Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TkO2irbKTnbO6Tyo8YU5gg1HN-w.roa
File: TkO2irbKTnbO6Tyo8YU5gg1HN-w.roa (raw, json)
Hash identifier: I6gxi0tGcb57O+LkpufKrN7pH9gvbSsyVjDOK65M9uY=
Subject key identifier: 4E:43:B6:8A:B6:CA:4E:76:CE:E9:3C:A8:F1:85:39:82:0D:47:37:EC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TkO2irbKTnbO6Tyo8YU5gg1HN-w.roa
Signing time: Thu 15 Sep 2022 02:42:44 +0000
ROA not before: Thu 15 Sep 2022 02:42:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4E43B68AB6CA4E76CEE93CA8F18539820D4737EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:16:d8:56:3b:9d:ce:12:3c:d5:a3:e4:ec:
e0:86:b8:8b:73:ce:dc:ff:04:d8:7e:3a:bd:eb:83:
6e:e2:99:a6:c8:00:1e:3d:33:8d:b0:39:6c:d2:b5:
53:7c:6a:26:44:1d:fc:9f:2c:47:51:8d:88:1c:57:
4b:08:1d:53:20:89:7a:17:43:b1:1f:ec:d0:5f:2a:
28:df:3e:c1:d7:2d:2b:aa:bb:61:54:6c:47:c0:ed:
62:35:ab:a8:9a:3d:c6:ac:e4:94:63:36:6c:a7:98:
f4:22:18:04:2c:94:dc:57:71:68:ba:29:da:b7:70:
94:c8:94:be:fb:0c:05:eb:77:f7:ee:e2:2e:1b:9b:
5b:2f:b6:07:5c:ec:5b:be:b4:bd:3c:9c:17:d8:42:
2c:61:3e:40:5f:5b:af:bb:13:a8:96:f0:e9:1a:64:
85:ea:a4:50:b5:76:75:a0:a6:6c:66:5d:6e:ed:f9:
b7:69:c7:e1:1e:0f:c3:de:21:56:99:e9:05:b8:79:
a7:87:6f:d4:0d:d7:19:d3:f1:21:65:38:c0:08:13:
6f:97:4a:3d:2f:34:97:90:e7:77:64:e7:41:ac:44:
34:1f:d0:6f:b1:05:e9:0b:8c:87:6a:f8:af:bb:7b:
93:68:04:22:e7:0e:66:75:4f:af:24:30:16:50:6d:
f6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:43:B6:8A:B6:CA:4E:76:CE:E9:3C:A8:F1:85:39:82:0D:47:37:EC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TkO2irbKTnbO6Tyo8YU5gg1HN-w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:b5:3b:9c:ea:c3:92:3b:eb:ef:a4:35:62:64:c3:9d:79:d8:
f3:3e:ab:79:84:18:2b:65:75:34:d9:5c:8c:da:02:9f:18:b3:
d9:35:82:66:3e:ef:e1:44:67:9f:48:b4:88:c6:91:2d:30:d6:
79:92:2d:85:c1:b6:5c:b7:86:0b:dc:78:6a:74:c1:ca:31:d2:
a1:62:ef:03:4e:93:aa:09:1b:31:14:58:8a:c6:97:86:43:0d:
69:8e:77:aa:6a:86:55:1c:67:aa:1c:00:f7:39:31:d9:d5:78:
08:99:b3:92:37:60:8e:02:cd:76:bc:ba:95:1d:1f:78:01:8b:
eb:0d:30:44:56:aa:b6:6b:0b:ce:6f:aa:5d:21:36:ee:61:76:
b9:3f:aa:34:44:50:dc:ca:b9:86:d5:91:b0:80:e4:f4:c7:42:
be:b5:3b:43:03:f6:9b:ce:77:75:d6:0d:2b:fe:94:bb:d4:d2:
2d:53:2a:b8:2e:b5:bf:e0:70:1f:3c:a4:50:16:45:11:bb:20:
42:36:ef:d4:2d:7d:f9:17:2d:31:e4:b1:97:e9:c4:cf:68:c8:
2b:53:51:15:7f:e3:e4:cf:cf:3c:00:69:34:cf:ef:cf:f1:6c:
ac:98:16:c3:04:9e:7c:cb:95:97:75:74:c7:12:24:43:e7:89:
8e:7b:96:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org