Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YtwEgdKA7t5axOwYLV5rflnPKWk.roa
File: YtwEgdKA7t5axOwYLV5rflnPKWk.roa (raw, json)
Hash identifier: CfIP0bxM55b0QvOrqTzng6SbhlpTRk64/mjj495tVP8=
Subject key identifier: 62:DC:04:81:D2:80:EE:DE:5A:C4:EC:18:2D:5E:6B:7E:59:CF:29:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YtwEgdKA7t5axOwYLV5rflnPKWk.roa
Signing time: Wed 01 Feb 2023 10:29:09 +0000
ROA not before: Wed 01 Feb 2023 10:29:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 106.106.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4321 (0x10e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:09 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=62DC0481D280EEDE5AC4EC182D5E6B7E59CF2969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d0:93:06:30:0e:18:15:97:8a:9a:98:9e:4c:
99:ff:b2:5c:41:2f:29:69:a8:b2:25:19:93:64:3c:
e3:d2:45:99:94:03:db:4a:d6:e2:51:d0:e2:f7:5d:
0a:31:d1:e4:b0:74:cb:a9:da:af:ff:fb:1c:43:ac:
08:1e:91:19:dc:1c:6f:ad:26:c7:1f:0f:21:aa:64:
7b:7d:6f:60:a9:40:65:a8:2b:a0:a2:d6:0b:78:3d:
d9:42:f9:bf:f4:de:0e:d0:7e:9b:6c:67:7f:37:1c:
71:9a:a7:31:9f:50:48:71:cd:a6:ea:d4:18:8a:b7:
d7:ff:9e:6f:1a:73:7a:dd:17:84:25:4e:07:5a:a4:
38:17:0c:cd:5b:90:14:aa:82:d9:72:ed:8a:57:cc:
a8:4a:76:73:aa:76:48:e6:af:64:53:fb:56:e4:0c:
28:51:e8:16:26:d6:81:15:74:6b:fa:e6:f4:1c:99:
a6:ed:85:49:5d:67:03:a0:fd:3a:4b:53:65:43:25:
14:d7:67:08:d6:e2:4d:7e:93:3b:1b:1c:32:96:36:
66:b6:68:54:03:2b:58:e9:fc:2f:c3:a7:e3:06:44:
d3:63:1d:8f:0c:86:02:80:5c:bf:a0:53:df:45:36:
e6:22:7f:b5:50:e7:e2:0b:0a:0b:1b:2a:3c:7f:4a:
bf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DC:04:81:D2:80:EE:DE:5A:C4:EC:18:2D:5E:6B:7E:59:CF:29:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YtwEgdKA7t5axOwYLV5rflnPKWk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
00:ce:31:63:df:3e:bc:25:dd:d9:2d:85:1c:e3:de:46:f2:58:
2c:f2:23:45:9c:43:8e:c9:91:db:02:22:03:af:35:a7:2b:9a:
3e:24:a1:34:f8:dc:15:87:d1:f8:e9:34:48:ce:72:b4:4a:96:
34:a0:90:89:00:6c:7b:cb:fc:b0:27:24:d8:88:b9:b6:24:07:
18:af:0e:d3:6b:2f:cb:ec:d7:0f:99:a8:05:38:ad:45:a7:04:
25:1e:6c:22:ed:47:be:66:66:97:cc:cf:d1:07:05:64:28:23:
47:43:1c:ce:e3:77:a3:39:12:d6:f6:3f:d4:68:44:b0:b1:75:
56:9c:ec:3f:2f:dd:89:e5:bc:8e:99:1c:17:cf:ec:09:89:4d:
35:60:31:4b:ba:f5:c6:9d:95:59:69:0b:5f:0f:e2:b3:63:1d:
47:1e:73:e4:3a:f0:56:c5:79:13:9a:a9:62:9f:ae:16:a0:54:
0b:19:e0:ab:3a:ec:81:fd:3a:2c:b6:fc:4c:05:f3:18:2a:36:
3f:97:f2:e4:0a:4a:3d:1c:63:3f:7a:c4:cc:45:c3:a6:8d:d8:
c2:8b:9e:aa:39:73:2d:c0:06:a5:e1:71:aa:63:16:77:ce:18:
53:a0:6a:65:15:d5:d7:37:ed:c9:a2:51:8f:cb:cc:f6:d9:e8:
bc:3c:5a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org