Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JfPFMwJ97Ff_MKZoF7IzxYwTEks.roa
File: JfPFMwJ97Ff_MKZoF7IzxYwTEks.roa (raw, json)
Hash identifier: QoGOssRhFn4zLzNrNXl8PKrSJfDAcZtk3O87qLk6xR0=
Subject key identifier: 25:F3:C5:33:02:7D:EC:57:FF:30:A6:68:17:B2:33:C5:8C:13:12:4B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 106D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JfPFMwJ97Ff_MKZoF7IzxYwTEks.roa
Signing time: Wed 01 Feb 2023 10:28:33 +0000
ROA not before: Wed 01 Feb 2023 10:28:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4205 (0x106d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=25F3C533027DEC57FF30A66817B233C58C13124B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fb:3f:db:5c:69:01:91:5d:41:a8:69:c1:41:
9c:e1:1e:84:0a:f3:9c:2c:78:9e:45:c3:42:35:74:
7d:4f:aa:46:0c:38:93:f4:00:f7:de:dd:ce:07:22:
78:69:bb:dc:30:43:21:b8:47:14:bc:d4:d5:54:4c:
aa:43:c8:22:b4:f2:a6:2e:d4:e4:31:e8:83:a7:83:
82:58:dc:be:f8:64:66:b3:a3:01:30:b9:87:ef:e8:
8f:2a:83:dc:49:09:fd:87:5d:0a:f8:b0:3f:67:3b:
33:cf:1d:a0:1f:02:3b:10:81:dd:c2:8b:fd:a0:bc:
18:02:c5:53:83:c8:67:3c:d6:dc:7c:48:95:9e:a4:
2a:e2:7f:db:84:d2:fc:83:49:61:b3:66:c6:28:f2:
ae:6d:4d:48:38:3f:ba:ed:e9:67:7f:8e:c6:ea:72:
e8:29:01:89:d5:28:62:a0:b2:02:17:fc:94:7c:b5:
1a:9a:6c:d2:e5:ad:13:c1:46:b5:68:a9:20:f3:af:
1f:5e:b7:9f:2c:86:ab:48:62:08:70:73:d5:a5:3f:
a1:50:53:36:d7:a7:6a:ef:bd:3c:d5:95:4a:7a:3e:
ff:8a:a2:0d:51:bc:af:ed:92:b8:81:30:d0:9d:3b:
d4:b1:80:8c:9c:0b:0d:5c:4b:41:3a:24:3d:de:21:
a2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F3:C5:33:02:7D:EC:57:FF:30:A6:68:17:B2:33:C5:8C:13:12:4B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JfPFMwJ97Ff_MKZoF7IzxYwTEks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
ca:8f:b3:fb:39:15:99:55:76:9f:38:88:f0:1b:3a:fb:99:b7:
94:6d:d3:f9:c6:2b:49:51:76:d9:59:a9:df:e8:f0:33:17:5f:
b0:3d:2e:56:a2:83:06:28:49:f3:a3:0c:2e:c5:95:92:6f:b8:
b9:19:d7:e6:02:24:21:28:a8:17:6b:df:27:fb:e2:16:ae:08:
c5:99:b5:f1:89:5a:ee:17:2c:43:3d:c1:c3:82:f2:cb:22:b1:
84:5c:70:02:68:05:d1:02:e1:a1:3f:62:60:ea:4f:95:33:b9:
b0:9f:a0:13:d7:9e:fc:5c:49:18:29:d3:3d:8d:15:1a:06:37:
ac:55:bc:bb:4c:ec:bb:80:11:5c:fe:20:0c:85:0d:44:54:83:
3e:de:b9:c8:9a:05:68:b0:d4:dc:39:c3:94:80:07:ae:d1:a8:
1a:97:66:42:36:eb:31:6a:94:c5:5a:37:a8:4d:6d:60:8e:5a:
67:94:ce:a2:f5:2a:58:54:eb:2a:e6:8a:6f:c9:7a:ea:75:c9:
fe:4b:e6:8e:30:c6:74:01:92:7b:06:6c:25:7c:c8:af:d0:59:
95:81:8a:93:71:41:2b:c0:74:68:1a:7e:4d:21:58:5c:83:eb:
5f:d5:86:46:7d:57:e3:55:0b:fc:ad:39:75:e5:a5:b5:2b:91:
5d:d6:30:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org