Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UnuJ2P6i-dTEwelctyNo9YGCHWU.roa
File: UnuJ2P6i-dTEwelctyNo9YGCHWU.roa (raw, json)
Hash identifier: kgmvhf6U3uSxh4z988m1/zsmuU68JvTpG/aatwdp4P0=
Subject key identifier: 52:7B:89:D8:FE:A2:F9:D4:C4:C1:E9:5C:B7:23:68:F5:81:82:1D:65
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1168
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UnuJ2P6i-dTEwelctyNo9YGCHWU.roa
Signing time: Fri 07 Apr 2023 00:52:14 +0000
ROA not before: Fri 07 Apr 2023 00:52:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 60.245.112.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4456 (0x1168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 7 00:52:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=527B89D8FEA2F9D4C4C1E95CB72368F581821D65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ff:da:dd:c5:e2:ff:70:a8:83:6c:f8:52:d3:
30:1e:69:93:6a:5b:35:4a:5b:3c:15:1c:0e:1b:ba:
2c:fc:4d:aa:de:af:65:31:26:13:46:f6:00:93:17:
dc:a1:7a:8e:b1:ee:0f:fb:ae:e6:51:33:50:1a:bd:
91:6a:d0:f6:03:a3:b2:de:f9:ec:b8:d1:90:dc:b8:
6a:26:c6:1b:b2:19:b2:19:77:60:48:1b:db:45:f8:
d2:dd:34:b5:0b:61:59:7c:d3:d2:be:f0:21:b4:5e:
b4:c8:2b:4e:bd:c0:95:50:ba:be:74:f6:f9:d4:fb:
a7:03:89:d8:43:74:c8:dd:c0:58:46:e8:ef:02:89:
d6:f8:1b:d7:93:1f:d9:e5:0d:c5:6e:41:ad:23:93:
34:9b:63:c9:fd:c3:d6:49:7d:79:a6:2a:0a:28:44:
d5:91:19:92:f3:c1:3f:a5:11:68:3f:f6:a7:5c:4d:
8a:ad:f2:80:94:7e:e6:bb:40:36:63:2d:cb:da:0d:
5c:4b:6e:ad:32:87:6f:43:24:e7:cc:03:3a:90:f6:
e8:ff:5d:9a:b4:ba:17:51:b3:ac:b5:04:33:a2:ed:
f1:98:4f:05:3f:93:a6:61:3a:01:a8:56:92:be:32:
68:51:24:75:35:5a:00:c0:dc:4d:7a:b6:21:6c:08:
ac:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7B:89:D8:FE:A2:F9:D4:C4:C1:E9:5C:B7:23:68:F5:81:82:1D:65
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UnuJ2P6i-dTEwelctyNo9YGCHWU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.112.0/21
Signature Algorithm: sha256WithRSAEncryption
42:fc:82:0d:70:62:62:f4:4f:4d:88:55:87:48:0f:09:81:c1:
b5:fa:2f:27:ee:fc:e3:6a:29:b0:8d:a6:ed:6a:7e:53:72:5f:
51:ca:49:58:11:a5:ed:34:55:70:4c:b1:dd:c3:ad:ec:2e:5d:
67:ce:8a:93:61:9f:97:11:3f:10:ba:63:c7:28:cf:06:0a:86:
da:d3:f4:c2:6f:7c:b6:d8:61:cf:22:f9:d6:1e:8b:39:66:d7:
17:55:e5:cc:0c:6d:77:ba:2f:42:0b:40:ca:2d:78:9e:44:13:
e1:27:1a:96:1c:12:28:40:1b:be:63:b5:48:7f:8a:9b:7e:fa:
d7:f3:ba:4c:7c:cc:21:37:76:24:73:61:58:4b:fa:77:b0:e9:
05:3f:68:52:f9:60:73:65:2d:62:f3:86:44:fb:61:50:98:f4:
3c:22:ed:af:f3:21:d4:bf:e1:8b:20:b5:89:85:07:cf:a3:6d:
c4:06:54:78:db:70:f3:e5:f1:9a:a2:16:1c:d1:76:07:9c:31:
28:97:b7:89:19:36:3f:48:3e:16:ba:86:8c:19:0a:51:94:33:
8d:e1:a8:3b:f7:52:92:81:4a:01:43:1d:6f:a3:93:58:ce:60:
85:aa:3c:df:d7:cc:0f:8f:78:ae:f2:af:a3:a4:be:fc:12:04:
89:5f:9f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org