Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RFNthFWGdVUb264BYMGobWIq-Vo.roa
File: RFNthFWGdVUb264BYMGobWIq-Vo.roa (raw, json)
Hash identifier: /1oNrivMxoF8cRz7WZSuC4pI+VTQSDqkYT8KO4OBQ2o=
Subject key identifier: 44:53:6D:84:55:86:75:55:1B:DB:AE:01:60:C1:A8:6D:62:2A:F9:5A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RFNthFWGdVUb264BYMGobWIq-Vo.roa
Signing time: Thu 15 Sep 2022 02:43:42 +0000
ROA not before: Thu 15 Sep 2022 02:43:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 122.147.164.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=44536D84558675551BDBAE0160C1A86D622AF95A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1a:8c:c5:bb:e5:9b:ae:73:fc:71:e4:b6:ac:
e4:97:48:97:32:84:85:6d:00:54:a3:61:53:19:85:
c4:81:88:76:35:b1:10:22:27:8e:38:45:d0:6e:64:
31:8f:e7:8c:55:a1:05:40:18:03:a4:5c:ea:9b:82:
05:6b:f8:ba:8f:b7:af:b6:e8:2b:1d:be:ef:bd:9a:
fe:b7:c3:56:91:38:31:d6:34:0b:6b:b1:49:27:bc:
4f:dd:be:59:cb:f0:0c:c7:e1:87:04:77:06:b3:68:
cd:fb:31:f4:77:14:40:b1:e2:c2:a7:b7:ec:f4:b2:
12:8e:d3:c5:56:ee:44:cd:5f:e4:4a:34:d2:17:a4:
a1:2d:b8:bf:13:2b:3b:16:a0:b3:b1:3b:96:7a:df:
e7:fd:23:b3:60:1f:0b:42:f2:6c:0c:59:4e:af:9b:
09:f1:16:1f:a9:58:10:5d:66:20:72:3d:cd:12:b8:
74:2a:20:60:47:73:12:2c:d9:8f:10:a6:ec:f0:64:
56:c9:45:bb:3e:29:d3:47:f0:0b:e0:59:49:b2:9f:
db:eb:11:b8:3b:63:c0:bf:37:af:57:f3:7f:23:af:
59:53:bd:a8:b7:f0:45:fd:9b:65:9b:f7:c9:1c:27:
57:9d:29:33:8d:19:bf:ea:47:48:df:40:e0:b5:e2:
74:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:53:6D:84:55:86:75:55:1B:DB:AE:01:60:C1:A8:6D:62:2A:F9:5A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RFNthFWGdVUb264BYMGobWIq-Vo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.164.0/23
Signature Algorithm: sha256WithRSAEncryption
74:73:4b:cf:23:9e:d5:34:76:eb:99:8e:18:7f:7a:d6:a6:12:
79:21:0d:9b:5f:cf:7d:bc:8a:35:f0:e6:06:10:3e:92:66:cb:
b0:b9:5c:3c:28:c2:42:04:f3:3e:d5:f5:6e:ef:4d:15:1b:0c:
c0:bf:92:b7:73:29:67:5f:4d:4b:2a:3c:1f:fb:a8:94:0c:23:
75:df:ba:77:21:bd:f2:8f:d4:af:8d:f2:4d:12:9c:81:27:41:
c2:56:6e:48:1a:b1:0d:b6:2b:ed:fd:76:7a:c8:b1:28:43:c8:
3e:8d:df:e8:7a:51:09:8f:c4:83:dc:6c:65:6c:6d:89:7a:87:
9b:3a:cc:25:3c:32:3c:e7:fb:0f:b5:06:10:b2:76:6b:6c:d2:
88:fb:3e:40:da:83:03:6a:30:ad:68:57:6f:e5:bd:89:68:ed:
b2:43:91:9a:47:d6:08:e8:eb:bb:ba:f6:cb:e5:78:7c:80:26:
f8:19:fd:8c:3a:9f:06:5b:92:1c:24:b9:aa:d0:46:1f:4f:5e:
e4:49:cb:99:22:9e:75:79:c6:0c:f1:0a:80:55:73:63:7b:22:
7b:22:30:2d:04:ca:ba:1c:88:b9:2e:1c:29:b5:ed:31:c3:24:
c9:7c:cd:94:9c:80:f1:5f:be:d0:b7:8d:44:f7:7c:0a:cb:4a:
28:ae:7d:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org