Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEuMTxsEvEOJOdHeN9-Q3a2as0M.roa
File: OEuMTxsEvEOJOdHeN9-Q3a2as0M.roa (raw, json)
Hash identifier: dGGNu2kegGl9ydVfXqito04cXiVxyTnDxA/vQR2Bs6I=
Subject key identifier: 38:4B:8C:4F:1B:04:BC:43:89:39:D1:DE:37:DF:90:DD:AD:9A:B3:43
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEuMTxsEvEOJOdHeN9-Q3a2as0M.roa
Signing time: Thu 15 Sep 2022 02:42:57 +0000
ROA not before: Thu 15 Sep 2022 02:42:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:42:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=384B8C4F1B04BC438939D1DE37DF90DDAD9AB343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c7:28:a5:19:9e:c4:f2:a0:60:7a:91:74:26:
49:27:6b:c9:a1:4c:17:2f:6d:3a:58:4b:b1:8a:39:
0a:30:a3:b9:50:47:b1:c1:32:58:f5:80:b6:6f:ec:
43:fe:f8:73:c8:9f:3c:5f:3d:ae:da:1b:c9:45:0f:
b7:25:63:1f:3d:ca:40:e4:e8:83:cc:67:82:f2:da:
83:e5:03:45:cc:c1:ca:f6:a2:1a:d1:d1:d4:c2:40:
ff:4b:13:94:93:c5:0b:28:eb:ea:4d:78:6c:43:bc:
9d:64:3d:ad:cd:cc:64:57:38:98:07:ae:27:f1:0b:
57:2d:6c:e9:6d:dd:ee:7e:e5:bd:51:16:0f:e9:7e:
13:13:76:d2:58:cf:28:b3:0a:a8:4a:e8:3e:04:dc:
f4:db:03:3a:2d:f1:f2:5e:35:9e:79:58:65:12:43:
74:c1:0d:fa:32:af:65:44:ba:4c:d6:26:9c:a8:d0:
01:82:00:5f:7e:f8:e8:4e:d8:45:cc:23:a8:f4:94:
5d:ab:65:31:3d:93:a6:80:f0:f9:b9:bb:6f:3c:8f:
ff:4e:8a:a2:ac:27:fe:99:09:fd:3f:05:a9:4e:38:
84:e5:f2:b6:c6:1d:f7:ee:e6:61:f9:ab:01:cb:10:
24:37:5a:e4:d5:08:b5:f3:03:b4:a3:34:af:4c:b8:
2b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4B:8C:4F:1B:04:BC:43:89:39:D1:DE:37:DF:90:DD:AD:9A:B3:43
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEuMTxsEvEOJOdHeN9-Q3a2as0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7b:02:2b:53:d4:d6:ff:1a:2a:b1:4c:3d:ee:ea:aa:ce:4d:39:
ae:a5:b4:5b:34:07:13:10:95:8a:5f:e3:63:71:e2:fb:cd:d6:
4d:a1:32:1c:13:b7:31:dd:a2:ed:8a:24:ac:e8:b7:80:10:37:
26:e1:41:73:91:83:46:16:ff:6d:5d:ef:d1:18:fe:ba:b3:19:
f8:75:21:51:15:e9:1c:12:bc:9d:2a:7a:05:ec:7b:82:77:2e:
5b:f9:74:28:6c:62:4f:12:a4:16:07:0d:2b:76:06:0a:0c:f1:
bf:86:e2:c4:d7:82:26:01:32:6d:e3:f9:d4:f0:a5:be:93:48:
2e:e3:55:31:e9:a1:80:19:b4:88:97:34:12:e5:cc:8f:50:88:
60:73:82:7b:ec:2d:10:7f:b1:db:85:3e:d8:79:aa:fa:09:aa:
57:a9:d1:7d:d1:76:f8:4e:4f:60:15:86:b9:1a:2a:2b:07:ce:
b7:48:12:c6:67:ee:e1:10:37:df:9b:8f:72:38:2f:2f:b7:e4:
10:7e:b2:41:d0:d6:ea:10:49:18:d8:57:42:a3:35:1e:84:59:
81:84:f5:0f:6b:d2:f7:7f:29:d6:64:3c:e9:2c:7e:86:e1:00:
14:fe:35:30:e3:02:f1:94:6c:d0:e2:f1:5c:02:34:1f:76:7e:
25:78:9a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org