Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_0BTWTVzueYmkXJNIfaVvdwAtmA.roa
File: _0BTWTVzueYmkXJNIfaVvdwAtmA.roa (raw, json)
Hash identifier: GbImP8NxPjsJXvOLN77NPMhm4WTTIjBLMQG2PFZaqjE=
Subject key identifier: FF:40:53:59:35:73:B9:E6:26:91:72:4D:21:F6:95:BD:DC:00:B6:60
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1086
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_0BTWTVzueYmkXJNIfaVvdwAtmA.roa
Signing time: Wed 01 Feb 2023 10:28:41 +0000
ROA not before: Wed 01 Feb 2023 10:28:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 106.105.184.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4230 (0x1086)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:41 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FF4053593573B9E62691724D21F695BDDC00B660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:71:ac:18:06:2c:f1:6f:ba:ef:b3:a7:49:6f:
8e:65:85:b0:21:8f:a3:ea:3a:5a:d7:ac:f4:b4:c2:
db:a3:97:e6:92:7f:27:4c:b5:dd:c3:e1:67:d7:55:
03:e2:cd:a9:b8:c0:5b:64:45:90:56:d0:b7:b2:4c:
94:05:50:21:0c:96:bd:a4:52:92:90:ad:53:19:6c:
2b:bb:c6:5b:42:46:72:6f:d8:21:46:51:e9:8f:86:
b2:29:f8:fb:cd:26:f3:cf:88:d1:d9:10:1e:48:86:
9d:e9:3a:3f:08:79:97:c8:32:72:16:d9:92:f5:af:
17:b5:ca:f9:4b:90:b2:20:e7:e1:19:ce:fb:a7:b4:
94:6d:09:92:65:6a:ca:f1:ea:52:1c:f8:ee:7a:38:
b7:b9:98:e2:e5:75:17:45:fa:b4:e1:8f:a3:5a:09:
58:2c:87:a7:28:88:e0:60:de:05:ec:c8:3b:00:b0:
b9:3b:af:17:11:03:b0:61:3d:4f:1e:de:45:25:9a:
aa:39:76:d4:ca:3c:ca:41:95:92:f9:bb:26:63:bd:
22:24:d6:7b:6d:20:ef:0d:78:ee:64:7e:8a:6e:e6:
40:88:ed:27:4b:7d:fc:2a:cb:11:d7:73:db:93:6c:
a0:35:a4:f8:1d:91:df:b7:fb:36:08:d8:d0:cd:8b:
69:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:40:53:59:35:73:B9:E6:26:91:72:4D:21:F6:95:BD:DC:00:B6:60
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_0BTWTVzueYmkXJNIfaVvdwAtmA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.184.0/21
Signature Algorithm: sha256WithRSAEncryption
33:62:2f:7f:c7:e6:7d:cf:84:b9:7a:aa:61:7d:05:39:ae:dc:
16:a4:0a:45:7a:ab:7c:e3:db:27:d3:77:0d:a7:15:f0:d1:cd:
b3:54:01:42:09:4b:01:d0:b3:83:05:93:3a:e1:ca:10:db:c9:
8c:f2:2b:c6:43:aa:23:59:d1:68:bf:21:ce:3b:a9:ad:9c:a5:
75:53:6e:05:be:e5:f5:ce:a3:8d:3c:9e:22:f9:a6:82:8d:01:
c7:fa:ca:df:36:4b:06:9b:cf:26:b6:2e:11:96:a3:48:05:76:
29:ac:e0:66:73:ac:c2:e8:93:14:9f:9a:ff:c1:46:23:63:79:
c0:85:80:0f:e2:d5:e1:9c:b0:e5:dc:20:dc:9f:b9:e0:1c:f6:
d8:2a:09:01:f9:50:81:ec:6e:5c:81:cf:b0:d9:6b:82:71:6a:
0b:1f:65:dc:ba:66:de:68:8e:f2:70:90:67:91:0f:98:26:52:
40:bf:ad:bc:2b:d1:a2:35:06:f8:42:25:0b:5f:9a:63:3b:d4:
61:72:9d:6c:b1:d9:b8:70:84:e1:8a:ab:a8:f5:62:82:c3:40:
e9:3a:6f:b4:81:98:d4:c3:3b:89:2e:0d:e4:81:13:f2:2c:d4:
9a:9a:8d:50:d4:45:40:f1:e2:96:e7:2e:75:f8:e8:fb:3f:64:
f6:f7:d9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org