Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XNLy25IhdiIveqjftI_nKkmGy_c.roa
File: XNLy25IhdiIveqjftI_nKkmGy_c.roa (raw, json)
Hash identifier: gx47KYTIBTKUev84MNItD+VXAJ26xbqoxOJgtp/IF0A=
Subject key identifier: 5C:D2:F2:DB:92:21:76:22:2F:7A:A8:DF:B4:8F:E7:2A:49:86:CB:F7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XNLy25IhdiIveqjftI_nKkmGy_c.roa
Signing time: Thu 15 Sep 2022 02:43:26 +0000
ROA not before: Thu 15 Sep 2022 02:43:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.252.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5CD2F2DB922176222F7AA8DFB48FE72A4986CBF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4f:89:c2:37:90:1a:62:85:81:10:08:ff:12:
60:e1:37:53:48:70:14:23:82:fd:d5:f7:97:86:8f:
3f:14:75:d3:5b:76:4d:de:2d:8e:a9:16:89:cb:56:
ea:e6:c8:bf:6d:eb:9d:97:48:99:00:d0:7a:c2:4a:
78:a5:b6:d4:62:21:4b:2f:9e:e1:fe:e4:83:b6:48:
67:d6:bd:8e:4b:a9:19:0a:b5:98:87:14:e2:c8:82:
1b:a5:43:7f:64:71:b6:c6:db:97:7b:28:f3:18:57:
ea:8f:bd:c3:bb:b4:a1:eb:dd:a3:29:f4:24:88:18:
32:00:a1:c1:72:a2:27:59:47:81:cc:d0:d1:86:ad:
e9:0a:bc:d8:63:56:dd:7c:0d:d0:84:0f:09:21:98:
60:4c:75:9b:f9:ee:17:61:ed:8f:9e:8a:07:10:5f:
fb:4c:dd:ba:47:b5:08:f5:4a:65:f7:21:05:1d:0c:
ec:4e:94:28:8e:65:75:a2:09:f9:52:9c:9b:81:1c:
fd:bc:13:22:3a:ba:a5:6d:55:f3:79:3b:2d:af:41:
9a:24:56:3d:5c:55:80:7c:44:e3:12:1f:b7:9c:ce:
2d:30:96:6f:09:d6:41:d6:a6:10:ff:25:ea:73:0c:
1b:35:41:75:b2:12:84:2d:c1:2e:54:b4:58:71:df:
90:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D2:F2:DB:92:21:76:22:2F:7A:A8:DF:B4:8F:E7:2A:49:86:CB:F7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XNLy25IhdiIveqjftI_nKkmGy_c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.252.0/22
Signature Algorithm: sha256WithRSAEncryption
91:39:9a:7c:d9:b9:2f:68:66:2d:6d:47:32:f1:29:29:54:69:
b5:b0:a6:c7:6f:87:a2:24:04:c2:30:be:fc:1a:66:e3:3e:57:
89:aa:c9:cf:9f:b2:3c:02:a4:05:b7:97:2a:73:06:9c:71:ed:
db:99:d8:f2:d4:c6:5f:fe:0f:b5:b8:21:35:a6:0a:bc:d5:f4:
11:ab:7d:c7:92:01:c7:ec:44:d6:5b:54:49:c8:81:8c:fd:6c:
fc:ae:5d:6a:40:02:83:3e:8e:95:55:78:29:cb:b1:e2:16:e4:
9e:57:a9:ac:46:ab:e9:ce:28:ec:86:99:34:4e:d2:17:16:e0:
cf:e8:3d:7d:8c:bf:3b:4c:5b:88:4c:9c:cd:76:a2:0b:05:18:
86:24:80:51:dc:c4:d1:1d:1f:63:01:da:98:2a:a6:74:ba:ad:
35:e5:46:28:e7:d4:1f:52:fe:06:67:11:8a:8a:f0:d3:c4:ad:
c4:0c:16:df:b4:5a:d7:e6:2c:d3:df:f4:b3:34:ab:81:c9:42:
72:c8:69:29:6a:87:ce:1f:7a:13:a9:b3:46:4c:17:2e:30:83:
e3:e7:2c:4c:e3:36:ef:00:ef:06:05:83:2d:83:95:3f:07:7a:
9f:71:96:79:02:4f:df:64:3d:2e:da:f4:b2:65:f2:e4:68:40:
10:84:1f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org