:2a:e0:05:1d:96:67:cd:17:
82:d7:6c:6a:29:5f:00:03:23:c6:e3:96:00:bd:33:
fa:b4:9c:a2:c3:33:36:55:1a:53:96:46:ac:07:94:
25:5e:3f:9b:fe:c6:62:80:58:3c:47:7b:c5:26:e8:
28:f4:06:13:fb:3c:6e:9b:61:21:8d:f0:3f:2d:08:
90:53:3f:3a:a2:c0:4f:8f:40:03:18:7c:e7:3f:a0:
ed:34:d5:76:7b:de:a2:fd:1e:3e:ac:eb:f5:5d:f2:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:21:13:C2:E2:39:AF:8A:23:80:77:D9:3B:2D:35:60:29:E5:D1:CB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JCETwuI5r4ojgHfZOy01YCnl0cs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
55:06:5e:ea:2a:7b:7c:0e:0c:52:0c:8b:a9:16:cc:4f:73:94:
10:2d:f5:99:bb:d5:14:2c:aa:53:b7:64:3c:1d:8b:fc:b7:c9:
ad:6a:69:8e:ec:38:16:ae:23:77:18:56:59:2d:79:07:d8:69:
0d:f1:7c:23:85:c5:72:33:99:f6:92:71:0b:da:30:9c:f6:01:
4a:94:31:d5:c3:b2:56:ee:08:11:62:9b:e0:32:76:34:1d:3f:
e6:bb:ff:40:78:26:71:e9:78:05:d4:cb:0e:0d:d2:3f:0d:ee:
7f:22:43:b9:fd:07:c2:63:30:96:e0:b9:1a:9b:02:80:f1:cc:
3a:23:16:2f:f1:1f:bd:e8:1d:87:0c:e8:b4:31:9b:fb:f7:c5:
49:9f:6a:cf:27:42:19:57:a2:0d:75:23:19:6a:12:d4:d3:1e:
45:a9:72:3a:8a:2f:4a:40:bb:9d:a3:ac:dd:31:11:87:57:56:
ca:89:a2:d3:c0:97:89:60:57:53:7c:24:32:d7:0e:12:cc:f8:
3f:fb:a3:f8:9c:2a:8d:29:9d:d7:b1:b0:99:3f:f2:46:50:72:
f7:f6:5b:a9:95:b4:3d:83:5d:b7:07:92:ad:58:76:30:2b:26:
e2:51:20:50:a4:56:b0:d9:2b:6c:c6:95:d1:40:7d:2b:f2:8d:
cb:4d:19:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org