Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm2HXgrvp9rWTNIcB1xap5UjElI.roa
File: Xm2HXgrvp9rWTNIcB1xap5UjElI.roa (raw, json)
Hash identifier: LypgfqKrhwF+mgv6X4orzcge1VDadL/3R9I05m/AVuc=
Subject key identifier: 5E:6D:87:5E:0A:EF:A7:DA:D6:4C:D2:1C:07:5C:5A:A7:95:23:12:52
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm2HXgrvp9rWTNIcB1xap5UjElI.roa
Signing time: Thu 15 Sep 2022 02:43:57 +0000
ROA not before: Thu 15 Sep 2022 02:43:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 218.210.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5E6D875E0AEFA7DAD64CD21C075C5AA795231252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:85:cd:6e:ad:5d:38:0a:99:3e:8b:bd:ee:a6:
97:7f:c4:86:2b:76:e0:0b:c9:72:3a:08:bc:66:9e:
9f:e5:c6:13:80:85:86:82:dc:7f:76:50:49:1e:7e:
ca:59:74:3d:7e:98:01:30:61:6d:74:e6:80:51:38:
fb:7c:bc:ec:f8:df:05:3e:1b:40:04:00:0e:67:22:
58:30:7d:65:60:8e:54:55:34:b7:0d:47:83:40:35:
74:df:b2:85:b7:81:de:21:02:86:08:5d:4a:bc:b0:
be:b7:35:60:db:b5:0d:0e:5f:3f:d9:ca:37:b3:98:
59:a0:24:2f:c8:0d:cf:f4:e7:5c:2d:34:9c:b3:de:
b9:0f:6d:23:b1:bd:f6:ef:55:68:51:47:07:12:cb:
32:56:e1:81:4c:6f:7e:63:14:b7:74:1a:a8:21:72:
81:cf:11:91:1b:e7:a2:a3:18:e6:0b:08:6c:34:b5:
e2:b8:23:75:d9:41:8f:da:72:7c:65:bc:4c:a7:d3:
7e:67:0d:4c:82:3b:23:da:19:da:de:e8:6e:18:75:
01:84:ce:38:4d:ee:ec:f9:66:3f:d0:22:89:32:3f:
4a:e1:d3:23:c4:3b:1a:5c:8d:5f:66:3a:72:3b:50:
72:06:cf:54:35:8b:29:f9:67:f6:dc:cf:fa:4b:53:
e7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6D:87:5E:0A:EF:A7:DA:D6:4C:D2:1C:07:5C:5A:A7:95:23:12:52
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm2HXgrvp9rWTNIcB1xap5UjElI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9f:32:b7:d2:ff:79:94:a1:6a:65:a6:c1:c3:8e:09:37:ff:8f:
af:25:05:84:17:e9:6c:cd:a4:1b:d2:72:71:f3:a9:4a:b5:e4:
f8:69:7c:7c:aa:f7:43:90:4c:9e:ec:fa:53:db:fd:07:f6:3a:
c4:cc:80:54:c7:7d:1a:2f:f8:d0:0c:01:89:5e:44:45:6a:30:
61:66:61:f9:b8:c9:74:21:b8:99:7e:a3:70:e8:2c:69:b6:b5:
ac:11:45:64:c2:9a:57:cb:7f:f3:a7:3d:23:ee:fc:cd:84:32:
29:63:e7:0f:69:2d:85:23:be:01:84:21:60:ba:9b:e6:f3:80:
96:6f:29:f7:b5:ce:f5:9c:de:bc:10:2e:f9:7f:74:05:96:2c:
99:f7:4f:af:26:7d:87:3f:d5:a0:94:35:ab:03:75:5f:e0:9c:
ee:7b:45:00:b6:8b:4e:21:50:ca:67:e9:90:73:b9:84:0d:4c:
b5:68:0b:1f:58:f6:96:cf:fb:a5:6e:eb:67:31:48:f9:ab:02:
75:2f:a5:5c:56:da:14:a9:58:2e:94:2a:da:9a:b7:b9:0a:eb:
98:7c:3e:a9:00:b4:f8:0b:15:84:de:c4:6c:0f:0d:7a:e7:a2:
59:b7:af:83:18:60:e6:51:0c:fe:96:c1:56:93:b7:47:48:f0:
92:e8:1e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org