Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bassZjnb2h2VLeqf2ZWugnbPkOo.roa
File: bassZjnb2h2VLeqf2ZWugnbPkOo.roa (raw, json)
Hash identifier: AqUAT6nQ3Ob4StjdyNEaIYWhu3iLSu3/IBGzxSuLAOo=
Subject key identifier: 6D:AB:2C:66:39:DB:DA:1D:95:2D:EA:9F:D9:95:AE:82:76:CF:90:EA
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE9
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bassZjnb2h2VLeqf2ZWugnbPkOo.roa
Signing time: Wed 01 Feb 2023 10:29:21 +0000
ROA not before: Wed 01 Feb 2023 10:29:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3305 (0xce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6DAB2C6639DBDA1D952DEA9FD995AE8276CF90EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:85:22:53:ea:29:30:3e:29:14:03:87:03:60:
76:93:47:d2:5d:0a:20:55:de:1a:eb:cc:f7:a9:e3:
36:56:79:68:39:7d:f1:6e:30:56:9d:7a:a2:97:9b:
d2:45:90:09:d8:dd:c2:ad:1a:03:d0:19:9b:38:75:
62:94:3e:fb:f9:5f:29:3f:d4:b9:4f:9e:4c:18:61:
e3:e3:0f:1c:e8:de:65:7f:54:11:e2:44:58:09:8e:
fd:91:d0:6b:2a:a0:2c:70:34:1b:b6:f3:16:32:c2:
bc:84:de:f3:6f:00:85:58:ab:a9:80:81:f6:fe:7e:
2f:fe:61:72:72:1b:6f:60:56:2c:b1:98:58:06:94:
6a:0e:80:3d:63:d3:92:77:d7:bf:73:93:a3:b5:e5:
57:1d:1f:7b:b1:a4:82:eb:33:2a:6b:d3:38:d6:1a:
f8:4a:eb:42:4e:6f:e5:d0:29:11:79:7e:0d:54:08:
06:97:4f:49:82:1d:3a:38:5d:18:59:b3:6e:4e:da:
1d:f6:65:3c:67:93:db:a7:08:a5:ed:b1:0e:91:00:
f9:0f:4b:86:29:70:51:87:0c:0a:c4:ef:f5:f3:02:
94:c6:8e:02:8a:d2:c7:21:88:ec:a9:8a:f2:e4:c8:
b7:42:5f:d5:73:09:53:f6:d1:10:fa:d1:b7:cb:01:
17:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AB:2C:66:39:DB:DA:1D:95:2D:EA:9F:D9:95:AE:82:76:CF:90:EA
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bassZjnb2h2VLeqf2ZWugnbPkOo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
75:05:40:01:47:63:fc:b5:60:42:52:5d:65:04:18:28:17:0b:
bc:00:a6:fe:f4:23:6f:e8:51:dc:ca:db:70:47:82:22:fb:4b:
aa:da:e4:a6:b2:56:bc:5f:07:80:7f:f7:53:13:36:b3:aa:63:
e9:99:f9:bd:9d:6d:27:7f:ba:7a:2e:96:f6:72:38:9e:46:74:
ae:c1:e3:6f:b3:a6:53:dd:45:78:69:fc:81:ac:a6:70:aa:49:
63:2d:ad:c4:19:2e:0d:cf:ae:1f:ad:ff:85:c0:e9:ac:e2:5c:
7d:eb:4a:05:e0:95:13:f2:40:1e:01:9b:f9:cd:a3:4c:b8:39:
3b:6b:9e:20:37:7b:43:71:6b:fd:a6:79:12:fc:7b:3a:3e:ab:
48:bb:11:a2:19:0c:18:bf:a3:c3:41:0b:01:c7:d9:4c:c8:e0:
5e:8d:94:4f:15:2e:38:71:8b:8f:81:66:32:e3:5b:86:cc:f3:
d2:a0:8e:7f:47:88:57:cb:ea:94:80:dd:96:d8:07:2d:95:3f:
ff:b7:d8:0a:95:bb:3d:ec:eb:db:30:c4:07:1d:63:ea:02:5f:
2e:17:de:32:4a:75:22:96:b1:61:07:48:9d:83:21:41:50:33:
48:43:29:cb:5e:2f:3e:6f:33:2a:af:ef:aa:36:df:d7:86:27:
56:4a:13:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org