Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA1dGyJlCceqB4IeJBZSfOWNBBU.roa
File: XA1dGyJlCceqB4IeJBZSfOWNBBU.roa (raw, json)
Hash identifier: UIn/02JEo23BZYBVln/B3rl66ldzYI0cjj048Ain8DM=
Subject key identifier: 5C:0D:5D:1B:22:65:09:C7:AA:07:82:1E:24:16:52:7C:E5:8D:04:15
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10BA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA1dGyJlCceqB4IeJBZSfOWNBBU.roa
Signing time: Wed 01 Feb 2023 10:28:57 +0000
ROA not before: Wed 01 Feb 2023 10:28:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4282 (0x10ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:57 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5C0D5D1B226509C7AA07821E2416527CE58D0415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:a2:84:e2:61:21:99:c5:9b:12:32:c3:5f:
36:ad:ca:a5:55:81:7c:dd:f1:ab:98:45:14:7b:05:
1a:48:c4:4d:64:13:4d:49:69:66:2a:e3:bc:82:c5:
ff:f2:6d:d4:47:b9:35:56:d5:6d:8f:5f:4b:df:16:
16:05:cf:a4:53:a2:95:a7:7e:af:89:b8:74:0c:90:
72:dc:44:c2:38:ee:e8:2a:81:a5:3f:4b:d6:dd:58:
7e:23:03:e3:25:ef:ff:8f:ba:07:fc:ed:9e:ae:21:
4c:94:55:bd:18:5c:b6:6b:9e:07:b6:fb:a8:bf:09:
51:cb:f7:fb:c3:92:0f:42:40:cf:39:21:67:42:2a:
bf:17:e6:a2:f7:a4:63:e3:0c:2e:da:12:c1:8f:6b:
2b:db:2e:31:77:08:5b:b2:48:18:91:63:76:32:36:
cb:3d:5a:6f:f4:1e:c4:1d:44:f9:ed:00:6e:30:e1:
dc:eb:ed:66:8b:29:b6:14:75:92:94:00:8c:12:2f:
06:a9:8e:b2:56:81:2c:ce:e5:ca:97:ef:d3:22:07:
91:a3:81:70:1d:f0:6a:39:65:bd:45:2d:bd:86:fa:
98:0c:80:3c:4a:be:76:9d:c5:ff:65:63:2b:63:c4:
41:a8:93:0b:91:6c:46:3e:ee:64:b2:0f:dd:4a:2b:
b3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0D:5D:1B:22:65:09:C7:AA:07:82:1E:24:16:52:7C:E5:8D:04:15
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA1dGyJlCceqB4IeJBZSfOWNBBU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
04:cb:fe:85:cc:fc:3c:cb:6a:58:4a:07:a1:2f:48:75:7d:2b:
af:5f:84:4a:e2:ef:e5:e3:97:ca:75:06:f0:e2:3d:98:fa:74:
62:fe:38:f3:af:ac:d4:85:c2:ab:f7:91:fc:45:73:6f:4a:6e:
45:16:4a:61:8a:c2:01:61:5c:8a:4f:29:1e:8a:aa:ba:0d:39:
4c:83:6f:42:f6:1f:6b:7e:42:22:68:ad:21:eb:d1:3c:ec:7d:
bb:5b:4e:0b:bb:88:41:7c:ac:48:3d:7e:e3:b4:14:5e:a7:82:
b2:10:e4:ef:f4:ff:be:15:2c:ba:ea:5a:f6:e7:0f:51:ed:57:
f8:28:e5:8e:f6:fe:30:aa:66:ca:49:9b:a2:e0:f8:68:dd:71:
f6:27:45:4d:dd:8d:ec:65:62:34:d3:79:35:7d:c7:85:05:32:
c3:10:7e:60:78:ff:a4:a1:98:80:12:85:38:83:ad:17:0a:93:
f4:27:c2:8e:c6:29:e7:41:e4:a5:c1:0a:a4:23:c6:0d:e5:f1:
9a:4e:f6:2f:89:b6:cd:bb:7b:e1:3f:9d:4f:98:53:55:af:e0:
04:86:6e:fb:84:a2:a6:be:9f:da:4d:6b:1b:fd:58:c3:38:be:
64:21:d4:a0:d3:a4:7e:0b:01:3b:22:82:87:d4:bf:41:61:6a:
80:5f:e3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org