Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KPsHbD9fpRVChnqNbL-exIw96ug.roa
File: KPsHbD9fpRVChnqNbL-exIw96ug.roa (raw, json)
Hash identifier: jmTFlUnzSPIAkOYBksBwQEkjxNxZng3AdDOgMciq9BI=
Subject key identifier: 28:FB:07:6C:3F:5F:A5:15:42:86:7A:8D:6C:BF:9E:C4:8C:3D:EA:E8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10D0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KPsHbD9fpRVChnqNbL-exIw96ug.roa
Signing time: Wed 01 Feb 2023 10:29:04 +0000
ROA not before: Wed 01 Feb 2023 10:29:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4304 (0x10d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:04 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=28FB076C3F5FA51542867A8D6CBF9EC48C3DEAE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8e:78:68:16:c7:32:0b:5a:f2:32:84:4d:0c:
d0:84:ba:e5:b8:b8:01:1d:7b:10:cf:d3:4e:95:cf:
3f:b8:b5:4d:87:5c:6d:51:d3:03:22:1d:5a:2e:c2:
11:bb:3e:c6:06:d0:4d:b5:a2:97:4d:f8:56:9b:9a:
26:7a:af:88:22:17:c7:aa:01:8b:fc:3c:1f:06:d8:
d1:c7:e6:40:f4:f4:94:80:4e:42:17:ed:99:c2:f5:
bf:91:58:10:8c:7b:71:32:4c:a0:75:c9:af:bd:b6:
80:c3:5f:25:5d:56:4c:7e:e4:68:9f:cf:fc:2c:ca:
90:a9:b3:3e:c2:8d:00:58:e0:a3:b6:69:91:42:e9:
1b:5c:dd:ba:eb:c9:c1:26:f9:11:db:e7:f3:18:26:
94:39:f7:ea:43:08:9e:f1:79:4c:08:dc:e6:98:19:
dd:c0:e7:72:fa:fb:f0:aa:24:73:2e:45:cd:9c:5e:
f1:56:ea:71:45:5b:ac:61:01:04:43:4c:2a:f2:ee:
b9:fd:52:f2:a9:f3:7a:a8:ce:bc:6a:8d:6c:25:46:
e6:cc:27:cf:5f:c6:91:87:8b:00:56:97:fd:8d:44:
29:99:cc:b9:a3:cc:87:db:46:09:94:ff:0c:ae:91:
8c:1c:1e:ee:77:d9:77:57:69:01:63:dc:2b:dd:da:
14:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FB:07:6C:3F:5F:A5:15:42:86:7A:8D:6C:BF:9E:C4:8C:3D:EA:E8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KPsHbD9fpRVChnqNbL-exIw96ug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
73:ec:92:d3:31:a6:2a:ca:1e:4e:69:65:56:e7:4d:e5:d8:08:
54:3e:f0:e6:29:65:0a:56:bb:ea:c4:5b:68:0c:6d:2a:0d:f6:
28:ca:0a:81:bc:c2:86:d3:8e:70:5e:98:c9:14:9a:4a:48:cc:
91:fb:0e:f1:8f:9c:36:cc:63:b3:ae:1d:0f:ad:ef:a2:6b:d3:
4a:7f:80:cf:d6:dd:d4:28:a9:bc:18:53:64:8e:dd:6e:fd:7f:
54:8c:08:c3:34:40:37:56:21:70:e3:1d:00:c3:e8:95:13:41:
ce:e2:9a:0e:21:45:94:56:90:2e:b7:1b:3e:2c:37:4d:4c:a2:
9c:ce:36:51:16:67:2c:b2:ea:ad:02:34:b9:0d:04:44:0b:c2:
04:21:31:2f:20:dc:c7:6d:44:60:33:5e:6c:c3:d3:75:27:aa:
56:1c:48:8a:b2:0e:bd:05:c3:93:b0:5d:63:cf:04:95:6f:3e:
c1:fd:de:55:2c:d1:47:d7:a0:6c:67:e9:2f:ae:d0:99:bd:99:
73:9d:61:5a:c3:78:94:52:62:ef:9c:96:8a:35:06:bd:ba:9f:
d7:d7:06:c2:fb:75:2b:16:5e:62:23:b4:15:76:52:2b:4d:bc:
b7:d9:72:58:e9:5c:50:1a:47:fc:23:cf:c8:6a:d2:4e:3b:a8:
e6:97:3a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org