Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXlSajaLVTcoVELL3x9w5nK2Wyg.roa
File: WXlSajaLVTcoVELL3x9w5nK2Wyg.roa (raw, json)
Hash identifier: HrhOQvWxOhpCe0YxVbB2XyDdHhlqmLFOaS8ACqMLI3M=
Subject key identifier: 59:79:52:6A:36:8B:55:37:28:54:42:CB:DF:1F:70:E6:72:B6:5B:28
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXlSajaLVTcoVELL3x9w5nK2Wyg.roa
Signing time: Thu 15 Sep 2022 02:42:45 +0000
ROA not before: Thu 15 Sep 2022 02:42:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5979526A368B5537285442CBDF1F70E672B65B28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:83:6e:a3:99:7a:d7:4f:54:c5:8a:07:85:
23:bd:43:1b:6b:ee:e6:a2:8e:ca:21:b4:c4:60:a3:
9d:b7:2f:13:9d:b3:3d:3d:ed:5c:3c:f6:55:e2:ee:
27:4d:dc:81:4d:32:12:30:c9:c1:86:aa:bf:81:b3:
f0:e9:02:69:e7:9a:06:ce:cf:7b:d1:fa:54:10:52:
c3:8b:3e:d4:d3:28:90:dd:93:27:1b:dc:27:a6:4f:
9b:f0:d8:f3:c7:d2:7f:e3:96:41:1e:40:e7:d4:df:
31:30:cc:97:b5:f8:05:49:2f:8f:ed:aa:5d:ca:db:
11:6f:40:ed:3a:a1:d1:65:b9:98:38:21:fd:ee:4b:
5f:6a:37:8a:9d:29:e6:ea:ca:fa:a6:cc:a6:7b:88:
c6:92:73:eb:d7:0b:16:ba:44:61:4b:ca:a6:71:a7:
1d:1f:6a:12:b0:93:36:6d:5d:04:98:a7:ae:55:37:
0b:e7:f9:5e:88:12:0e:fa:68:83:3a:74:60:6e:e6:
ee:2c:15:d1:d9:68:fe:c5:0d:96:e3:a8:28:8c:7b:
74:bd:b6:0c:1a:4d:45:49:8f:8a:3f:d4:3c:27:24:
10:41:c1:77:d6:29:19:a7:e2:1d:4a:a7:18:f9:7f:
39:ab:9c:39:25:54:33:38:10:57:f5:ac:79:8e:46:
44:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:79:52:6A:36:8B:55:37:28:54:42:CB:DF:1F:70:E6:72:B6:5B:28
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXlSajaLVTcoVELL3x9w5nK2Wyg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:35:65:e2:67:01:f2:cf:8c:c3:42:5e:cb:64:b2:be:35:61:
0f:5e:48:d9:61:56:8d:d3:dc:89:fd:ce:77:00:84:77:d4:97:
df:51:70:35:87:d8:5a:1d:a9:ef:02:57:37:ce:b2:ec:82:9c:
00:9f:a0:06:ee:ae:d0:d6:65:5b:ee:4f:e4:da:25:e1:6b:de:
7f:8d:a8:5c:82:8a:1e:fc:a5:f9:d1:87:37:b4:29:2a:0d:b8:
7f:15:f2:2c:36:94:c2:d6:62:56:d1:0a:d0:c8:87:17:74:28:
d0:72:16:8a:7e:f5:c9:e2:b9:a6:bf:5b:1e:3e:f8:f2:e8:4f:
aa:4d:b5:27:a1:e5:6f:aa:33:73:f9:fd:54:14:fa:c6:c5:05:
5a:de:f6:46:d7:05:9d:c5:da:7f:8e:1e:5b:c8:04:6b:de:46:
a4:6b:ce:4d:99:e2:dd:9e:3a:a4:af:61:ef:a2:8c:5e:ee:92:
3f:f5:68:b7:64:8f:fd:c6:ba:6e:37:84:c0:5a:a5:d3:1e:e8:
ec:33:df:98:f1:5b:43:83:8c:60:14:be:1b:e1:d0:5b:de:cc:
bb:84:d3:2b:b6:61:ed:88:a3:50:7d:00:b9:1c:bc:31:c9:7f:
ca:64:60:78:0d:4d:b7:72:14:e8:b6:7f:9a:08:dd:3b:c4:7c:
36:f1:04:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org