Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_MZ295uvsfJ-BEW931NVCJ6vpog.roa
File: _MZ295uvsfJ-BEW931NVCJ6vpog.roa (raw, json)
Hash identifier: CycCXLhRYg3eX+PYEwLGvJJszqk0G44YAiAmu81KPvo=
Subject key identifier: FC:C6:76:F7:9B:AF:B1:F2:7E:04:45:BD:DF:53:55:08:9E:AF:A6:88
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10F5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_MZ295uvsfJ-BEW931NVCJ6vpog.roa
Signing time: Wed 01 Feb 2023 10:29:16 +0000
ROA not before: Wed 01 Feb 2023 10:29:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.205.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4341 (0x10f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FCC676F79BAFB1F27E0445BDDF5355089EAFA688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a4:1b:14:77:b9:01:55:f1:64:0d:e9:7a:30:
c4:0f:5a:4e:c7:3d:e5:76:29:8c:97:57:50:be:d3:
52:f9:51:41:e2:4c:7d:0b:ac:c4:d0:32:23:db:10:
51:a2:51:69:50:86:8a:1f:20:ab:46:e9:05:ff:24:
cd:47:a4:ea:6a:81:a9:29:2b:8e:ad:e9:55:b1:88:
5a:66:62:71:e2:03:b4:17:d4:a7:cc:9d:65:74:7c:
2f:0c:13:ae:2a:52:81:a4:78:12:36:7e:1c:63:28:
eb:5a:5f:02:e3:fe:21:c0:98:e2:1f:15:e9:0a:d3:
b3:12:32:df:69:4d:60:a6:46:ab:59:c6:5d:ea:e4:
35:55:f9:04:34:34:3a:3a:d8:d2:17:2f:17:ad:ac:
5e:9c:90:a3:15:02:86:ec:2f:b2:c2:23:24:af:fa:
e2:02:62:66:87:11:59:ea:1c:47:0b:ee:9c:7a:f9:
c4:af:b1:63:e3:88:0e:fe:8a:9e:be:de:97:8e:f5:
56:fb:fd:35:ea:98:81:65:2c:34:0f:9c:32:81:0f:
63:f4:53:30:fb:9c:e3:e4:db:1f:2d:f8:a8:f3:b9:
da:fe:c7:59:c3:50:4c:f7:ba:c5:ac:87:97:ad:6f:
22:be:ce:08:02:79:6d:02:88:90:2f:13:1c:62:d9:
ef:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C6:76:F7:9B:AF:B1:F2:7E:04:45:BD:DF:53:55:08:9E:AF:A6:88
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_MZ295uvsfJ-BEW931NVCJ6vpog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.15.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a1:cb:b3:13:7e:60:ac:f1:f5:60:59:84:dd:9e:c7:95:74:
3c:86:b2:52:b1:84:55:73:17:15:2d:77:70:12:02:bc:25:8a:
a2:eb:06:c6:7b:cd:4e:5c:55:fa:93:79:06:27:03:f3:8b:4b:
fa:4e:90:e3:a8:37:37:92:d6:eb:62:64:ea:79:26:c7:50:09:
d7:96:94:b2:d9:1f:6c:af:8a:51:ad:ac:cd:d4:f3:2d:c3:78:
e8:3e:04:19:68:47:84:9d:0d:35:e7:5b:40:f9:a3:8d:dc:70:
5a:ca:fb:57:ad:f6:55:b6:30:02:26:4e:99:79:1c:7c:88:b3:
66:5e:a5:57:df:b9:c5:c1:3b:73:ac:6d:a8:8e:0f:58:35:8b:
a5:2f:58:2e:09:5f:6c:b2:fc:5d:94:e2:d6:1b:4c:dd:33:fb:
d9:83:41:91:21:ff:39:83:b0:a0:96:af:f8:c4:68:5f:99:e1:
df:4e:a2:23:96:91:a2:91:4d:a1:4c:15:c2:00:dd:4d:89:45:
bf:4a:6b:92:18:bb:72:21:ca:bb:b8:3c:25:46:8f:82:0b:97:
e4:b7:6d:64:83:dc:db:8b:0b:8c:85:71:6f:d7:ef:bc:b1:e5:
13:85:60:77:4b:fa:b6:4e:46:34:e1:5b:fa:7d:23:2e:4d:0b:
46:2d:0f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org