Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QGfCWi0XjisWX2Dm0TDK-06LiEc.roa
File: QGfCWi0XjisWX2Dm0TDK-06LiEc.roa (raw, json)
Hash identifier: 0lC42uFV3wh2Z4EvjLvcGC2m+2KQJmhK2P22tf40yL8=
Subject key identifier: 40:67:C2:5A:2D:17:8E:2B:16:5F:60:E6:D1:30:CA:FB:4E:8B:88:47
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QGfCWi0XjisWX2Dm0TDK-06LiEc.roa
Signing time: Thu 15 Sep 2022 02:42:50 +0000
ROA not before: Thu 15 Sep 2022 02:42:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.96.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4067C25A2D178E2B165F60E6D130CAFB4E8B8847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:94:14:4f:e8:2b:a7:61:19:8f:80:2f:b3:e4:
0b:7c:1f:c9:1b:36:bd:bd:33:dc:66:80:58:21:db:
dd:38:8b:9f:84:c3:e2:ed:0e:06:bc:dd:38:79:13:
f6:fa:6b:b9:d2:28:d8:2a:11:2e:5c:c5:b0:f3:9c:
10:b9:ac:03:0b:8b:0a:39:2d:85:89:99:f2:b6:d2:
57:d0:96:0d:a8:ad:51:8f:b1:04:68:19:85:60:dd:
88:02:e2:01:af:87:e7:38:87:65:64:4e:9e:ce:cb:
14:b8:7d:72:57:b5:7e:9d:8c:58:f4:e1:b1:3c:a8:
fc:ae:1d:7c:15:39:c1:8f:a8:92:01:4e:e5:0a:a2:
d4:f8:50:89:9d:12:b9:b7:c5:d8:8c:6e:02:dc:50:
e9:5b:d9:8b:36:d7:8b:a0:ce:45:4f:81:ba:cd:ba:
df:b9:69:ae:21:87:09:b1:bd:bf:74:32:76:f1:e3:
3b:6c:f3:7e:80:25:55:1a:ef:46:29:9b:ac:cd:7d:
bf:b0:ec:87:3d:47:c7:49:c1:be:1f:6b:e4:d9:c6:
54:0e:2e:76:ab:c9:9e:47:d2:7a:c5:75:38:33:27:
33:0c:cd:fe:59:14:e6:5f:c0:49:16:f1:3b:36:7b:
34:3d:72:94:f2:e9:48:c1:2a:c0:a0:39:32:95:05:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:67:C2:5A:2D:17:8E:2B:16:5F:60:E6:D1:30:CA:FB:4E:8B:88:47
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QGfCWi0XjisWX2Dm0TDK-06LiEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9b:6d:47:57:3f:5c:fb:0b:0b:ca:87:75:9f:d1:e0:61:22:5e:
92:4d:18:e6:a0:8c:68:ac:bb:69:d1:f0:c8:04:9d:cc:53:45:
91:ef:83:9a:54:90:e1:69:f5:2d:95:68:0a:30:53:f5:a3:49:
f8:08:4c:2a:9e:88:12:77:e1:0c:e4:bd:08:d3:36:4b:11:af:
b3:c3:3c:3f:61:32:8a:f1:b8:e2:c6:a3:1e:bb:4a:4d:ec:ff:
c7:f9:e1:4d:83:8b:8e:48:8e:5a:d1:56:be:05:b1:ca:ae:39:
4b:41:0e:60:bd:e7:cd:b0:5c:d5:9d:32:b6:a0:4f:8d:46:9f:
df:79:0f:cd:51:e6:34:4d:24:f6:7c:3c:10:ea:cb:ea:cd:4b:
45:17:a1:d7:56:12:0a:9e:b5:8e:a0:cd:35:35:2c:4e:e3:72:
02:0e:8f:c8:b7:06:49:d3:34:d0:54:9e:1e:73:9f:21:e5:23:
04:65:2e:e6:83:01:6c:54:68:c0:0f:58:09:f6:06:bf:f0:33:
9e:86:26:b9:61:54:9f:54:77:e3:81:42:08:20:7b:ce:b8:08:
bc:a9:15:21:11:ba:b2:2f:35:b0:32:2c:2d:e1:3a:52:b5:db:
a3:50:df:de:c2:a9:42:e6:1e:89:dd:fa:31:c5:2e:98:57:1b:
5a:e6:15:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org