Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TtY_tl6as5FPgojTKLmSEr7RIgQ.roa
File: TtY_tl6as5FPgojTKLmSEr7RIgQ.roa (raw, json)
Hash identifier: 5wpyhWr+8HQEGgLE3p7PWLgbXKQWoL5V9FF6drxvgoY=
Subject key identifier: 4E:D6:3F:B6:5E:9A:B3:91:4F:82:88:D3:28:B9:92:12:BE:D1:22:04
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CDA
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TtY_tl6as5FPgojTKLmSEr7RIgQ.roa
Signing time: Wed 01 Feb 2023 10:28:49 +0000
ROA not before: Wed 01 Feb 2023 10:28:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3290 (0xcda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4ED63FB65E9AB3914F8288D328B99212BED12204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:38:2d:12:87:a6:08:64:1d:fc:cf:b5:9e:
0e:3a:a9:cb:b6:3e:b4:64:a6:81:83:ed:15:32:05:
8e:28:04:be:c5:bb:39:86:48:8b:28:f1:9d:d7:10:
19:f0:d5:c9:6f:94:de:1e:35:1e:27:85:86:03:5b:
fc:1a:d7:fe:a7:11:6a:96:af:ed:bb:80:85:2b:ff:
38:b8:f6:ac:66:b7:e2:50:a3:1a:97:13:0f:16:4c:
7d:03:e6:76:a6:d9:ac:7c:5d:95:e0:75:e0:16:b6:
0c:4d:bf:38:1a:e0:56:fe:17:66:a7:65:95:43:32:
0d:b3:a8:23:5f:3a:a4:1c:a0:a1:78:9f:de:99:d8:
d3:79:dc:b1:a7:44:fe:77:e5:96:db:aa:f3:d0:3d:
18:bf:9c:bc:89:36:0e:41:88:e7:15:0c:c8:ac:9b:
88:1b:e8:f1:3f:e6:88:e0:92:df:75:82:4e:74:6b:
f3:a2:bf:f8:fd:26:cd:6f:ed:91:87:e9:f0:b5:e1:
23:22:9e:ca:b9:cb:7e:d4:4a:cb:f2:23:be:50:4e:
ea:1d:cf:da:c2:1a:38:20:42:de:59:1b:bd:8a:cd:
69:7c:86:f7:73:cf:53:35:74:1e:70:2b:9d:8c:54:
a8:54:8f:8f:4c:aa:01:3e:ae:4f:c8:07:9c:2b:72:
74:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D6:3F:B6:5E:9A:B3:91:4F:82:88:D3:28:B9:92:12:BE:D1:22:04
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TtY_tl6as5FPgojTKLmSEr7RIgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.128.0/18
Signature Algorithm: sha256WithRSAEncryption
17:8d:11:db:d3:bd:6a:c4:e1:82:94:4e:8d:87:02:11:9d:89:
a1:2e:71:64:17:43:b3:96:2a:61:9b:4b:64:ec:bb:57:91:85:
af:de:b1:6d:08:0e:8b:94:b8:a8:43:39:8c:ed:ba:6e:e7:aa:
ce:bc:fb:56:7b:0b:c6:f3:a9:2b:16:98:6b:51:14:d2:72:17:
6d:41:da:3b:ad:60:47:2d:3b:93:9a:58:82:bd:38:f2:85:bc:
0f:6f:47:b2:19:c7:2e:21:5b:a0:bf:fc:d4:97:e5:c3:54:d6:
68:ce:7f:c1:2e:03:e1:62:39:a7:6e:00:d6:c9:c2:90:29:d8:
70:e7:71:89:84:3e:58:a7:8b:34:c0:6c:03:b0:97:34:11:b9:
8a:d2:27:7b:22:38:82:d4:27:11:5e:97:32:52:df:cd:8a:f4:
67:c8:b8:5f:98:28:43:7c:57:80:0a:1c:55:8a:37:22:75:15:
10:b2:89:ea:8d:bc:5e:29:9b:6d:7a:49:01:ee:74:a9:cf:15:
8c:0a:b3:9d:53:ab:4b:a3:60:1d:7c:46:0b:fa:dd:31:69:3c:
62:63:14:7e:23:5d:a6:1c:f3:c7:47:c4:71:e2:60:f7:f5:8e:
85:f3:8c:3c:f9:3c:c2:17:cb:cb:05:dc:d6:74:86:ff:85:4e:
aa:5f:fe:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org