Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LgL3w8qkwDJ1BwrAn118IceYU_0.roa
File: LgL3w8qkwDJ1BwrAn118IceYU_0.roa (raw, json)
Hash identifier: DO1Suw6QKSCVuUD67jE6omG2kAZ7rXebghpmk1sFnak=
Subject key identifier: 2E:02:F7:C3:CA:A4:C0:32:75:07:0A:C0:9F:5D:7C:21:C7:98:53:FD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LgL3w8qkwDJ1BwrAn118IceYU_0.roa
Signing time: Thu 15 Sep 2022 02:43:41 +0000
ROA not before: Thu 15 Sep 2022 02:43:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2E02F7C3CAA4C03275070AC09F5D7C21C79853FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:77:3f:e8:60:fa:dc:9a:5c:8e:14:06:4c:74:
a6:3c:74:91:b3:6c:15:c6:8b:4a:fa:b4:d8:1b:e1:
5e:25:2b:13:12:e8:f1:28:0f:10:93:67:19:7d:69:
91:4c:93:f8:8c:ed:78:75:1b:89:a3:1f:b7:70:22:
9e:cc:39:68:8c:87:00:ce:4d:03:c7:4b:bc:6a:49:
56:1e:25:e1:68:94:94:73:0e:d6:0c:f4:df:ee:fe:
42:6c:48:6e:bb:3d:8b:20:18:f2:d1:f9:50:7f:a3:
4d:d6:29:4c:9a:fa:dd:18:8e:f4:31:83:37:55:f4:
e9:13:11:d3:d4:cc:fc:9e:e5:b2:63:42:2a:e7:ab:
ea:6c:67:e1:d4:ab:a7:fd:86:d8:69:97:98:fc:4c:
38:f3:17:e5:df:e1:90:48:4c:f0:e0:eb:45:dd:fb:
01:99:d8:cc:a0:b2:07:85:1a:1f:cc:24:e2:5d:0d:
bc:c4:f5:75:52:e2:32:c1:fd:3b:eb:1d:b5:f2:61:
52:a3:73:5a:4c:5a:35:62:47:82:a5:99:ba:9f:68:
01:6e:b0:2c:86:ac:aa:63:52:38:74:e6:cc:b3:50:
76:9f:d3:de:f9:af:30:7a:24:ea:bb:f3:d7:ca:df:
73:60:e9:eb:45:e1:c1:20:f6:00:31:dc:e8:f4:b9:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:02:F7:C3:CA:A4:C0:32:75:07:0A:C0:9F:5D:7C:21:C7:98:53:FD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LgL3w8qkwDJ1BwrAn118IceYU_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
85:1f:78:16:ad:0c:57:fc:48:41:d1:93:53:5c:1a:94:09:4f:
86:07:6d:25:23:0a:1c:23:d3:0d:c1:98:a1:05:a1:6c:05:05:
d1:2c:72:1e:fd:1f:95:b5:ee:05:52:85:2d:98:2b:eb:b7:b9:
25:c5:89:f4:c7:57:1f:1a:7a:ab:7f:28:da:8e:74:fd:09:06:
8e:aa:05:a4:9d:ed:96:37:e9:28:fd:03:9f:fb:98:5b:2a:53:
95:be:e0:d8:6d:9a:16:e1:5b:e8:45:ba:40:ec:79:29:4f:89:
c7:b6:1f:c3:cd:a1:75:d6:88:aa:40:fb:f1:b9:04:0d:f5:5c:
47:60:a5:3d:de:6b:d6:7e:97:f9:1a:10:70:2d:03:2f:55:c5:
d1:7a:f1:c2:66:21:10:a7:9c:dd:e4:5d:c7:e0:4f:f7:c5:56:
65:9b:83:ba:65:4c:66:17:b6:a5:0a:17:2d:09:9a:81:aa:58:
9a:e0:5a:4c:ef:19:16:7b:83:4e:93:40:3d:ff:60:bb:3e:8d:
b1:57:19:ef:44:ea:03:5e:65:a4:36:44:b7:92:a7:d0:77:d1:
69:04:3e:8a:ab:53:31:39:c1:a7:c5:5c:62:f2:85:bc:ff:14:
d5:94:23:6c:93:51:9f:9a:d9:1b:b9:fc:14:6d:ff:7b:29:ad:
c4:24:db:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org