Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/USt6rDnQaOzbBAMagIASrdXg_l4.roa
File: USt6rDnQaOzbBAMagIASrdXg_l4.roa (raw, json)
Hash identifier: JGsEFWZ3kxZa6d1HoVE7SRNj/RhsnFZdsLq1PS9c7Bs=
Subject key identifier: 51:2B:7A:AC:39:D0:68:EC:DB:04:03:1A:80:80:12:AD:D5:E0:FE:5E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1064
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/USt6rDnQaOzbBAMagIASrdXg_l4.roa
Signing time: Wed 01 Feb 2023 10:28:31 +0000
ROA not before: Wed 01 Feb 2023 10:28:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.105.64.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4196 (0x1064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=512B7AAC39D068ECDB04031A808012ADD5E0FE5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:24:df:63:80:97:8f:16:ca:d7:69:b6:f0:47:
52:5e:a5:26:90:d5:a6:45:02:fb:61:ec:de:28:b0:
09:fc:37:1b:ab:0e:c4:a9:7c:a3:b6:57:5d:99:5f:
d0:9e:ec:5f:fd:11:7e:5b:00:92:2b:47:64:3c:cc:
52:da:ce:ed:89:7c:a6:1b:c6:d8:bd:6e:32:ac:e0:
31:98:2d:4a:b5:3f:cb:00:3c:70:f8:fe:18:59:be:
93:24:4e:e6:04:57:0c:61:1f:7c:58:6a:ea:51:98:
6e:e2:07:d9:3f:24:31:95:10:4d:8c:72:c9:a6:8a:
c7:41:71:05:f1:7b:b0:5e:d4:9b:9f:03:6c:0a:cc:
f5:93:ac:08:d9:39:07:e7:41:86:97:0c:5e:22:b6:
c9:eb:41:cd:75:52:ea:1a:f3:21:75:7f:53:89:75:
b1:ad:0d:a0:07:22:19:98:c9:04:3b:0d:dd:cf:a0:
65:b9:fb:27:a2:57:67:e8:de:cd:f4:5f:35:2b:ad:
a4:f2:51:bb:06:06:55:68:31:62:bf:aa:ae:3a:f9:
db:c3:7c:ff:10:e0:33:c6:6d:76:09:b2:93:eb:b8:
40:3a:27:4f:12:b9:55:a7:74:c2:45:cb:6f:61:c5:
5b:84:38:36:79:d3:cb:f7:fe:f8:2a:5e:de:6c:ec:
d7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2B:7A:AC:39:D0:68:EC:DB:04:03:1A:80:80:12:AD:D5:E0:FE:5E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/USt6rDnQaOzbBAMagIASrdXg_l4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.64.0/19
Signature Algorithm: sha256WithRSAEncryption
28:b5:72:cf:69:66:61:02:ac:00:35:45:55:81:04:9f:ed:d7:
57:a3:73:6b:4b:c7:7f:14:a3:33:dc:07:7a:38:ac:09:79:c3:
40:be:83:14:41:9c:07:28:8b:79:9c:39:00:45:79:09:81:9c:
d3:f7:20:b1:23:be:8e:8c:8c:d2:b2:e1:7b:01:b4:1e:48:52:
ca:08:5d:cd:84:94:54:20:4e:c6:4c:3c:70:be:0e:41:03:49:
36:c1:58:38:52:9d:94:da:47:94:dc:1e:5e:f3:05:17:6d:41:
1a:63:41:69:45:56:d8:fe:75:b9:28:60:61:5a:b2:37:6d:b8:
de:8c:e4:30:e7:e0:cb:a9:2c:a9:59:c9:6d:f3:20:0b:81:06:
00:5c:26:02:c4:a7:c2:2b:31:40:11:ec:8b:11:bf:fc:78:19:
94:c5:87:5c:5f:8b:8f:7b:63:84:f3:18:28:b7:75:9b:c4:aa:
1f:18:3b:ef:80:c6:07:a8:ca:14:3f:d0:d4:7b:34:1d:b5:08:
63:b3:e2:22:d3:20:30:aa:d5:44:ef:56:67:49:a6:27:a9:ee:
5f:e6:c2:16:80:10:a9:45:5d:5c:97:17:b9:4f:71:2c:84:ed:
e4:65:f8:a2:1f:8c:73:4b:01:69:58:9c:cc:65:4f:23:70:1a:
90:57:ea:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org