Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgvG0XIaN4m9Exx6IkrwtDWYC2k.roa
File: YgvG0XIaN4m9Exx6IkrwtDWYC2k.roa (raw, json)
Hash identifier: u1GPRJ0O1resa1zZKKLPGLOFB6NktfETndeKSXh4EoM=
Subject key identifier: 62:0B:C6:D1:72:1A:37:89:BD:13:1C:7A:22:4A:F0:B4:35:98:0B:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10D4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgvG0XIaN4m9Exx6IkrwtDWYC2k.roa
Signing time: Wed 01 Feb 2023 10:29:05 +0000
ROA not before: Wed 01 Feb 2023 10:29:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.105.224.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4308 (0x10d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=620BC6D1721A3789BD131C7A224AF0B435980B69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a0:db:f0:6e:a0:44:6b:9c:f4:34:84:53:d4:
b1:d1:a6:ec:a3:34:3c:6a:b0:da:44:91:5d:d2:ec:
90:aa:49:d4:cb:92:62:e6:b2:22:f9:35:d8:e5:63:
76:12:14:1f:25:d0:1b:d1:9f:c8:f4:7c:6c:6e:fa:
ba:e1:ff:25:96:0d:28:b0:62:1b:aa:69:44:1b:aa:
6c:16:d7:2f:7c:b6:b6:7d:be:c2:6f:e4:c8:30:b5:
70:39:42:11:2c:b0:8b:63:f6:68:d9:82:31:ea:13:
7a:b7:68:f4:59:4b:2e:82:14:d0:da:e2:7c:c5:3b:
8c:bf:1e:29:e1:8f:fa:93:5e:87:80:27:d1:cf:eb:
9d:41:38:f2:39:7e:e0:9b:73:0f:22:49:3a:df:e7:
28:ad:02:b2:f5:31:0e:e1:d2:34:51:90:02:47:90:
79:95:3e:dc:7e:c7:d6:fa:53:5c:8a:ea:93:0c:88:
10:20:4b:8d:81:67:d9:9d:5d:86:73:48:b5:51:ee:
ab:98:89:41:f3:64:f4:3f:58:56:9a:b0:65:ff:60:
ae:8a:cf:22:55:d7:cd:fc:21:23:87:c3:28:80:86:
33:ff:a9:17:4a:d2:1a:68:04:08:0a:49:08:e8:5b:
51:4a:4d:a8:e7:9c:8e:a2:08:f1:37:ee:7a:f3:40:
35:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0B:C6:D1:72:1A:37:89:BD:13:1C:7A:22:4A:F0:B4:35:98:0B:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgvG0XIaN4m9Exx6IkrwtDWYC2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
63:ce:d4:fc:ed:89:9d:5e:2a:ea:a3:d5:74:00:d5:93:62:f1:
1f:f0:83:a0:4c:ee:83:ed:3b:1f:c8:7c:1e:ef:33:78:7f:20:
c5:2e:56:30:94:64:0d:e9:44:a4:e1:75:70:11:e3:74:f1:8a:
8a:00:2b:f8:b2:8f:aa:13:ac:0c:86:6b:89:0f:00:9d:87:54:
9a:ff:cb:b1:79:2b:33:02:72:e8:3f:ce:d9:40:17:d2:00:72:
66:55:1f:75:a1:3a:06:83:2d:10:b3:f9:8c:25:b7:b9:e2:af:
8e:bc:b3:b3:9e:42:82:4f:bb:26:77:e2:df:7a:35:d6:4a:cd:
a8:31:c4:05:71:24:a2:d6:56:4a:a2:cb:ef:c2:4a:cc:1b:ad:
3b:c4:3e:50:6b:97:e7:62:27:c6:bb:09:80:e5:9f:1d:86:74:
0a:5a:b4:2c:f6:2f:81:4a:c1:a2:34:f4:f6:3f:1a:69:06:15:
1c:25:ce:80:c5:b8:2d:47:21:28:08:0f:55:c7:96:e2:f5:ca:
86:56:31:8f:dc:d6:fd:af:50:a8:a8:9f:f2:da:17:b1:d4:d9:
2d:3b:7c:8f:42:b0:05:1d:34:1b:fc:bf:fc:e3:69:e0:a6:07:
18:4c:75:f8:70:6d:f7:e5:9e:78:3f:29:3d:a6:91:eb:ab:36:
81:19:06:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org