Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ps4VIOFh2ePqqQhfmTSQkNgl4zE.roa
File: Ps4VIOFh2ePqqQhfmTSQkNgl4zE.roa (raw, json)
Hash identifier: Q4LwZiA8jGlTjpaZr9OeBKnL6jUotF8PUZq76/hPYFI=
Subject key identifier: 3E:CE:15:20:E1:61:D9:E3:EA:A9:08:5F:99:34:90:90:D8:25:E3:31
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ps4VIOFh2ePqqQhfmTSQkNgl4zE.roa
Signing time: Thu 15 Sep 2022 02:43:43 +0000
ROA not before: Thu 15 Sep 2022 02:43:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.16.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3ECE1520E161D9E3EAA9085F99349090D825E331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:39:c9:87:ba:d0:33:bd:53:fa:b1:3c:0f:
b1:fb:58:7b:09:3e:c5:87:95:4b:a4:43:c8:0f:c3:
b7:0c:8e:69:48:f1:0d:cf:ad:04:a4:a6:cb:5b:09:
32:52:0b:ac:b6:44:ae:6f:30:1e:33:91:2b:d2:e4:
b3:27:76:7a:b8:7d:13:e9:d8:b7:61:48:0e:41:9a:
43:30:91:09:bb:4a:7b:df:ee:d5:99:b6:c9:0d:73:
cd:38:29:96:d0:20:3e:9b:7d:66:55:e9:06:a4:b4:
60:01:b9:84:33:59:51:3f:e5:eb:89:87:04:92:7d:
85:98:44:4e:53:fd:ac:18:a7:bb:37:14:a9:11:86:
91:15:76:7e:2c:a6:78:f4:24:c0:5d:a4:4a:b5:ca:
c3:84:89:84:00:f7:1e:ca:aa:78:09:e7:3d:ce:39:
15:cf:b2:de:cd:f4:fd:48:9e:f1:21:91:7f:d8:f2:
87:a8:4e:22:b7:97:57:5c:7a:d6:80:19:c5:33:92:
79:93:77:b9:7e:ee:b2:40:b0:10:1a:b9:e6:1d:ef:
95:9a:6f:ea:30:cd:4b:e4:19:6b:9f:90:45:5c:be:
fb:ac:d5:51:0d:51:ea:96:4c:cd:70:64:0b:0a:76:
86:7a:65:cc:7e:76:f0:eb:e6:2c:50:84:32:48:9e:
ea:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CE:15:20:E1:61:D9:E3:EA:A9:08:5F:99:34:90:90:D8:25:E3:31
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ps4VIOFh2ePqqQhfmTSQkNgl4zE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.16.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:c5:25:83:dd:91:67:6c:77:83:87:e7:07:fe:b3:af:91:39:
6d:6a:92:ad:5a:c0:44:a4:1c:48:78:59:ab:bd:ac:d1:0f:89:
fb:e0:b1:d3:12:c5:d1:ed:a2:cd:40:94:6a:77:78:33:9f:2f:
4a:fe:a2:3a:01:c8:99:44:cc:9e:76:e6:93:3a:83:67:ee:90:
f2:87:bb:0e:50:05:44:bf:14:bb:41:04:35:05:1f:88:f3:ec:
42:75:76:fa:6f:73:86:0e:3c:9a:3c:06:c5:3b:ec:0e:8c:6d:
51:64:4d:98:2a:b9:ad:4d:21:71:88:dc:ee:25:2e:a1:c2:59:
70:e4:f7:56:6b:52:01:58:fe:30:8a:ae:88:14:32:6c:86:b1:
bc:22:a5:21:ad:cb:f1:13:cf:c2:01:f0:64:47:b2:3f:9c:63:
9d:25:f7:5c:aa:6d:6d:87:5e:a4:31:45:03:8a:43:96:73:43:
34:77:58:96:7b:fb:e4:4a:53:75:0b:f3:07:31:08:f7:5b:5e:
0c:de:6c:13:2f:ce:2b:15:b9:6c:79:3d:0e:95:e8:f4:34:fc:
cc:9e:1b:1f:52:d2:9e:52:89:8c:3e:c7:c6:9f:e6:9c:48:33:
2d:30:fe:40:63:b8:66:de:84:35:71:20:9d:cf:bf:a6:ea:46:
32:05:61:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org