Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZEy4Y4JmlrU8i7JPly3kwrUYu6w.roa
File: ZEy4Y4JmlrU8i7JPly3kwrUYu6w.roa (raw, json)
Hash identifier: WgoG2hin8wP7478XP/vqZaSB5orIKxXi4l4S/6zCwJ0=
Subject key identifier: 64:4C:B8:63:82:66:96:B5:3C:8B:B2:4F:97:2D:E4:C2:B5:18:BB:AC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZEy4Y4JmlrU8i7JPly3kwrUYu6w.roa
Signing time: Thu 15 Sep 2022 02:43:35 +0000
ROA not before: Thu 15 Sep 2022 02:43:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 106.105.240.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=644CB863826696B53C8BB24F972DE4C2B518BBAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c8:c1:09:8e:b7:35:3f:12:d0:f8:7c:37:9c:
c9:ad:3e:7e:de:05:88:f3:28:04:9e:ea:d1:af:b3:
b2:79:6a:42:f3:30:52:66:5a:c4:11:8a:c1:6a:6f:
61:7a:c0:c8:48:16:64:1e:48:cb:f2:0d:c0:8a:62:
20:90:b0:c1:d8:7d:1e:c3:2a:8c:b8:75:2b:67:0e:
07:ce:02:e8:05:8a:18:d9:4d:c2:ee:ac:19:c3:7b:
e0:d8:b5:1f:68:28:78:9f:bc:01:8f:e8:91:67:d3:
d7:60:76:32:c8:36:da:30:0d:9a:a7:e8:87:b1:30:
cc:40:e9:4f:2d:d7:96:6c:42:33:cb:eb:2a:d2:6d:
4f:ba:ad:21:cd:dc:be:2e:d5:60:1e:04:b3:05:3c:
35:ef:2f:d0:09:11:62:77:1c:58:d0:cd:53:d6:20:
5b:43:da:49:26:b8:bb:88:5a:76:7b:dd:df:a0:f8:
f0:1a:32:81:8b:66:07:e7:78:21:5b:eb:08:37:c8:
4a:38:9d:d9:a9:8a:eb:ef:30:de:48:f9:39:0d:42:
8c:3f:9a:d5:66:80:80:cd:6b:8a:75:d0:4d:11:9e:
89:1f:c5:9d:63:44:02:df:20:21:00:7e:b9:5e:f0:
b6:10:aa:e9:b4:17:79:64:b5:eb:69:ae:d4:18:1e:
f3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:4C:B8:63:82:66:96:B5:3C:8B:B2:4F:97:2D:E4:C2:B5:18:BB:AC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZEy4Y4JmlrU8i7JPly3kwrUYu6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.240.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:be:ad:22:75:fc:f9:7f:00:8d:e3:62:51:7b:d5:e9:25:eb:
31:1c:d1:ad:d6:14:8a:19:0a:75:3d:7c:d2:c3:9a:56:73:46:
32:cd:35:af:81:47:ad:54:ab:af:61:0c:f9:52:a2:30:01:89:
55:72:68:48:88:f5:81:98:ce:6a:bf:d4:9d:a7:52:c7:e3:cb:
19:f3:a8:fa:4f:38:bc:43:d6:2b:23:ae:3b:db:89:34:f3:6d:
9b:8a:75:62:b0:c1:62:97:1d:e4:a6:c7:77:71:41:00:9d:00:
af:2e:c6:a6:1c:9e:bc:92:87:00:36:21:fe:ea:86:d1:ba:53:
84:3f:11:66:e6:4d:95:8d:7a:b4:db:36:a2:ab:a6:7e:58:79:
c8:02:94:0b:ba:3c:6d:c6:48:ba:67:10:0a:0b:f4:18:f9:7b:
00:19:3f:36:7c:6b:76:a9:14:91:ac:d5:2e:84:63:23:bd:f3:
2d:d5:2d:c4:a8:a0:87:c7:cb:07:da:ba:2f:23:5b:c8:d0:44:
ca:ec:f1:4f:23:63:fa:e9:3b:2d:a5:43:09:fc:ce:4b:d0:b6:
a7:8b:c4:99:e5:00:50:22:63:e9:5f:ec:34:f0:8e:02:54:06:
59:45:98:5a:f3:55:53:47:f5:da:e6:3e:b4:26:6f:95:d3:6e:
ed:43:03:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org