Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDrXilF3gTNOXP59hhxX-LgL0b8.roa
File: LDrXilF3gTNOXP59hhxX-LgL0b8.roa (raw, json)
Hash identifier: 8o6Ro82uj7j32XzHD/2V7RlWj7bNHTdO69HAuo4Vles=
Subject key identifier: 2C:3A:D7:8A:51:77:81:33:4E:5C:FE:7D:86:1C:57:F8:B8:0B:D1:BF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDrXilF3gTNOXP59hhxX-LgL0b8.roa
Signing time: Thu 15 Sep 2022 02:43:27 +0000
ROA not before: Thu 15 Sep 2022 02:43:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.72.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2C3AD78A517781334E5CFE7D861C57F8B80BD1BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:12:e4:0f:4c:df:db:7a:f6:60:a5:05:78:ae:
f3:a7:e9:4e:16:ea:3e:52:d4:f3:72:c4:fd:4a:b1:
0e:c5:f9:77:41:db:f4:36:71:57:d6:24:38:2e:05:
7a:57:d4:ba:d4:e7:4b:16:48:6d:18:8d:30:6e:b8:
be:b1:87:c2:93:da:d2:6a:42:92:d6:b1:2f:32:fa:
d8:e1:50:44:44:b9:1a:7b:f2:55:5e:ed:d5:84:ab:
75:8f:58:92:04:a1:c9:5e:55:8e:b4:c5:b8:6d:27:
1d:e3:71:10:09:eb:15:f5:22:04:e1:59:cc:4e:f8:
7e:25:4e:d6:1f:c8:9b:a2:5f:4a:91:b6:bf:9a:f6:
91:ae:94:d2:3e:53:bf:11:e7:35:e9:88:b7:8b:12:
0e:76:3f:6f:56:f1:02:45:fe:be:db:ba:ea:45:ea:
83:af:0b:25:c9:3d:68:f2:b9:68:b0:77:c1:51:8e:
97:56:f0:c2:f5:49:d9:e4:4f:6a:2a:c3:f0:c6:9b:
03:7a:ff:d7:64:29:84:e1:58:4d:29:3e:13:99:cc:
30:61:f1:6a:ba:0a:7c:de:c0:48:8c:f8:ab:96:3d:
be:d4:9c:13:7e:80:4b:b3:a0:c8:f7:9d:01:f2:b3:
fc:22:3b:a3:a2:f6:d0:6c:95:29:77:53:1a:46:a6:
14:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3A:D7:8A:51:77:81:33:4E:5C:FE:7D:86:1C:57:F8:B8:0B:D1:BF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDrXilF3gTNOXP59hhxX-LgL0b8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.72.0/21
Signature Algorithm: sha256WithRSAEncryption
ab:18:53:68:57:38:c9:ef:f2:68:d2:16:c8:c9:ae:5a:16:d0:
f9:2f:2d:46:8c:7a:95:b3:c1:53:00:7d:4e:a6:44:57:7e:2c:
bf:63:54:23:c4:8f:04:47:70:c7:a9:ff:0a:a9:0a:35:2c:c7:
d3:fe:7d:3a:f2:37:a3:65:88:4b:75:03:58:90:95:5c:65:d2:
93:13:fe:b3:06:b4:50:2b:bd:19:d5:e4:69:26:9e:81:35:6a:
b3:f0:5e:1b:ab:79:a8:47:90:27:e0:2f:a9:aa:6e:3b:d7:ab:
ac:48:cd:ff:4e:95:6a:f0:12:f8:ce:99:3d:c9:24:4d:2a:a6:
e9:67:48:bc:ea:42:0f:1b:02:d0:f1:cd:18:c9:a5:e5:3e:04:
19:0a:a2:8b:47:1a:2b:78:6f:cb:13:0c:53:a2:c2:8b:7c:01:
27:e7:59:94:cd:a3:3b:76:80:57:f5:79:2c:89:89:fb:f5:a4:
96:49:9f:5e:7b:b6:84:9f:26:35:05:8c:02:11:b2:f3:5b:cb:
34:86:54:98:b5:5d:cd:e5:b8:d0:b6:50:16:ab:de:5e:cf:90:
e8:3b:db:8a:bd:53:14:7b:30:63:bd:52:81:b8:b4:20:a6:86:
72:6c:e3:c9:98:38:f4:bd:f3:6c:3c:dd:8b:37:1f:61:80:37:
29:7d:08:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org