Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Web5A1xApuhgUTRDXKxG5uVK4wE.roa
File: Web5A1xApuhgUTRDXKxG5uVK4wE.roa (raw, json)
Hash identifier: FG/+c79usqGrhkS1X3Z9djTwRa1SSO/6BDBMc2leMZU=
Subject key identifier: 59:E6:F9:03:5C:40:A6:E8:60:51:34:43:5C:AC:46:E6:E5:4A:E3:01
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10F8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Web5A1xApuhgUTRDXKxG5uVK4wE.roa
Signing time: Wed 01 Feb 2023 10:29:18 +0000
ROA not before: Wed 01 Feb 2023 10:29:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 175.183.0.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4344 (0x10f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=59E6F9035C40A6E8605134435CAC46E6E54AE301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ab:cd:e6:77:91:46:00:7c:2c:3a:83:49:05:
a5:f9:6d:1f:b4:29:bd:0c:50:fe:fc:ec:32:7b:a6:
cc:4b:b7:b6:3d:11:5e:36:d5:63:d7:3b:4b:e7:76:
90:f2:cf:a4:3f:93:4f:7d:0d:bf:4b:9c:85:66:ff:
e7:b9:bb:d4:aa:49:e9:7b:8d:61:e7:d3:95:d4:3d:
6c:9a:30:64:f4:2a:47:94:f1:99:9d:84:d0:9c:f2:
eb:09:4e:c0:75:ff:3b:7c:57:6a:78:98:14:40:1c:
83:fe:ca:09:60:76:26:d0:b9:d1:17:99:3e:76:e1:
55:ef:a4:96:69:aa:c0:ed:ba:09:e1:4a:3b:c2:17:
6d:5e:31:1f:a9:1d:b0:33:ca:c9:70:8d:5d:72:b8:
8a:b6:da:ee:8f:ab:a9:08:cb:37:98:c0:b1:53:ba:
10:8f:39:cd:c4:5c:6d:7d:e6:10:55:71:bd:f7:69:
05:21:14:45:93:79:f5:57:35:0d:58:cc:f0:02:07:
c6:fb:43:fa:7c:e2:8c:ef:8c:8a:7e:8f:27:de:2d:
2f:05:46:0e:95:26:87:fe:5f:6e:c8:20:70:74:7a:
d8:0a:76:12:43:a3:93:8e:d7:f4:4d:d0:84:d7:56:
9c:d0:9e:f5:e3:7c:1f:7a:3b:ee:66:8a:3c:75:71:
98:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E6:F9:03:5C:40:A6:E8:60:51:34:43:5C:AC:46:E6:E5:4A:E3:01
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Web5A1xApuhgUTRDXKxG5uVK4wE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:5f:ac:ca:41:3f:d0:f5:8d:c8:15:a5:da:03:71:0d:14:88:
4d:5d:80:39:2b:c6:f0:48:b9:cf:eb:49:a5:f1:53:38:2e:af:
df:6a:06:32:47:76:8b:e1:b7:00:e7:04:82:e8:fe:17:92:e5:
37:b9:28:c7:67:76:9d:5f:4e:78:88:70:76:a2:41:86:82:26:
7b:9e:8f:c0:fa:9f:ed:b1:7b:7a:3a:d9:33:bf:e5:25:77:ca:
8d:32:b9:c4:38:fb:6e:c6:d4:2e:5b:88:44:fe:6e:d6:07:74:
f3:f8:37:7b:80:79:d3:28:dc:f2:20:c1:6a:f6:d8:cf:56:e2:
18:b7:7d:23:11:d2:f8:20:b2:b4:bd:c8:c4:1b:1f:a7:00:a7:
42:51:5a:4a:32:44:0a:0e:e2:57:a8:79:e6:86:cb:75:9e:96:
15:f9:42:48:64:b7:85:f0:04:d4:7b:47:e9:78:8d:67:50:f2:
45:66:32:d6:fb:43:af:be:c7:56:01:68:70:92:c2:39:ef:3d:
a5:8d:cf:52:3d:9f:d6:a2:1f:43:31:e5:b1:5c:5e:66:55:c5:
27:0c:10:bb:1d:47:6d:35:f5:33:a0:fb:e2:a7:d9:2d:b8:7a:
13:a5:f3:8a:a1:01:b4:be:95:0b:c7:74:55:7d:41:0f:64:d3:
1d:77:f4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org