Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q6GUHPXb3MxzsbPlUtpsVcyXXAM.roa
File: Q6GUHPXb3MxzsbPlUtpsVcyXXAM.roa (raw, json)
Hash identifier: 7U/EnzLScu76ptqpgejpKhLllXgY+qcd+fyzanUCbNM=
Subject key identifier: 43:A1:94:1C:F5:DB:DC:CC:73:B1:B3:E5:52:DA:6C:55:CC:97:5C:03
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 110B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q6GUHPXb3MxzsbPlUtpsVcyXXAM.roa
Signing time: Wed 01 Feb 2023 10:29:24 +0000
ROA not before: Wed 01 Feb 2023 10:29:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 210.244.84.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4363 (0x110b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43A1941CF5DBDCCC73B1B3E552DA6C55CC975C03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f6:09:c4:35:bb:a8:b7:88:b1:04:f1:8e:ca:
76:bc:89:df:33:ae:55:48:81:69:17:e2:83:bf:5f:
35:11:fe:57:ec:d7:7d:8d:29:62:8c:df:32:0e:fb:
91:f3:fd:80:75:ab:e9:03:e8:db:c6:18:12:2e:07:
13:a3:9f:31:0e:d9:55:07:39:3f:8a:20:f3:4e:20:
18:fc:8f:f1:ec:98:7b:be:85:2c:5f:5a:e1:cd:60:
e1:ee:98:93:a2:69:ea:17:fd:d2:f7:8f:87:86:9d:
f3:a1:b6:eb:11:77:26:32:04:01:6f:7b:9b:a6:89:
71:a5:4e:2e:5b:d2:bc:fc:4d:66:c6:41:b9:f6:2f:
48:74:f6:ba:b2:91:d4:d9:d8:db:dd:8b:42:4d:29:
b3:31:36:a6:fe:44:15:8a:3a:dc:f3:e0:27:00:56:
c7:0f:bd:c4:61:d6:e4:8e:d3:8b:00:ff:dd:89:f3:
1d:f1:69:21:da:72:b9:b7:0e:bd:7a:40:02:3e:e9:
eb:9b:03:d0:23:b3:18:66:6d:49:58:87:22:dc:28:
b0:0b:d7:9c:27:64:7e:0a:c0:1d:84:51:52:1f:be:
b8:ec:eb:2f:5f:6a:6b:1a:42:0b:b1:82:b5:dc:cf:
67:85:45:40:3d:7e:a3:40:c1:5d:14:01:48:55:77:
11:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A1:94:1C:F5:DB:DC:CC:73:B1:B3:E5:52:DA:6C:55:CC:97:5C:03
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q6GUHPXb3MxzsbPlUtpsVcyXXAM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.84.0/22
Signature Algorithm: sha256WithRSAEncryption
01:83:08:69:ce:c6:b4:9c:05:df:91:4f:48:fa:fb:89:3f:52:
24:a6:75:f0:5b:5e:2f:c3:7d:ef:12:9b:a2:13:07:dd:f4:cc:
13:b5:73:0e:61:45:d8:ac:19:44:22:3b:a6:7d:82:2d:fb:b4:
37:7f:66:b8:e8:ae:31:0c:8d:c8:4b:30:64:47:f7:6f:df:e1:
32:4e:6e:b5:45:12:9b:e7:03:31:34:fe:43:af:05:e9:c0:91:
ce:e2:4b:db:36:be:1a:2b:2b:54:c6:c4:56:1d:d2:3e:b7:90:
87:ae:03:1b:2b:9c:57:a4:3c:d2:cb:14:a1:b7:03:0d:6b:c0:
f0:3a:c8:f9:5b:d4:90:84:c3:12:39:29:62:db:53:57:2d:fb:
52:67:c6:74:73:bb:31:5b:83:5f:52:80:4e:54:79:a2:3e:39:
19:d2:96:bc:44:a5:ed:05:74:fd:53:ac:84:0b:c0:17:09:ab:
45:76:3b:7e:5c:00:de:18:66:14:61:1c:c8:13:c1:60:26:0b:
da:a0:86:16:2e:bd:ad:8b:b6:4d:30:cd:db:6a:64:7f:d6:7e:
7c:87:3c:1c:bd:0b:81:3c:5c:75:10:d2:f6:cd:c5:60:8c:28:
6a:86:bc:af:95:5f:a7:81:7d:2a:5f:2c:90:b3:a3:e2:df:8e:
eb:d1:69:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org