Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XW27LtuD41BcKD15Lej9syzE3Co.roa
File: XW27LtuD41BcKD15Lej9syzE3Co.roa (raw, json)
Hash identifier: YbLKAgil2D7L9rpO+imWxnRyNSASEQkFlIr3Ap4hBtA=
Subject key identifier: 5D:6D:BB:2E:DB:83:E3:50:5C:28:3D:79:2D:E8:FD:B3:2C:C4:DC:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 111B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XW27LtuD41BcKD15Lej9syzE3Co.roa
Signing time: Wed 01 Feb 2023 10:29:28 +0000
ROA not before: Wed 01 Feb 2023 10:29:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 175.182.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4379 (0x111b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5D6DBB2EDB83E3505C283D792DE8FDB32CC4DC2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:56:29:5b:a1:8f:16:a8:47:5e:ad:47:3c:84:
89:f6:ae:e5:be:4e:0b:85:75:90:93:1d:76:df:1a:
f9:d5:36:2b:bd:e6:28:d9:30:41:83:5a:af:84:52:
c2:43:fa:b5:22:7a:1c:df:a9:dc:93:fb:ec:9b:81:
e2:84:46:f8:4a:b7:bd:7b:93:7e:2e:a5:e6:cf:2e:
06:a7:61:8b:ab:73:19:a8:3d:8b:24:62:79:0e:7d:
1c:92:1f:7e:c8:2f:0d:07:e8:21:21:7b:08:23:63:
83:96:17:9c:b0:a7:b2:1a:91:57:c1:65:ab:35:ed:
13:e7:3c:02:65:56:8e:d2:84:a3:5c:b0:ce:54:73:
b5:fb:64:e9:9e:fb:dc:ba:e6:36:f4:d9:5a:aa:32:
a3:4b:ff:ed:d8:89:0e:35:5a:ab:3b:b2:76:3b:01:
10:cf:8f:9e:6c:71:68:75:18:e0:f3:2c:e1:de:8c:
13:4c:40:65:1f:5f:c2:fe:5b:f0:f7:75:bf:33:a3:
21:6b:d1:74:fe:48:c6:47:49:56:00:10:1c:8e:b1:
b3:1c:3f:42:51:14:e3:b0:a0:0e:52:da:57:1d:ec:
15:84:2c:4f:06:5b:98:dd:9b:c0:35:40:52:43:48:
5a:9d:9d:1b:3f:11:15:85:f3:f4:26:5e:d3:d3:6e:
6b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6D:BB:2E:DB:83:E3:50:5C:28:3D:79:2D:E8:FD:B3:2C:C4:DC:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XW27LtuD41BcKD15Lej9syzE3Co.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
45:27:09:fd:88:47:ea:74:07:d6:df:87:f4:54:13:16:70:b5:
ec:ed:4d:99:0a:aa:d0:e6:1e:36:82:01:41:74:9f:f6:81:59:
a6:6e:bf:e7:aa:b8:c1:05:fa:aa:99:a9:1b:aa:23:a8:86:1b:
6c:9a:13:1e:26:95:2e:88:80:92:04:27:0c:d1:99:5e:09:ec:
fb:b6:a9:8a:82:73:e7:b9:63:c1:de:09:00:33:96:5b:b4:6e:
94:ad:c4:00:6e:dc:37:f6:1e:1e:33:cf:ce:5c:86:9d:e0:3d:
ae:1f:5a:d7:a5:dd:44:a9:f3:08:4e:2a:1b:d8:1e:2c:2e:3b:
d4:f0:ed:6c:5f:04:2f:28:f5:4f:f3:fc:b0:de:9a:e6:e2:bd:
44:7a:1c:be:3a:19:30:a4:77:38:ad:d5:da:63:ff:9a:43:65:
27:5d:cc:59:23:c4:60:cb:23:5f:60:df:19:9d:73:e4:dc:23:
1b:c6:d6:a3:66:39:99:8c:28:08:93:11:45:a3:dc:20:6e:0a:
e6:af:8f:56:f5:aa:c3:c1:fa:fb:a7:ee:ab:82:39:02:96:e0:
34:7a:1c:a9:57:04:f0:22:c9:f4:98:fe:63:c6:04:1b:e3:92:
68:92:3d:44:1a:40:86:76:49:95:64:2f:68:6a:c9:24:84:8b:
e0:da:61:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org