Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OuAMDoYIHl-eywMdMK6ELD4tb1o.roa
File: OuAMDoYIHl-eywMdMK6ELD4tb1o.roa (raw, json)
Hash identifier: mQeL/EATVi4a5AK8hTX5TZb5S4wsrj41p7gpPswY7+I=
Subject key identifier: 3A:E0:0C:0E:86:08:1E:5F:9E:CB:03:1D:30:AE:84:2C:3E:2D:6F:5A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10F7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OuAMDoYIHl-eywMdMK6ELD4tb1o.roa
Signing time: Wed 01 Feb 2023 10:29:17 +0000
ROA not before: Wed 01 Feb 2023 10:29:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4343 (0x10f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3AE00C0E86081E5F9ECB031D30AE842C3E2D6F5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:09:81:f6:58:38:3a:e8:90:a4:8f:7c:cb:
93:2d:11:05:cf:a7:97:15:6a:d7:39:99:7c:09:04:
af:a9:a2:79:99:22:81:22:70:a3:5b:59:ac:4b:15:
aa:5e:ef:ef:17:ca:a1:2e:b7:24:14:3e:88:d1:12:
53:8d:ff:be:25:07:a0:1a:45:9c:7f:fe:82:ef:f2:
8c:c9:36:11:c9:a3:06:ea:0b:c1:6d:65:75:2c:3b:
ad:d9:76:6d:2d:1a:d1:77:51:7c:4b:fe:ac:e4:95:
2c:34:f7:7a:18:75:b4:3d:69:c1:d6:03:86:c1:e2:
c1:f6:0a:d6:91:38:ed:52:b7:a2:84:a9:36:c0:6f:
27:6a:63:8a:6d:6c:7d:e8:55:37:c4:45:c7:78:98:
4f:2d:5b:87:16:b9:11:96:bc:f3:bb:60:92:50:71:
d0:ea:fa:ef:5a:b6:7d:ae:53:e2:a9:6f:8d:55:86:
a5:83:9d:8b:a8:fb:77:87:fe:da:b0:7e:59:4f:28:
2a:96:96:15:a1:f8:55:d5:5c:36:3d:87:88:bb:2b:
e2:25:41:e6:d0:7a:f0:f8:6c:a0:49:9f:be:55:db:
88:8c:a2:ab:38:58:eb:8e:0b:1d:ad:39:ee:a5:13:
46:bb:04:fb:80:de:72:d0:de:82:54:de:cf:c8:fe:
b9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E0:0C:0E:86:08:1E:5F:9E:CB:03:1D:30:AE:84:2C:3E:2D:6F:5A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OuAMDoYIHl-eywMdMK6ELD4tb1o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1d:9b:27:88:1c:58:be:82:17:3b:a2:79:c5:38:4d:db:41:70:
f0:78:e8:03:33:58:15:90:4b:ff:69:6d:7c:1f:89:2c:9f:06:
48:2e:c0:84:1c:ba:7c:13:e2:b5:1b:01:91:b4:04:3f:b8:de:
37:e6:28:92:99:6f:f0:59:59:60:11:9e:74:d8:05:ba:97:74:
9c:da:4a:54:05:57:35:94:ee:4c:3e:c8:e7:3a:a5:a1:fa:8d:
50:d4:54:29:fa:7f:4c:cb:6f:fe:b2:0b:28:35:75:36:74:ce:
82:78:55:ed:f5:31:4c:d7:a1:f8:ed:fe:52:f0:29:2a:ce:00:
b9:44:fc:af:46:29:ec:22:a8:60:ae:1c:71:68:e3:13:c5:bc:
05:4d:41:c8:f1:4b:f3:3b:c8:a6:7d:bc:d8:c8:1a:f3:0b:ab:
39:4d:cd:53:c3:41:8f:73:0a:26:60:8c:d4:98:a0:d7:5f:32:
4d:e0:2f:bd:4e:fe:c6:96:ab:5a:62:43:58:4b:05:c3:ac:1b:
90:c4:6a:c2:97:8c:63:db:4c:e0:93:ab:de:48:72:89:f5:22:
ea:b4:bb:32:2c:7e:b1:8b:97:5b:d1:c5:49:4b:73:db:1c:25:
4c:8b:fd:68:fc:ef:c0:e2:72:a4:c2:06:69:d8:cc:4e:cf:bf:
10:91:78:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org