Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ML72AUNAsToMXwQ6K8h8AcN3yE8.roa
File: ML72AUNAsToMXwQ6K8h8AcN3yE8.roa (raw, json)
Hash identifier: opa8Jh83x10jZMPhMjp2hcN+TlJrrlRMFe3ASpzkZp0=
Subject key identifier: 30:BE:F6:01:43:40:B1:3A:0C:5F:04:3A:2B:C8:7C:01:C3:77:C8:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1081
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ML72AUNAsToMXwQ6K8h8AcN3yE8.roa
Signing time: Wed 01 Feb 2023 10:28:39 +0000
ROA not before: Wed 01 Feb 2023 10:28:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 113.196.128.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4225 (0x1081)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:39 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=30BEF6014340B13A0C5F043A2BC87C01C377C84F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ae:7f:b2:02:42:7e:0f:42:97:37:ef:e1:96:
69:e1:f1:ae:c9:9a:d8:0d:69:bd:b5:d4:91:0f:1f:
a2:82:89:56:4b:a0:7d:3a:ed:8d:02:b6:58:55:52:
80:9a:cc:6b:ef:c0:57:93:77:53:8f:64:3d:45:1c:
10:a2:f6:a7:78:6a:e0:04:29:59:90:c0:84:e0:6c:
71:a0:fc:f6:60:af:fa:0b:30:bd:7a:a5:97:06:22:
b0:fc:ed:7b:7b:7b:99:56:d5:84:bb:9a:08:85:e0:
da:0a:3b:6a:40:cc:0f:04:94:f2:5c:87:be:52:6b:
34:08:39:ba:a5:23:af:b2:23:23:0e:97:ca:b0:c9:
90:07:a2:02:ff:ea:e7:37:9c:8b:bc:38:c5:04:04:
f1:87:b8:6b:2d:a8:f2:15:85:11:44:c6:ee:e7:79:
8b:1e:30:30:ae:5d:5a:c4:a1:3d:f6:94:be:15:07:
6a:8e:b0:d8:e3:04:4f:89:94:05:13:47:91:6f:fe:
ac:ec:03:44:ea:99:bd:4e:06:0a:d1:65:ff:73:1f:
6b:1d:e5:fe:56:21:02:0d:81:cc:45:00:e3:f3:26:
68:87:80:cd:f6:34:a9:ad:f2:c5:bc:bc:f1:d6:45:
dd:fd:07:64:fc:d7:fc:29:46:d7:24:53:ac:ff:5e:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BE:F6:01:43:40:B1:3A:0C:5F:04:3A:2B:C8:7C:01:C3:77:C8:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ML72AUNAsToMXwQ6K8h8AcN3yE8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.128.0/20
Signature Algorithm: sha256WithRSAEncryption
b7:8f:27:0b:fe:bb:aa:d3:f5:63:7a:4a:43:1d:7f:c9:7e:09:
64:0d:96:0e:f5:05:10:a5:8d:38:15:e6:30:86:1f:9f:92:cf:
13:6b:87:30:53:5e:51:9e:af:81:8e:34:30:30:ab:8c:76:ad:
cd:bf:bd:9c:e4:85:84:a0:2d:95:42:ab:43:ac:ec:e8:af:48:
51:37:74:c4:ac:1c:2f:40:e5:f6:ea:eb:09:bf:dd:31:b8:b3:
05:e2:9f:ec:c6:54:b6:8d:91:fb:79:cb:5e:64:d5:3a:03:3a:
dd:2d:af:5a:98:c3:a6:b5:72:3b:69:5e:de:3a:54:8b:0f:9e:
7c:99:80:67:f2:0e:cc:84:31:b5:4b:fd:d9:29:ef:2f:0a:7f:
a9:b8:f6:4c:86:05:28:c7:d4:0a:b9:7d:90:5f:5b:ff:35:1a:
aa:fe:16:5e:d5:1c:6d:f4:d9:7a:6d:3c:d0:63:3b:84:7e:9c:
49:ed:70:3a:3f:f8:a2:52:57:86:6d:27:eb:00:42:fd:08:68:
c2:0d:f0:ed:fa:ad:1e:99:e5:97:82:08:6e:a6:7a:58:11:89:
a4:33:37:5d:8e:2b:5b:71:c9:1a:6b:cb:d4:2d:c0:93:b6:b1:
3c:dc:fd:6a:e1:3b:2f:98:f8:ce:40:96:cf:fa:fb:31:1b:f3:
d2:9e:05:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org