Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3uK8NxzUWtPOTZRDViQO1mz76I.roa
File: Y3uK8NxzUWtPOTZRDViQO1mz76I.roa (raw, json)
Hash identifier: Cp5VhhXmnSzb5AsjQORiOYHRqEBt+RUT9Abs+ZlWpNw=
Subject key identifier: 63:7B:8A:F0:DC:73:51:6B:4F:39:36:51:0D:58:90:3B:59:B3:EF:A2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3uK8NxzUWtPOTZRDViQO1mz76I.roa
Signing time: Thu 15 Sep 2022 02:42:55 +0000
ROA not before: Thu 15 Sep 2022 02:42:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 106.105.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=637B8AF0DC73516B4F3936510D58903B59B3EFA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:da:63:94:d5:f4:ab:fa:d6:5c:66:75:09:
96:64:0d:e8:9f:c8:ee:ed:44:81:67:4b:fa:38:39:
83:10:0d:be:20:60:da:d9:04:47:02:8d:d4:0c:8b:
c1:9e:af:b5:bf:2a:36:a1:27:1d:0a:ee:6c:d6:70:
57:9d:f6:c2:27:2a:b9:db:fd:a7:78:f1:8a:e3:39:
ba:3e:3c:35:19:b9:71:13:a8:8b:ec:01:e7:7c:da:
37:e0:f9:84:b5:f7:23:0f:a4:a7:fa:c2:8f:e3:3d:
e3:3f:50:c7:72:4d:e9:05:e5:ed:b9:b9:1b:29:bf:
65:f3:c0:6a:14:77:62:d0:60:f8:f1:f8:6f:a1:95:
f6:5f:d6:49:2a:ec:da:04:a7:ba:d0:5a:8c:a4:99:
2c:90:16:89:8b:f7:f6:fb:d3:87:4b:be:42:68:b5:
4a:ce:dc:51:c9:1e:10:b7:af:a6:ee:ec:3c:f6:2c:
4c:84:ff:57:38:36:90:50:d6:c8:49:4b:b2:b1:cd:
22:55:69:0b:11:a8:03:59:02:87:64:ac:0e:15:ff:
01:c4:f8:bc:f6:16:47:f0:54:5a:d1:96:ea:1e:de:
49:36:53:12:42:d1:e9:f7:46:76:91:46:a0:4c:ef:
ae:9f:7f:db:30:cd:e6:55:44:0f:b6:78:f3:0d:8b:
8c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7B:8A:F0:DC:73:51:6B:4F:39:36:51:0D:58:90:3B:59:B3:EF:A2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3uK8NxzUWtPOTZRDViQO1mz76I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/20
Signature Algorithm: sha256WithRSAEncryption
09:d6:1a:16:23:c2:06:7e:ee:f6:ec:d6:af:e9:4a:1f:29:12:
ae:04:d1:b3:2d:1b:63:0f:86:b4:f4:d9:00:42:33:20:32:79:
64:3b:f8:31:0f:72:c9:95:cc:f5:bc:d2:b6:22:e8:db:72:6a:
da:d5:c7:42:0d:0b:34:1f:76:9e:d6:87:f3:47:e2:5c:85:c4:
04:af:4e:a0:b2:0c:92:49:73:98:2e:b1:7a:e1:2d:18:26:5b:
e1:75:dd:9b:fb:36:91:4e:99:28:61:4d:b8:6c:f6:78:de:5d:
d6:b9:60:0d:66:f6:70:43:ea:d5:2e:1e:33:a0:9c:15:3c:4e:
c6:dc:59:ae:f3:b6:d1:d0:98:7d:37:7c:98:35:f6:ba:53:a6:
33:3b:39:a8:79:85:3b:f8:8a:24:fb:42:c0:28:17:f6:77:e4:
f9:21:39:d1:39:cc:4c:7d:97:f7:b2:0f:03:1b:6e:d4:8e:06:
3b:3f:4c:f9:bd:e2:88:72:1a:38:21:a5:bc:9c:8f:75:e4:fd:
35:3f:4a:24:46:56:56:7b:09:d6:42:b0:f1:c5:cb:2e:bf:ad:
dc:8f:ea:f1:5a:bc:08:f2:3e:2c:40:8d:34:e5:b1:2e:60:f9:
c6:94:66:97:fe:b1:57:98:5e:ac:84:c6:c9:93:40:a4:3f:56:
77:b8:89:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org