Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/VGzvApfQk4wpIrcs1-lqPY5vrps.roa
File: VGzvApfQk4wpIrcs1-lqPY5vrps.roa (raw, json)
Hash identifier: doi76M8EOPiAPq9UaZmZQ/BEizW0AxsY8KLep9RJj9w=
Subject key identifier: 54:6C:EF:02:97:D0:93:8C:29:22:B7:2C:D7:E9:6A:3D:8E:6F:AE:9B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 105A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VGzvApfQk4wpIrcs1-lqPY5vrps.roa
Signing time: Wed 01 Feb 2023 10:28:26 +0000
ROA not before: Wed 01 Feb 2023 10:28:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4186 (0x105a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:26 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=546CEF0297D0938C2922B72CD7E96A3D8E6FAE9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ba:74:96:9b:71:e3:57:4e:e6:1e:b0:77:5d:
2b:e9:8d:8c:c8:e9:e1:e5:36:3d:9a:a0:c0:0b:5a:
6c:e0:0c:60:0b:38:fc:d6:2f:de:af:8c:89:52:bb:
4c:63:77:ee:ac:8c:e5:8a:4b:fa:e4:e4:fd:0e:73:
b4:7f:c8:85:66:2a:43:d0:05:39:6f:5a:05:2a:5e:
89:6f:e3:4d:60:87:d0:71:12:a8:d3:b8:ac:e6:ef:
26:6e:f6:6d:b5:bc:a2:f0:f3:40:26:e9:29:50:09:
67:6b:bc:0b:e1:6d:a6:15:bb:5b:c1:5a:64:5c:65:
1f:d4:66:8f:e2:2b:14:48:1e:76:19:d6:8d:24:55:
4f:4a:df:5e:ce:37:4a:63:10:00:45:72:89:9e:d8:
86:b8:dd:08:30:93:88:8e:77:9a:1d:36:b3:b0:3a:
78:49:7a:8d:4c:8f:28:27:d4:72:3a:55:84:fc:b5:
9b:cf:54:f7:f3:ea:77:bd:c9:80:90:28:33:db:c1:
e5:c1:a0:59:4e:6c:f5:af:05:fb:6f:d1:85:d1:89:
d6:06:a3:2b:11:db:2b:83:fe:b5:ab:e5:82:a2:d3:
9a:c5:22:01:e2:91:15:04:e2:ee:96:4c:ab:d3:7c:
e1:c8:df:6e:e4:0e:ec:fb:bf:ef:88:b9:52:35:7e:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6C:EF:02:97:D0:93:8C:29:22:B7:2C:D7:E9:6A:3D:8E:6F:AE:9B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VGzvApfQk4wpIrcs1-lqPY5vrps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:44:09:c5:ac:cb:95:73:45:68:44:ed:50:ed:7e:cc:8e:02:
69:8b:5f:55:ec:0c:1b:da:01:00:00:79:1d:ef:5c:20:eb:81:
1e:7f:b0:d6:f8:01:c2:b3:09:a5:65:03:42:83:ea:89:0d:59:
ba:9b:63:e3:f5:10:e1:88:77:00:3d:24:8f:2f:53:36:fb:d1:
c9:a6:e2:fb:1e:c5:65:59:b4:76:ef:a0:d8:1f:57:63:4c:d7:
e8:a0:be:3f:83:4f:41:8a:2c:fd:4f:84:0a:f3:75:a1:85:0f:
7c:65:50:a8:26:ce:eb:01:b3:ea:67:cb:b8:60:9b:31:9e:a0:
20:17:12:c6:0f:06:12:56:22:bc:4e:bc:a8:30:3a:07:55:cc:
49:d8:a8:33:5d:c5:f4:3e:0b:ea:d5:8e:98:a8:e2:d3:0f:ac:
76:64:54:ab:94:2b:4c:43:0b:aa:8e:00:65:fd:fb:28:9f:9b:
46:75:0a:7b:fe:50:7b:d9:97:7c:c1:f3:9f:ea:77:46:68:47:
71:aa:f2:1a:8a:ff:a7:48:ce:96:d6:d8:15:06:9f:99:ee:9d:
2b:6d:a6:58:4c:ec:78:34:40:f4:89:25:7f:e9:57:a1:9b:1c:
9b:18:37:03:1c:3b:f5:a0:79:5d:fc:42:97:b2:c7:d8:17:82:
48:19:9e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org