Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SNdFXTr-jGf1SVsXb-Z8M5gmky8.roa
File: SNdFXTr-jGf1SVsXb-Z8M5gmky8.roa (raw, json)
Hash identifier: gl2uQ4GUvjSedgVf63RGNjD6WJxmu08DBni6hFxns98=
Subject key identifier: 48:D7:45:5D:3A:FE:8C:67:F5:49:5B:17:6F:E6:7C:33:98:26:93:2F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 108C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SNdFXTr-jGf1SVsXb-Z8M5gmky8.roa
Signing time: Wed 01 Feb 2023 10:28:42 +0000
ROA not before: Wed 01 Feb 2023 10:28:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4236 (0x108c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48D7455D3AFE8C67F5495B176FE67C339826932F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2c:b6:e4:8a:1e:b2:b9:33:ed:b0:32:6c:c7:
04:e0:ef:01:96:66:5a:e3:a2:58:68:b4:c7:19:da:
51:ae:61:06:81:c5:f5:14:57:89:74:f7:75:fa:a0:
cc:12:45:b3:79:e3:35:cb:b5:a3:cb:77:d7:1d:c6:
09:06:6b:d9:c5:83:91:be:01:db:48:c5:fa:30:91:
7d:8e:3d:f1:28:b1:2e:06:9d:68:fe:36:32:95:3f:
a0:54:6d:5f:40:7e:48:51:80:a2:dd:e4:ff:a9:97:
1e:08:84:44:bf:ab:ed:d4:d5:a9:4d:3e:9e:f4:c2:
e1:46:ed:e5:5d:81:7e:93:8d:b7:94:f6:0f:a1:f3:
13:f2:f3:8e:f1:b5:4c:ad:f2:43:de:db:1c:8a:6f:
81:21:e9:34:e6:a5:b3:66:71:11:8b:da:ad:07:27:
77:3d:b7:dd:b2:25:a7:67:e3:4b:6d:a4:50:e0:cc:
ba:bc:97:54:c2:7b:97:59:70:7f:25:37:3f:1f:96:
52:4e:0e:7b:f7:32:fc:b2:da:31:89:d1:45:af:7e:
c7:7f:3e:70:b2:f0:18:68:d0:6a:0a:22:66:c9:c7:
e9:86:98:2e:53:8d:96:1a:e5:a6:7b:78:d7:53:27:
90:14:19:42:2f:cf:8f:31:92:bf:29:be:d6:7e:70:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D7:45:5D:3A:FE:8C:67:F5:49:5B:17:6F:E6:7C:33:98:26:93:2F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SNdFXTr-jGf1SVsXb-Z8M5gmky8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:ee:60:f9:7a:4d:11:de:53:53:31:94:f1:37:54:44:7f:69:
03:fe:a1:f8:b6:01:de:0b:9b:bf:7d:e9:ae:32:9a:76:63:4c:
58:c8:f3:29:d0:8e:40:69:ea:4b:d1:d5:48:ac:d0:c2:80:44:
97:a3:bc:9d:36:a6:01:ce:28:3a:6f:a2:25:af:c7:d3:41:3b:
c4:f6:16:d1:8d:b9:26:6a:fe:bc:84:3e:82:9b:ad:03:4f:ae:
55:e4:2e:08:f2:90:3f:77:3d:b7:be:65:30:18:ca:b4:a9:de:
9d:27:49:08:94:fa:08:11:33:33:88:c8:b0:b9:e1:38:63:e7:
be:a2:fa:6b:c1:cd:67:fb:38:80:4a:2a:04:80:55:63:01:26:
99:1e:d6:c5:75:a5:ff:ba:d8:33:0d:3e:bb:b5:a8:ed:df:15:
9c:ca:8e:0b:f8:21:85:04:8e:49:3f:6b:ba:de:19:99:21:b9:
1f:55:df:bd:62:e8:76:33:f1:27:78:e2:8a:b0:5c:74:a2:fe:
9a:a6:bc:c3:d2:02:c3:54:e2:90:65:4e:83:9d:9c:65:ee:a4:
98:4d:e7:6f:81:16:21:dd:dd:1a:e8:1c:a9:4c:a5:3f:5d:e2:
1e:8e:cd:e6:df:f8:5c:cf:7c:be:56:52:8c:86:03:c7:de:46:
8d:f3:9d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org