Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzs0Z3fm7Ovdi1XMIzij1Kno0WQ.roa
File: Xzs0Z3fm7Ovdi1XMIzij1Kno0WQ.roa (raw, json)
Hash identifier: MeUXdLsPM5C8GQ5NzrvWtvD0RDNLrmKgK3vofH1epTs=
Subject key identifier: 5F:3B:34:67:77:E6:EC:EB:DD:8B:55:CC:23:38:A3:D4:A9:E8:D1:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1087
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzs0Z3fm7Ovdi1XMIzij1Kno0WQ.roa
Signing time: Wed 01 Feb 2023 10:28:41 +0000
ROA not before: Wed 01 Feb 2023 10:28:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4231 (0x1087)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:41 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F3B346777E6ECEBDD8B55CC2338A3D4A9E8D164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fd:32:ea:ba:36:c6:5f:bf:37:d9:2b:1b:78:
8b:ba:2c:1b:02:06:27:c6:e3:55:14:b5:d6:cb:5c:
24:9d:b2:fc:7a:5b:3b:74:55:dc:8c:25:70:40:8e:
7c:f1:a6:92:68:0d:d6:d5:32:5f:79:70:0d:c3:a9:
f6:21:00:c3:67:0f:47:cc:3c:4b:f9:e4:4b:9e:1d:
4a:53:46:da:57:c2:8b:c2:6b:97:0a:c8:8a:fc:84:
42:dd:19:5f:64:0a:bd:7a:1f:1b:04:7b:57:89:3e:
e0:42:c5:73:92:b2:8c:56:14:ad:93:a5:ef:5c:27:
81:b9:e2:4d:5b:b6:4f:23:69:a1:ad:e3:9e:ec:27:
45:7f:ba:5c:12:84:25:0e:29:80:5a:e3:23:97:b7:
68:ec:1d:17:e9:a5:40:ad:75:2a:b9:85:69:c8:07:
93:7f:87:61:b1:09:85:78:ed:1c:55:fd:79:86:1f:
9c:30:2e:7f:94:73:4d:0b:9e:20:f6:25:e7:79:63:
c1:a5:f8:b8:02:97:f4:37:c7:04:b6:7c:7b:09:7e:
1a:dc:6a:d1:bf:34:ac:cc:0a:7c:bf:47:70:a3:d8:
8d:b1:6a:98:36:10:24:97:3d:a0:b4:b1:cc:81:9e:
85:db:e5:7c:21:97:e5:a5:94:5c:d8:32:ea:c6:aa:
23:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3B:34:67:77:E6:EC:EB:DD:8B:55:CC:23:38:A3:D4:A9:E8:D1:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzs0Z3fm7Ovdi1XMIzij1Kno0WQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
22:6e:1d:a7:dd:09:bd:fb:c2:a9:fd:55:df:f7:18:de:73:24:
0d:b9:9e:d8:59:ed:45:8e:4c:6c:37:55:87:5e:10:76:5c:66:
68:56:66:2f:2a:4e:c2:05:6c:0e:93:21:4e:c7:66:a5:fd:df:
aa:f6:51:af:38:8f:e8:ab:a3:48:2a:19:75:d0:cf:08:7a:fa:
42:85:87:a2:26:c4:3e:c1:ee:a2:c1:e5:30:bf:61:a8:68:16:
95:1a:88:0b:a2:bc:43:a7:fc:41:81:ae:a0:6d:17:6e:11:3b:
b7:56:7e:3c:a9:c3:11:47:95:71:d2:e9:03:43:cb:26:29:14:
11:0c:33:a4:63:33:89:98:1c:7d:0f:cf:4c:f6:75:57:af:d1:
6a:e6:24:aa:dc:a6:dd:ce:2a:27:55:b1:34:b5:52:cb:1c:ac:
92:bc:77:a0:25:cf:94:b6:c2:de:6d:bb:6a:49:ff:97:47:fb:
08:de:91:a4:be:74:6b:1e:95:e6:3d:bd:52:32:82:35:2f:f2:
7a:78:95:2b:0e:d9:64:31:ba:75:e6:2d:1e:fc:19:0e:b9:1c:
8b:e8:ba:78:cd:88:f7:1d:cf:18:39:43:ec:42:db:42:3e:b9:
2e:4b:22:a7:e0:e0:e7:a8:76:bf:d9:f1:0b:bf:81:bc:b5:d1:
60:0f:59:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org