Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/O517vYl8Qq-AVafX367S9qFv1mo.roa
File: O517vYl8Qq-AVafX367S9qFv1mo.roa (raw, json)
Hash identifier: +/MUxNS31BrCYUJt4b+yyB8v1rtkqQTXleJH+3HPotM=
Subject key identifier: 3B:9D:7B:BD:89:7C:42:AF:80:55:A7:D7:DF:AE:D2:F6:A1:6F:D6:6A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O517vYl8Qq-AVafX367S9qFv1mo.roa
Signing time: Thu 15 Sep 2022 02:42:43 +0000
ROA not before: Thu 15 Sep 2022 02:42:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 113.196.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B9D7BBD897C42AF8055A7D7DFAED2F6A16FD66A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:08:92:b6:e7:67:d8:b7:c6:75:70:6e:96:65:
f9:9c:2d:79:55:38:ef:fb:e2:70:8f:31:63:b9:93:
c9:b5:7c:66:61:aa:00:16:ad:98:26:fe:01:3c:df:
e5:b4:cf:b5:9a:d2:dd:20:93:c0:5a:b1:9f:3c:03:
60:2a:ad:eb:53:65:6a:50:71:6a:05:52:4e:b6:f6:
75:b5:cc:91:3d:42:dc:be:05:59:fd:2d:83:40:47:
7b:05:09:a8:5a:2f:f7:d8:bd:8c:14:be:81:b0:17:
df:24:fd:65:1f:b1:55:76:cc:f6:9a:5c:63:a0:54:
b8:4f:28:41:c7:f1:89:0d:5f:92:f0:9f:69:32:a4:
fa:6f:7d:c3:46:5f:76:3c:28:55:14:1d:de:7b:6e:
99:67:80:30:35:74:d5:67:e3:5d:2c:9b:ff:12:8e:
37:c2:f6:b9:cd:08:c7:11:7a:bc:3c:57:e3:88:c7:
3c:84:65:86:35:78:6e:27:90:66:cc:bb:05:92:da:
9d:7a:70:16:c9:8f:f0:9d:e0:55:89:6d:a6:65:ae:
70:da:39:ca:2f:8d:f1:dd:6f:02:28:18:04:82:27:
d5:28:8d:37:b8:eb:22:90:f8:0f:b7:7d:ab:42:f5:
95:87:37:09:1a:d5:70:58:aa:0b:c7:a7:f1:57:f9:
f6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9D:7B:BD:89:7C:42:AF:80:55:A7:D7:DF:AE:D2:F6:A1:6F:D6:6A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O517vYl8Qq-AVafX367S9qFv1mo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.115.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b6:19:30:56:56:b1:80:a5:fa:a2:d7:92:ec:d9:cd:b8:db:
9f:f8:9b:bf:25:ba:c4:a4:00:b5:7e:12:63:ce:65:0d:fc:84:
f6:cc:1b:2a:ec:fa:c0:78:39:00:05:58:23:77:c5:85:4a:a8:
1d:06:fb:6b:ae:c6:79:13:78:0c:05:bc:ac:f8:22:33:cc:7b:
ce:a3:76:d1:eb:9c:9e:f2:4a:ab:74:fb:a4:b9:ad:a2:9c:0a:
65:53:36:0c:af:1e:0c:38:5e:34:a1:cf:94:44:a2:1f:5d:c8:
ef:27:2c:3e:8e:9d:6f:56:cd:66:b4:59:d1:85:9f:e7:9e:aa:
e5:7b:d1:a3:16:c4:7b:06:1d:fb:8e:b4:72:27:de:4f:59:5d:
11:23:d5:bb:92:69:fa:1c:2a:1c:1f:bb:e5:f2:4f:a3:45:f9:
9f:74:ee:00:78:f5:2b:76:d7:34:b6:e8:1a:f2:68:74:1f:4a:
d5:f8:75:13:ce:6c:df:d1:a1:51:d9:e2:67:99:84:e8:90:c2:
15:03:75:9e:cb:68:3c:69:ee:6b:50:00:60:90:df:27:4b:1a:
d6:f9:a3:0e:df:ea:0a:07:52:ed:8d:12:de:b0:34:cd:5e:ae:
01:98:80:2f:13:1f:26:65:a2:64:2e:8b:ba:2c:0c:93:b5:c2:
cc:24:1f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org