Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/arooXWnEAeQnwTV4I9e6PtaqjRc.roa
File: arooXWnEAeQnwTV4I9e6PtaqjRc.roa (raw, json)
Hash identifier: YrjaoCx6U7ftdbtL0GXhE+euLXJe+Upql0sVBhRu4uw=
Subject key identifier: 6A:BA:28:5D:69:C4:01:E4:27:C1:35:78:23:D7:BA:3E:D6:AA:8D:17
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 102D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/arooXWnEAeQnwTV4I9e6PtaqjRc.roa
Signing time: Wed 01 Feb 2023 10:28:14 +0000
ROA not before: Wed 01 Feb 2023 10:28:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 122.146.108.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4141 (0x102d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6ABA285D69C401E427C1357823D7BA3ED6AA8D17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4c:8d:86:18:b1:6e:f5:4f:b6:eb:e6:c7:46:
d0:29:ad:51:35:ff:3c:a2:a5:e5:09:3b:57:9e:51:
50:1d:89:40:57:46:1e:7e:e3:42:51:af:b1:f9:49:
20:ff:8b:9c:fe:3f:dc:59:a7:c8:e0:f4:85:fd:a4:
2a:99:55:17:f8:1c:f9:a9:39:a1:e8:47:e0:5d:e8:
fc:e4:88:09:4c:9a:1a:f6:6b:06:c8:d8:de:b4:13:
d9:99:23:33:a0:5b:98:10:f5:6a:9e:54:e2:21:14:
13:87:97:3d:6d:3b:e0:05:ba:fd:68:91:29:62:be:
a8:1e:8e:6e:4a:3f:38:ba:38:47:b5:0d:1f:27:f9:
41:72:d7:ff:aa:e4:69:33:75:a0:00:8e:65:c9:e0:
d3:aa:be:cb:55:00:b2:ac:ed:b0:62:6f:bd:4c:a3:
06:33:08:1c:e6:0b:5b:b6:64:f4:ad:7c:7e:28:2b:
69:a8:16:44:2e:5d:d0:28:ef:97:b6:04:16:79:e5:
ba:30:41:7d:22:8f:c0:2c:4f:00:60:dd:09:0d:41:
9b:57:cf:b8:9b:31:22:d2:ae:33:ac:62:92:5b:8e:
67:ae:57:2b:50:5c:c2:87:4e:11:b9:67:c8:f7:a9:
0a:4b:ee:1d:3c:aa:05:e1:0d:ef:d3:98:49:87:63:
60:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BA:28:5D:69:C4:01:E4:27:C1:35:78:23:D7:BA:3E:D6:AA:8D:17
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/arooXWnEAeQnwTV4I9e6PtaqjRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.108.0/23
Signature Algorithm: sha256WithRSAEncryption
79:48:d4:6c:87:d5:93:8b:3c:8b:ed:9a:98:e7:e6:e8:eb:85:
33:60:cd:ab:34:04:0a:a9:30:af:a7:20:ac:fb:f4:f0:61:a1:
b2:32:f2:36:1f:b8:eb:bc:74:23:e4:4e:6a:00:f9:9c:b8:b8:
b2:c2:34:82:fd:62:7b:02:43:d0:7d:c8:7e:23:5e:0c:1c:01:
58:c2:bc:b1:2d:77:5e:b8:8a:c9:12:9a:5d:d9:16:11:02:f7:
89:d2:ed:0e:e3:fd:22:ed:88:32:04:2c:53:9f:3e:63:c9:f3:
17:a5:1f:b3:3e:76:d4:80:f5:6a:20:dc:a9:64:74:03:50:59:
7e:11:64:2b:f6:2e:3b:0f:29:6d:1a:35:1d:8e:11:2d:04:c1:
39:dc:75:e6:87:ee:b4:b9:8f:20:49:6d:2b:d3:de:28:35:ac:
eb:7d:40:fe:d8:64:d1:f9:8c:46:f9:39:90:6e:8b:28:59:22:
3d:2b:f5:17:d4:f0:88:a3:52:c9:02:8e:f3:2f:aa:b7:13:27:
fc:89:a4:16:d5:ac:62:65:d6:bb:68:fb:54:eb:f9:52:af:e2:
0c:3f:e3:ba:af:90:96:11:75:15:5f:dc:08:e3:4b:ae:48:52:
df:0f:ab:24:c0:42:83:91:58:76:8b:75:c2:fb:84:55:bb:83:
08:ec:59:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org