Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZxpwoKH_56ExxCAZooedZ-szWFI.roa
File: ZxpwoKH_56ExxCAZooedZ-szWFI.roa (raw, json)
Hash identifier: nH3CySxQElbvoYa3P7M0SIkAuU6A4OA7Z3RdCNvl9rI=
Subject key identifier: 67:1A:70:A0:A1:FF:E7:A1:31:C4:20:19:A2:87:9D:67:EB:33:58:52
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE2
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZxpwoKH_56ExxCAZooedZ-szWFI.roa
Signing time: Wed 01 Feb 2023 10:29:07 +0000
ROA not before: Wed 01 Feb 2023 10:29:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3298 (0xce2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:07 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=671A70A0A1FFE7A131C42019A2879D67EB335852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:e6:fb:1c:05:47:a2:fc:ff:7c:4b:7f:b9:
a9:bb:d5:ce:3a:d5:30:dc:16:46:39:33:19:e0:04:
fb:cc:ca:25:f6:aa:8e:eb:89:eb:70:19:5e:52:49:
90:c7:a2:49:7f:f1:23:d2:53:61:89:6d:b4:0e:0b:
fd:ca:aa:9c:ab:9a:1d:8e:f4:72:d0:53:f5:13:d1:
47:2e:9d:95:6b:d9:ed:b9:b8:be:c0:55:49:b8:89:
da:cb:51:5c:5b:f6:71:b3:49:65:06:61:bc:35:cc:
a2:51:a6:4a:44:2a:eb:68:0b:0d:9b:a7:6d:7b:0f:
c3:75:22:37:c7:3d:a1:e1:9b:68:b5:1b:16:20:ef:
a6:a1:85:6a:10:7b:10:b8:b9:f6:b7:00:fe:be:14:
7e:d3:aa:b0:64:64:2b:d1:c6:55:9c:f7:3b:95:0c:
a3:4a:0d:37:ca:a0:9f:74:9d:04:40:91:cb:a2:32:
4c:35:4b:7b:62:00:17:4e:bc:44:fb:b1:3c:c8:11:
94:c0:e8:ef:14:be:b8:c1:3a:5d:96:de:01:66:6b:
dd:ba:18:5c:fb:98:ad:d7:d3:f5:2f:d5:40:5e:60:
88:1f:41:4b:58:62:70:06:da:53:17:4f:cb:bd:9f:
2a:ae:2f:93:9c:b9:16:3c:bc:64:37:ed:d2:2f:36:
a7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1A:70:A0:A1:FF:E7:A1:31:C4:20:19:A2:87:9D:67:EB:33:58:52
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZxpwoKH_56ExxCAZooedZ-szWFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:9c:b6:44:56:aa:ea:b3:63:bf:93:da:57:38:53:81:f9:95:
5d:d2:51:19:2f:ad:85:34:be:80:54:fe:b5:96:b4:38:0d:2f:
c7:ca:a4:d4:2f:63:1e:a2:a6:e2:c0:09:7e:e9:34:f6:30:7b:
85:51:85:a8:70:b8:e4:8b:cc:15:ac:7f:cb:c3:90:84:8c:8f:
8e:1c:7f:70:7d:50:27:98:90:d4:ef:a6:c3:90:e9:10:d3:07:
32:ce:9a:6c:b9:b6:73:7c:30:0b:16:87:ad:d5:2d:27:47:de:
a2:74:fd:69:a3:e0:25:36:10:6c:1e:5f:48:1c:e7:44:bb:c2:
b9:18:8c:bb:a7:31:e3:b2:34:68:ba:7b:f9:7f:84:cb:c6:fe:
e2:95:9b:00:28:78:94:35:b8:2f:07:32:52:4e:40:0f:2c:b1:
e7:37:12:a3:8e:93:3d:f1:0b:97:9f:1b:72:bd:d9:1d:44:0c:
35:0a:07:bd:a6:22:58:b6:39:19:be:00:e8:d5:8f:ad:e2:88:
e4:89:3a:30:a9:74:67:f2:90:a4:5d:c3:fa:3a:52:79:be:b3:
61:ab:4d:40:72:c9:83:58:05:17:32:bf:e6:be:f1:c2:44:20:
7f:54:34:d9:b9:0e:2a:c0:6c:7b:23:02:98:15:56:56:41:ef:
4b:32:06:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org