Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/L9h1lAl6vOGWpKCv4hJXLHXGi2g.roa
File: L9h1lAl6vOGWpKCv4hJXLHXGi2g.roa (raw, json)
Hash identifier: w+CTXSELxa53fRJtxefSDhHCSAaUMo64YZLiTyVWjAw=
Subject key identifier: 2F:D8:75:94:09:7A:BC:E1:96:A4:A0:AF:E2:12:57:2C:75:C6:8B:68
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CDD
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L9h1lAl6vOGWpKCv4hJXLHXGi2g.roa
Signing time: Wed 01 Feb 2023 10:28:55 +0000
ROA not before: Wed 01 Feb 2023 10:28:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3293 (0xcdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:55 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2FD87594097ABCE196A4A0AFE212572C75C68B68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bc:04:62:27:85:73:c6:23:f6:ed:09:62:d3:
50:9a:c8:e8:e3:be:8b:6c:5b:1c:19:68:8c:8d:81:
32:16:ac:ba:8a:b3:1f:72:f7:a9:49:54:2e:cc:8a:
e1:17:c3:07:14:42:24:09:90:31:c9:d6:23:5f:a7:
66:96:ce:d5:b7:cd:38:6b:fc:63:3e:a8:5f:2b:f8:
aa:c6:a6:4f:6b:11:54:ab:c7:82:6e:d4:ec:19:ca:
43:fa:84:36:9c:d8:7d:ed:fa:2c:97:09:c7:92:98:
40:9a:19:82:51:df:14:7b:31:dc:a8:c0:df:bc:3b:
c7:2f:32:aa:ac:aa:6f:39:8d:46:54:f6:cb:50:fc:
bd:42:48:e4:31:96:ae:71:ff:e8:79:95:e5:db:61:
c0:f6:1f:21:09:fe:f6:e9:0c:38:52:ff:55:f5:87:
7e:0c:aa:75:df:a9:42:6e:a1:6f:fa:0c:62:48:0f:
8b:6c:d9:68:bf:d5:5e:37:7b:bf:77:67:f1:82:ac:
9b:82:33:64:e2:c0:10:f2:55:10:8c:c3:b8:db:e6:
6e:4a:0c:c8:06:c3:74:17:ec:e2:f0:94:1f:9f:37:
f2:55:97:d8:19:e4:65:99:fa:26:b0:87:76:36:97:
fa:c9:04:37:39:9f:a4:af:a2:ec:aa:99:57:af:66:
7a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D8:75:94:09:7A:BC:E1:96:A4:A0:AF:E2:12:57:2C:75:C6:8B:68
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L9h1lAl6vOGWpKCv4hJXLHXGi2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:78:89:02:f4:09:f0:e3:43:e6:17:07:5d:62:14:09:2e:42:
39:39:17:14:2a:12:78:e0:97:d1:e3:24:51:96:5f:1a:bd:49:
db:48:5c:ed:35:7c:f9:f9:95:bf:47:bc:94:43:7a:8e:4f:5c:
39:4d:bd:70:1c:5b:4c:16:74:1b:01:22:f8:c8:3e:5c:7a:70:
4d:97:6d:a0:1e:f6:12:ff:63:6a:60:1d:4e:3f:5b:a7:f5:25:
b0:25:bd:b8:6c:95:01:29:37:54:26:b1:3f:1a:5a:b6:62:56:
d0:f6:0e:4a:35:71:9b:1e:7d:5e:ac:8f:ff:b7:d7:66:ce:d5:
00:d3:df:30:9f:5b:3d:9a:ac:a5:c8:cd:9f:58:49:19:ba:92:
04:ce:96:93:48:89:87:f3:fc:00:b8:2f:99:e4:41:6e:51:b8:
c3:b6:aa:c5:0b:d6:74:0e:32:1e:ae:e4:e6:af:bd:4d:fd:9a:
3b:76:bd:3f:33:a1:23:ab:d8:2e:b4:38:b5:99:34:ca:63:44:
35:5a:f2:50:a5:23:6a:95:48:51:52:34:30:98:09:f0:4d:d9:
08:01:4c:a2:2f:10:2f:b8:24:77:f6:69:32:9e:fd:11:9e:ff:
99:d8:86:80:ef:7c:67:80:cf:d6:15:7e:8a:ea:e5:a4:e3:42:
02:d3:38:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org