Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WaTMsR-eAWfKHLsDNT0ZZP90YRI.roa
File: WaTMsR-eAWfKHLsDNT0ZZP90YRI.roa (raw, json)
Hash identifier: AdThkL4pzCYS7ORohq2S2pdNnMUaPE2a8xAutItf9o8=
Subject key identifier: 59:A4:CC:B1:1F:9E:01:67:CA:1C:BB:03:35:3D:19:64:FF:74:61:12
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10CF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WaTMsR-eAWfKHLsDNT0ZZP90YRI.roa
Signing time: Wed 01 Feb 2023 10:29:03 +0000
ROA not before: Wed 01 Feb 2023 10:29:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 218.210.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4303 (0x10cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=59A4CCB11F9E0167CA1CBB03353D1964FF746112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:df:1a:0a:62:53:29:25:ab:c8:da:4a:79:4b:
a8:fb:bc:72:db:9e:a2:ad:45:6d:ae:59:ed:07:ce:
4e:55:b6:88:f4:f0:fc:4d:f4:eb:05:e1:5e:a3:26:
b6:12:cd:34:67:b9:2a:e8:b9:19:36:cb:0c:8b:82:
64:b5:fb:32:33:50:ee:52:40:2d:58:2e:fc:98:9b:
3f:ab:b4:d5:34:98:cd:6f:3d:57:f1:49:08:e5:28:
9f:1a:0b:11:82:9a:dd:cb:58:d1:6f:b7:65:0f:f4:
39:4d:34:ab:ae:7e:37:47:0f:b2:9f:58:dd:f9:f3:
8f:ea:a9:64:ee:d3:92:c1:55:76:83:14:60:f5:ee:
dd:f8:5f:72:9a:d6:92:c6:1a:5e:aa:da:47:a9:c9:
8f:75:b7:29:89:86:eb:23:ef:21:63:09:f3:68:b0:
79:e9:a9:3e:1c:d0:ce:53:87:b8:e5:38:f7:77:e9:
50:b5:b9:5d:85:06:da:30:f3:6d:95:9f:50:6c:b5:
ff:f5:52:be:11:c5:5a:2a:e0:a8:96:c1:a9:c2:6a:
68:cb:72:5b:b3:e2:10:8d:55:9b:4b:b9:9d:f5:18:
15:4d:61:40:f1:61:4a:55:db:bb:2e:15:c8:ce:6c:
9d:d6:92:f9:a4:57:41:28:60:12:d8:09:4d:e2:29:
54:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A4:CC:B1:1F:9E:01:67:CA:1C:BB:03:35:3D:19:64:FF:74:61:12
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WaTMsR-eAWfKHLsDNT0ZZP90YRI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.64.0/18
Signature Algorithm: sha256WithRSAEncryption
59:42:fd:dd:75:c9:84:88:cf:3c:1f:8b:b9:37:77:3f:ac:0f:
64:30:62:36:92:25:03:30:70:7b:45:9f:8c:02:3a:7e:bb:57:
02:6e:95:dd:31:64:2b:76:81:e2:02:ab:10:2f:2f:0d:37:46:
b7:3d:31:ff:2f:70:81:ec:dd:10:a5:f2:a8:c2:3d:7c:1c:99:
84:e9:72:c1:db:da:36:1a:85:7d:e2:3b:06:80:98:d7:71:07:
e1:e3:67:12:25:da:73:d0:04:2c:cc:55:f5:31:01:b9:3a:a1:
b0:10:2d:94:11:d2:57:d4:a0:0b:db:6e:77:39:9a:9e:f6:d4:
b5:9f:75:26:54:a1:1d:bb:8b:0c:34:a0:93:ce:26:6c:d9:bb:
b9:e6:f2:59:1e:fd:9b:41:c5:7c:34:4b:2b:80:67:a0:74:ef:
ae:9d:67:7e:9b:0e:00:a2:22:e2:2b:92:ea:ee:46:c8:b2:0f:
8c:6b:33:90:81:d9:8c:b6:6d:41:29:d0:06:56:9a:b4:98:5b:
db:43:43:fb:7e:3c:26:b1:7a:65:44:0a:13:0b:05:53:24:b7:
32:b2:03:15:e3:77:67:63:70:71:41:1b:be:d1:f1:d7:ca:7c:
cc:25:52:f3:94:90:b6:95:78:53:b5:b7:60:8b:57:83:38:36:
50:37:b1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org