Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wrj_qLPu2ig7sZbtwp_-vGQoOy0.roa
File: Wrj_qLPu2ig7sZbtwp_-vGQoOy0.roa (raw, json)
Hash identifier: zKGRoPe01U0AWInsQIG2qbO+8/A9ry8fwtr6yMpK2QU=
Subject key identifier: 5A:B8:FF:A8:B3:EE:DA:28:3B:B1:96:ED:C2:9F:FE:BC:64:28:3B:2D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wrj_qLPu2ig7sZbtwp_-vGQoOy0.roa
Signing time: Wed 01 Feb 2023 10:29:09 +0000
ROA not before: Wed 01 Feb 2023 10:29:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 23675
IP address blocks: 106.105.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4320 (0x10e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:09 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5AB8FFA8B3EEDA283BB196EDC29FFEBC64283B2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:36:91:f4:b7:ef:bd:d6:a2:9a:d8:73:51:
96:f1:b9:5c:a8:a2:d0:41:ac:4d:57:24:fb:bb:29:
c8:67:5f:fe:4d:a9:7c:94:e7:b4:97:90:aa:08:e8:
f2:8e:6c:6c:13:1e:9e:cd:df:90:4c:f2:3c:75:cb:
a4:7a:12:c0:0c:b5:ba:54:d0:6b:59:3c:29:e0:30:
30:08:2b:4c:51:f2:0d:bb:2d:a3:b3:7e:40:ec:be:
b1:1f:bd:6f:6d:d4:02:c0:f1:4d:ec:3e:bf:35:b8:
b6:1e:96:15:eb:83:7e:dd:0a:82:0a:63:9a:2f:19:
d4:7d:0e:2f:50:c8:7a:20:b2:d3:ef:f5:77:a0:2f:
6b:4e:df:dd:ed:ee:8e:49:ab:6d:23:af:7c:e9:f8:
0f:11:2b:1b:ad:14:fa:eb:c0:8c:56:54:ab:d5:9c:
a2:9d:17:3c:6f:5a:d3:ac:b6:93:99:92:bb:7b:6c:
24:d4:06:63:4d:27:df:29:ec:64:71:ae:89:e4:b3:
46:aa:7a:38:ac:8f:71:e1:c3:63:3a:d7:87:92:39:
e9:9a:4f:bd:39:81:24:ea:03:94:1f:ac:25:1c:67:
ac:13:6c:ba:95:83:61:eb:b0:83:54:c8:8b:58:79:
e8:50:12:3e:23:82:99:ca:1a:24:d3:f4:01:00:ed:
71:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B8:FF:A8:B3:EE:DA:28:3B:B1:96:ED:C2:9F:FE:BC:64:28:3B:2D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wrj_qLPu2ig7sZbtwp_-vGQoOy0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.110.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:34:32:ea:df:b3:a0:81:02:de:8d:f1:04:88:52:51:56:22:
f5:19:f5:1d:bb:57:46:bd:ae:52:64:a1:03:16:42:38:60:2c:
c9:f5:8a:f0:02:d4:c5:bc:00:be:e7:32:7c:7d:46:d8:1b:b7:
b4:6d:ed:03:71:99:86:5b:2a:60:b0:ac:5f:6e:d7:60:19:7d:
fb:dd:58:91:f1:e7:be:2a:81:75:6a:83:4e:ad:45:81:e9:dd:
e5:f2:64:8e:21:4f:cb:31:50:61:68:16:19:38:cd:2f:2d:d7:
1f:61:ba:b6:e7:af:aa:38:2e:77:c8:d0:ac:1d:d1:bf:2b:21:
5f:f8:31:b9:95:c1:5d:5c:35:8a:22:93:bf:2a:76:36:24:93:
da:42:79:13:16:85:c2:36:d5:22:01:a0:5a:0e:51:e8:ab:6d:
1c:37:ec:a4:63:32:e0:28:f5:75:a9:50:0a:b8:c2:bc:b1:6d:
6d:41:58:a5:49:b5:e5:24:1b:40:38:67:d8:75:e4:e3:c6:cf:
8e:dc:e7:d0:27:dc:99:d6:2a:3a:6c:ef:a4:d0:cf:5c:33:d3:
40:f3:cb:79:c0:86:8d:33:d0:08:5e:f6:aa:ed:45:3e:80:e4:
d0:f1:31:41:02:73:a4:cd:7a:2b:0b:4f:72:05:25:91:63:95:
3d:55:29:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org