Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YmiHPzWA018TO4BXgike2zPrqMs.roa
File: YmiHPzWA018TO4BXgike2zPrqMs.roa (raw, json)
Hash identifier: Vra8BalFx6wNcAodM6moEfYk9DcnaPPQkIn4rrKAWNU=
Subject key identifier: 62:68:87:3F:35:80:D3:5F:13:3B:80:57:82:29:1E:DB:33:EB:A8:CB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YmiHPzWA018TO4BXgike2zPrqMs.roa
Signing time: Thu 15 Sep 2022 02:43:18 +0000
ROA not before: Thu 15 Sep 2022 02:43:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.168.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6268873F3580D35F133B805782291EDB33EBA8CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:7e:0d:24:b7:32:e8:b9:9c:c1:35:77:68:
01:df:4c:20:83:d0:98:92:20:60:cb:f8:31:77:6b:
29:a3:9c:11:08:cd:06:78:0c:54:58:83:95:fb:85:
1e:69:a3:ec:ec:85:83:0c:2a:30:84:68:66:79:be:
63:49:80:f7:30:4e:c8:83:e0:e6:8a:15:4a:0f:83:
20:ee:9c:ad:46:26:90:b7:d9:ff:e6:36:d0:bf:cc:
07:3f:0f:2b:02:9d:96:2c:82:69:75:68:43:e4:0e:
97:6e:b4:05:7a:fd:26:e2:46:7e:25:74:aa:b3:dd:
dd:4a:a6:af:30:be:d3:ee:30:a7:10:76:2f:df:16:
70:db:59:d0:86:e1:1e:8a:60:c8:c0:ec:ae:c8:2d:
ab:06:f8:5a:d2:fd:3c:d7:95:dd:3e:e0:2b:6c:8d:
1c:76:ae:a3:bd:21:bd:8c:88:74:29:48:1f:40:05:
31:04:c5:a3:73:7c:88:41:60:3a:54:6a:15:99:16:
7e:e0:96:b5:0a:34:26:e8:47:b5:10:1f:73:a3:dc:
df:fd:11:9b:a0:40:37:a8:35:55:0f:f2:d3:85:fc:
18:fc:fe:9c:81:ca:20:b1:a7:29:88:99:89:48:3c:
b1:cd:30:c4:4b:86:e5:0c:bf:d6:c5:5e:db:17:44:
10:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:68:87:3F:35:80:D3:5F:13:3B:80:57:82:29:1E:DB:33:EB:A8:CB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YmiHPzWA018TO4BXgike2zPrqMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.168.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:30:e1:6c:1f:e2:d3:3d:1d:b4:dd:c5:60:cb:6e:20:39:d8:
b1:11:6f:78:1c:8e:2b:dc:f6:71:05:d1:d2:f2:d9:e8:c6:2a:
2d:ef:90:94:4e:88:8a:58:4c:07:32:85:60:fc:c4:3d:d8:f5:
b1:2b:e0:00:ac:7c:2c:1e:0c:43:90:05:28:1a:9d:34:b1:b2:
91:37:84:62:86:16:91:c6:9e:c7:bb:f9:9d:76:9c:90:3b:4c:
c2:a2:89:fc:b5:47:c9:f3:b3:59:e4:c2:58:b5:56:bb:60:da:
0e:33:2f:76:73:77:fc:fb:63:09:d6:9e:ef:5f:4d:c4:ca:81:
15:3a:b3:1b:5c:b0:04:e4:4b:ca:90:a0:28:95:8a:11:28:3a:
9e:9e:ec:55:68:bb:92:5b:1d:cf:59:f6:78:1a:48:f5:21:8e:
4f:c6:30:36:12:8c:22:bf:90:46:6d:1a:08:18:fd:5e:12:3a:
11:80:08:69:18:76:4e:42:68:5d:46:26:6e:ce:59:00:86:0e:
38:2d:39:a6:6a:42:ba:93:23:cf:dc:57:18:ca:5c:4a:b4:10:
0f:1d:af:d8:c5:28:d0:b9:8f:f8:b8:c7:b2:f6:26:d4:d8:f8:
2a:73:b8:84:cb:e3:1b:47:63:31:a6:94:dc:b7:eb:7c:1e:99:
03:6b:d5:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org