Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/K0-QJX53v0D5NF4M4OPv-NmJhA0.roa
File: K0-QJX53v0D5NF4M4OPv-NmJhA0.roa (raw, json)
Hash identifier: L7lg3o1cgBCS+q9ntFhDbd1n2dp6ziLivwieq+sQEIU=
Subject key identifier: 2B:4F:90:25:7E:77:BF:40:F9:34:5E:0C:E0:E3:EF:F8:D9:89:84:0D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 103D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K0-QJX53v0D5NF4M4OPv-NmJhA0.roa
Signing time: Wed 01 Feb 2023 10:28:18 +0000
ROA not before: Wed 01 Feb 2023 10:28:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4157 (0x103d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B4F90257E77BF40F9345E0CE0E3EFF8D989840D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ac:b0:62:2d:2c:9c:4c:29:85:03:b6:99:b7:
aa:ed:14:0c:04:89:f3:21:3f:8d:4b:84:5f:53:b5:
60:45:27:c1:68:35:0f:f0:2a:57:a9:6d:8f:02:b9:
c6:ff:0d:45:74:ed:d6:92:bd:d2:28:1e:9b:ca:f5:
ba:e7:5f:39:3d:05:a6:a7:55:0d:a2:b7:bf:32:2d:
dc:ea:e7:a7:40:62:91:bd:3a:a6:12:17:38:e4:dd:
9f:4e:f0:9f:98:61:d0:5d:67:7c:58:76:ab:3d:52:
6c:f6:06:38:51:32:d9:58:d3:af:3a:88:0e:3d:d0:
d0:bc:6f:f2:9a:77:8d:52:ab:0f:61:b5:2b:22:e9:
3d:81:19:e7:bf:e4:0e:b9:5f:7d:e0:53:d7:47:8c:
4f:4f:b6:0b:4b:a0:08:5b:e6:5a:23:04:bf:7f:85:
0f:4f:c1:4e:54:e1:12:5c:2a:b1:e2:03:f0:96:f3:
3a:ac:82:bb:e0:24:77:a8:4f:3e:7e:03:b6:2b:1d:
1f:00:2b:96:30:71:0a:d2:ab:4c:23:3d:d5:14:92:
45:36:93:21:1a:de:73:c7:74:45:c8:18:86:a2:4d:
aa:ac:0c:33:af:3f:22:2b:59:08:45:d8:c0:6d:c0:
c8:67:b5:c9:fb:a3:5e:02:ef:d3:85:f2:15:ca:79:
6b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4F:90:25:7E:77:BF:40:F9:34:5E:0C:E0:E3:EF:F8:D9:89:84:0D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K0-QJX53v0D5NF4M4OPv-NmJhA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:99:ad:42:10:c2:4a:61:f7:76:ec:d9:71:2b:33:07:e6:44:
0a:9e:88:c3:3e:36:ab:0d:20:79:cb:15:93:64:28:0f:80:8e:
36:25:ed:e7:1e:98:07:e1:c2:ec:a3:7d:1e:a9:84:5b:94:da:
fd:40:0b:71:97:c2:89:43:4c:4c:ed:77:12:15:f2:e6:72:f0:
82:f5:7c:55:be:13:f2:f0:45:05:78:93:89:81:70:a3:e7:39:
90:8e:b9:87:01:c2:8b:69:f2:05:21:55:29:15:5b:f5:cf:d8:
30:42:0d:31:0e:05:47:39:e9:c3:65:21:22:32:c6:d1:3c:01:
11:2d:72:cb:61:37:03:48:00:30:90:0d:00:6c:c0:ab:70:00:
11:90:d5:d8:19:c5:c5:9a:61:44:5e:3d:c3:e8:9a:30:38:37:
86:fb:da:41:42:8c:c9:16:a8:f6:f1:6b:cc:7d:b3:49:8d:34:
3c:3b:03:19:e7:55:cd:d6:1c:df:3f:e5:ad:fb:40:2f:c8:b2:
9c:6f:2d:3f:3f:66:3d:ae:6f:95:5e:41:a8:21:84:39:fc:23:
32:32:e4:dd:87:fc:22:ec:8a:aa:4e:e4:90:14:dc:e3:80:1c:
1c:31:64:cb:40:2f:26:aa:2f:ee:20:d9:03:13:ac:2f:40:8f:
99:f9:4d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org