Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QlGop920aR4DgrkIhbzz8fiuagU.roa
File: QlGop920aR4DgrkIhbzz8fiuagU.roa (raw, json)
Hash identifier: IP9J2jEkiXo72zDadh0Jd0EHQkgZnAuAvhP5lEGqvx4=
Subject key identifier: 42:51:A8:A7:DD:B4:69:1E:03:82:B9:08:85:BC:F3:F1:F8:AE:6A:05
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QlGop920aR4DgrkIhbzz8fiuagU.roa
Signing time: Thu 15 Sep 2022 02:42:46 +0000
ROA not before: Thu 15 Sep 2022 02:42:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.205.32.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4251A8A7DDB4691E0382B90885BCF3F1F8AE6A05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ef:bb:cf:c8:cd:e1:a1:d7:d3:73:50:43:f9:
23:29:7c:5b:5b:c5:9a:58:72:4a:d3:e3:e0:49:db:
66:f7:50:cd:c7:5e:37:1c:bf:37:fe:4d:05:3a:ac:
92:2d:08:0a:ea:6d:ac:68:f1:e0:6f:51:2a:47:b3:
1e:bc:f5:35:ac:21:48:ab:ab:81:ce:4f:26:92:35:
e1:17:b5:8a:22:99:ee:ee:9d:03:be:24:e0:4e:2a:
2d:9f:0d:bc:5d:a5:91:a9:1c:2e:e0:9e:f2:89:a9:
00:42:5a:c3:78:af:83:01:43:b9:5d:87:67:e2:d6:
d9:17:59:53:f8:7f:0b:7c:fd:eb:6f:8f:c2:c6:5e:
44:28:17:16:8a:9c:68:83:66:31:bb:47:88:c3:c5:
bf:2f:7c:33:d8:09:ad:dd:cd:24:82:79:c5:a8:25:
86:ab:d1:d6:da:81:14:fb:82:ba:d3:5a:98:b4:51:
62:a5:0b:42:49:01:f8:df:9e:10:07:42:85:6e:59:
25:74:d2:af:39:38:72:b6:f6:26:72:4c:fb:13:52:
dc:25:cc:91:94:ef:33:13:7f:17:24:94:dc:01:67:
24:cd:c8:8c:61:9e:66:a2:24:42:d6:fe:d8:00:04:
8c:8d:88:e6:df:97:8e:e6:18:ef:2a:3d:ec:28:9d:
49:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:51:A8:A7:DD:B4:69:1E:03:82:B9:08:85:BC:F3:F1:F8:AE:6A:05
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QlGop920aR4DgrkIhbzz8fiuagU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.32.0/19
Signature Algorithm: sha256WithRSAEncryption
23:77:21:fd:e6:5e:81:22:6c:9a:60:85:98:71:1f:ac:ae:60:
5e:9f:ce:82:2b:a3:e5:3b:d0:a7:8a:a5:c6:cc:89:a4:31:88:
c5:ef:96:7c:7b:3c:a2:6f:dc:07:b8:11:d4:cf:fa:3f:dc:58:
64:53:79:e8:82:6d:c8:85:f4:ea:12:a3:96:4b:a2:10:19:e5:
1d:91:e9:8c:ef:e1:0d:e6:53:78:75:13:56:6a:da:49:78:0b:
f9:c3:4f:9b:f6:44:b4:60:54:84:f2:82:c5:b8:19:8a:95:f0:
a1:31:0e:85:cb:b0:52:2f:da:2c:ee:a4:0e:b0:15:ce:c7:a5:
6c:cb:49:9a:a8:cb:fc:8c:0e:f1:fe:07:a7:2d:5c:9f:e5:aa:
f9:05:d9:28:74:ce:92:47:97:32:e6:a6:9d:fa:9c:dd:99:58:
e6:42:10:7b:ff:79:6b:49:c4:a9:91:2f:37:55:4d:41:6d:a6:
fd:c8:23:06:cb:ea:bf:a8:75:af:cb:a7:f7:1d:5a:0d:c4:56:
53:77:ea:73:ad:74:53:ed:5e:e3:ee:a1:86:2b:ff:84:c8:b5:
60:35:ef:fe:21:0e:29:05:e5:e8:22:ed:ba:d6:14:e7:3f:29:
7a:8a:13:ad:d2:e9:96:41:48:ee:8a:ee:d2:cf:75:4f:e9:64:
fb:10:74:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org