Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NAI5YJYGF3Bg5T6h3q-JnWV63xU.roa
File: NAI5YJYGF3Bg5T6h3q-JnWV63xU.roa (raw, json)
Hash identifier: ZzuJEjmQHOmP9JQd79PYLAuhHuIbwI9Z0JD+dsFajPY=
Subject key identifier: 34:02:39:60:96:06:17:70:60:E5:3E:A1:DE:AF:89:9D:65:7A:DF:15
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1074
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NAI5YJYGF3Bg5T6h3q-JnWV63xU.roa
Signing time: Wed 01 Feb 2023 10:28:34 +0000
ROA not before: Wed 01 Feb 2023 10:28:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.146.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4212 (0x1074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=340239609606177060E53EA1DEAF899D657ADF15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ce:8f:4d:a8:cd:dc:62:77:11:c2:a8:f1:81:
d9:9c:db:6b:c1:9d:65:87:e1:5d:e6:5d:41:e5:8a:
e0:ea:cf:57:52:d1:78:cc:06:49:1c:60:40:05:97:
02:f2:05:70:f3:82:8b:e1:9f:b3:75:7c:68:61:dc:
9c:42:0f:39:3b:70:70:ba:49:7c:a7:a0:2a:8b:50:
b0:b9:46:98:32:84:a6:3c:a6:82:0a:26:c7:9e:17:
32:bb:78:a8:64:e6:ab:c1:23:92:04:2d:e2:ec:88:
55:b5:e2:16:82:1a:c0:8a:ff:0f:f9:61:87:4a:82:
8c:a3:b7:8a:f7:5a:ef:48:08:4d:af:80:5c:00:50:
eb:69:85:93:33:d9:07:d3:a2:80:3f:20:ee:f2:d9:
24:fd:cf:68:24:f5:f6:2e:87:fc:b6:bb:dc:d5:e2:
79:cd:b1:ec:46:e6:36:a7:71:a4:5f:fe:a4:4d:64:
f2:20:37:b3:29:fb:b4:26:da:00:72:43:d1:0a:b0:
b8:e3:fd:d0:1a:23:a7:2b:f3:0a:a0:d1:1b:71:90:
c7:2b:79:e5:32:10:93:5e:94:db:fe:1b:94:5e:0a:
9a:9a:2a:9a:79:81:92:6a:e5:db:e4:c1:72:1e:1b:
15:58:d7:d9:97:14:89:88:c2:54:04:45:be:5b:7b:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:02:39:60:96:06:17:70:60:E5:3E:A1:DE:AF:89:9D:65:7A:DF:15
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NAI5YJYGF3Bg5T6h3q-JnWV63xU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2f:ac:5f:04:a6:64:e2:73:01:e8:49:d5:aa:89:4c:4f:13:6d:
eb:f2:8d:4c:d3:14:04:7a:70:25:47:18:98:2c:52:d7:e0:a8:
49:1d:86:5f:0e:0f:61:cc:cc:fd:c2:40:88:ca:60:f5:93:d2:
fa:f8:88:07:fd:cd:b4:3a:a9:40:f1:c7:8d:07:07:b6:6e:87:
13:5b:71:7c:d3:d0:c5:7b:6b:84:60:67:43:26:be:45:32:c5:
19:fb:5d:21:f6:90:6f:39:e3:4f:f4:f0:fa:c4:db:16:b5:23:
32:e8:28:03:02:87:e9:5c:dd:93:38:19:e9:e1:e1:42:5b:00:
0d:00:7a:1f:65:b5:00:12:9a:ff:f3:3d:60:d3:ee:a9:b6:28:
8c:8d:a9:74:b9:a1:cb:f4:cc:de:d7:90:4b:db:8c:2d:73:d2:
fd:75:65:67:81:9d:f5:0b:e5:1e:ba:26:91:89:92:ae:bc:1f:
2f:f7:70:bb:d7:16:43:0b:a4:a3:72:14:22:4b:2d:bc:46:14:
20:34:a2:b2:94:38:8c:53:8c:c6:e4:f0:4a:82:a6:74:3e:35:
d1:e3:30:0b:7e:b2:1f:09:83:87:85:5e:b8:be:7b:b8:14:11:
7a:ac:34:fd:32:f4:c8:1d:04:91:35:41:f0:d3:bd:fd:3b:5a:
b8:7d:8a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org