Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/VuzivLgArnRz8BpEc0OOIRu1JEU.roa
File: VuzivLgArnRz8BpEc0OOIRu1JEU.roa (raw, json)
Hash identifier: 6bQYFJA6enZSrgZX5bJOSNai1iJppepK8B4p7cZwp4E=
Subject key identifier: 56:EC:E2:BC:B8:00:AE:74:73:F0:1A:44:73:43:8E:21:1B:B5:24:45
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 106B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VuzivLgArnRz8BpEc0OOIRu1JEU.roa
Signing time: Wed 01 Feb 2023 10:28:33 +0000
ROA not before: Wed 01 Feb 2023 10:28:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4203 (0x106b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=56ECE2BCB800AE7473F01A4473438E211BB52445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:be:a3:10:c3:e1:4f:fc:f6:e9:1d:52:a7:f1:
5f:88:e6:1f:3d:c0:a4:46:fa:b8:37:f7:83:10:bf:
39:e9:e6:a0:65:44:3c:0b:54:e6:a5:7c:46:72:86:
da:65:9c:cc:9e:dd:3b:29:ea:c0:83:37:2f:be:ca:
00:ac:99:dd:5d:00:13:86:b7:90:1b:c0:d1:e6:51:
a7:87:29:d3:f6:8b:4e:4e:14:2a:2d:17:b0:5b:6c:
ea:ed:39:f2:4c:1f:a8:f7:d2:46:b1:23:5a:75:ad:
48:73:8c:0b:a1:e7:c9:4a:9b:57:06:40:59:fc:6a:
a6:e3:50:c1:29:7c:46:fa:03:4a:4e:b9:02:03:60:
c6:54:2b:19:2d:83:71:54:a0:99:fc:7b:52:df:1a:
02:4c:91:7b:3f:1d:2e:22:66:a6:9b:a2:35:d3:b2:
12:48:ae:64:7b:8f:fe:9d:42:f8:3b:5a:34:49:6c:
29:0c:35:43:09:09:6d:a6:5c:20:44:b5:d6:c9:4b:
bb:1e:73:4e:00:01:38:a9:70:0b:b1:43:ed:ac:f5:
5f:2a:50:f9:fc:b4:6b:89:d6:f6:ae:a4:92:2a:b5:
c7:85:59:70:30:ca:3b:a4:b3:2f:61:cf:2a:5e:56:
54:68:ce:11:a4:77:27:69:b5:a9:b6:2a:7a:f8:11:
ac:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:EC:E2:BC:B8:00:AE:74:73:F0:1A:44:73:43:8E:21:1B:B5:24:45
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VuzivLgArnRz8BpEc0OOIRu1JEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:ef:d6:02:79:fd:b6:2a:c0:c2:20:91:1d:c9:e6:d7:ea:d2:
5c:b9:34:2a:f3:c9:01:7b:22:3e:19:86:25:5e:0d:ce:97:e7:
0e:2a:3c:9f:e2:17:57:07:c6:72:bf:fa:cb:bf:4d:fa:2f:5e:
c9:3b:54:92:e7:26:47:8a:8f:c7:e7:a2:b1:d9:03:3a:7f:9b:
12:b5:dc:cf:a7:85:92:0e:3f:4a:99:eb:4f:8c:87:ac:c4:5c:
d5:2b:24:ea:bc:bf:42:4a:a4:87:16:79:7a:28:65:78:6d:92:
a1:9d:33:8f:7d:9d:9b:33:13:fd:44:f1:3a:2d:36:dd:0a:f4:
1c:f4:c0:e7:4a:61:02:90:50:82:f6:33:82:11:fa:ef:44:0d:
cb:d1:2e:fe:b9:9f:01:08:9e:38:73:1c:d8:9b:71:05:8d:4f:
0e:48:fd:03:57:48:9a:6e:2c:ab:f1:92:ca:f6:ab:39:0c:6e:
6a:5e:82:24:81:25:89:d2:ec:c6:95:16:4e:9d:3b:e0:ba:a1:
c6:6c:07:60:5f:6c:ee:38:b2:48:68:7d:98:f4:35:0d:8f:bb:
8d:90:f3:a9:74:9c:7a:67:90:24:20:80:c5:e7:8d:20:f2:f2:
62:87:43:5b:50:d5:f0:c4:0b:39:13:ab:fb:36:0f:88:46:48:
7a:03:2c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org