Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TqyV9VKGs-KaMwkEwXRqtV8k338.roa
File: TqyV9VKGs-KaMwkEwXRqtV8k338.roa (raw, json)
Hash identifier: gk4HO514yoNeotZsspvyq15N6HFAJw8bk9Sachrx2pk=
Subject key identifier: 4E:AC:95:F5:52:86:B3:E2:9A:33:09:04:C1:74:6A:B5:5F:24:DF:7F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TqyV9VKGs-KaMwkEwXRqtV8k338.roa
Signing time: Wed 01 Feb 2023 10:29:10 +0000
ROA not before: Wed 01 Feb 2023 10:29:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.96.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4323 (0x10e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4EAC95F55286B3E29A330904C1746AB55F24DF7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:e6:86:d9:31:83:05:3e:1f:04:db:2d:66:
83:ae:78:c8:db:e5:35:08:d3:2e:35:5c:b6:6b:d6:
b9:e2:47:67:35:7c:04:5a:59:e1:85:66:73:70:37:
1a:df:7f:75:44:17:98:78:38:ad:35:12:4e:15:26:
8c:70:18:83:b3:fc:00:12:b3:8f:a2:cc:e8:7f:f5:
6a:47:05:79:db:cc:17:44:b4:14:83:9f:df:97:56:
43:e2:7c:c4:12:60:26:2a:2e:bd:f4:87:8d:91:9f:
b2:6d:01:cb:f9:1a:83:e6:65:10:ba:28:b7:ed:2a:
8e:5a:10:b7:b2:34:c2:be:ed:43:56:56:ef:b4:f5:
34:d8:9a:f9:55:75:3d:cb:64:fd:6b:2e:6b:c9:c9:
8d:89:23:74:00:df:fb:b1:4d:c4:be:37:c7:4f:51:
e5:56:44:eb:5e:db:2e:db:bf:54:0c:82:e9:88:7a:
a5:96:bd:16:19:88:7a:09:3a:e1:b1:08:55:eb:f6:
1e:7c:13:58:25:26:63:68:f8:38:3e:f7:ea:8c:ba:
88:e5:80:2f:7c:e5:8c:80:1d:ac:ac:b1:68:96:05:
34:d9:8e:a2:3a:1e:ab:10:0a:2f:5a:8c:e3:d4:ec:
a5:5b:4b:a8:7b:68:b5:1f:dd:83:4c:fb:c3:85:38:
03:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AC:95:F5:52:86:B3:E2:9A:33:09:04:C1:74:6A:B5:5F:24:DF:7F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TqyV9VKGs-KaMwkEwXRqtV8k338.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.96.0/19
Signature Algorithm: sha256WithRSAEncryption
42:f2:a9:eb:45:20:29:79:6b:8a:42:15:26:0b:ca:8a:48:7f:
5e:25:2e:79:b3:c6:28:8b:27:bd:2b:65:52:9b:8e:f1:7a:e7:
07:2e:df:73:b3:fb:b4:3f:93:db:5c:e3:35:eb:31:33:04:ec:
b9:2b:8e:d9:ed:12:22:d5:84:44:cf:e6:55:aa:9d:54:c0:e1:
0c:2b:b9:02:a1:67:93:9e:15:e2:32:9c:e4:7a:42:e1:5e:3e:
01:50:3e:e3:4e:67:a0:a6:36:4c:c2:1c:83:52:4e:98:da:2a:
c6:1b:3c:34:ab:82:ba:c9:e5:3a:7b:52:d3:2c:0a:fb:4a:f8:
e1:22:38:c4:3a:4b:66:7a:a4:6f:01:fd:11:80:bd:ca:71:60:
e5:53:77:80:a3:e4:88:6c:0c:dd:74:fb:02:67:c6:d9:cf:1c:
34:31:dc:53:f8:b5:bb:5f:ae:b3:ac:9c:28:c6:16:6d:39:e2:
6f:26:30:41:a4:40:20:55:1a:f4:ad:87:99:d7:de:53:ea:ae:
98:9e:c0:1c:c2:09:58:04:86:6b:db:69:70:97:d5:c6:11:f6:
06:26:05:13:1d:bb:14:af:7a:7a:80:7d:a5:52:c3:80:4d:4a:
b5:29:0a:95:19:e2:4c:e2:1f:3e:85:53:25:f3:d0:1d:f8:69:
dc:c2:c5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org