Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bnNrMc1zg06ujdAEHqb7fRFKkto.roa
File: bnNrMc1zg06ujdAEHqb7fRFKkto.roa (raw, json)
Hash identifier: hPO06tplJRJphz6xNAza7diJIekDlZztVm68+0SU9fg=
Subject key identifier: 6E:73:6B:31:CD:73:83:4E:AE:8D:D0:04:1E:A6:FB:7D:11:4A:92:DA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1075
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bnNrMc1zg06ujdAEHqb7fRFKkto.roa
Signing time: Wed 01 Feb 2023 10:28:35 +0000
ROA not before: Wed 01 Feb 2023 10:28:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4213 (0x1075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E736B31CD73834EAE8DD0041EA6FB7D114A92DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c3:59:41:27:37:8e:db:d6:1b:8b:e0:0f:8c:
79:eb:f3:4e:0f:6c:ff:13:b8:e6:43:e5:02:88:86:
9d:1e:c6:49:a7:9e:b3:52:37:e4:a0:64:df:5f:85:
7d:e5:61:a9:05:20:0c:32:0f:11:7b:0e:2d:6b:b9:
c7:51:25:35:a3:69:64:7d:e7:83:be:bc:c8:f9:3b:
3d:44:2f:26:88:7b:4a:18:ac:db:1d:be:54:5b:ea:
e8:df:56:c5:f3:60:3b:bb:5b:5a:7c:7b:5b:b0:1e:
7e:f4:de:78:df:06:b7:fc:53:92:9b:8e:26:4f:09:
1e:a8:a2:d1:a1:c4:3e:bc:89:da:8f:83:62:40:d0:
b6:dd:a5:a5:65:ce:e8:5e:c0:6f:4d:9b:df:52:bc:
8f:b7:10:ad:30:d9:e4:dc:8c:b8:e5:95:9b:76:4d:
de:20:77:84:f2:5a:25:36:50:e1:8b:a3:8b:9c:6b:
99:2c:2e:a1:b6:24:a9:05:ab:70:ff:17:28:46:e4:
0c:7e:22:74:d2:9b:5a:09:0d:13:f3:60:10:16:2a:
14:c1:ea:86:ce:46:8c:f1:39:a2:24:38:5f:fb:4a:
50:6b:58:ef:6b:81:ab:6f:41:8c:98:61:36:a9:68:
45:d2:8b:2f:8b:28:22:07:77:76:1c:d9:4b:23:88:
a4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:73:6B:31:CD:73:83:4E:AE:8D:D0:04:1E:A6:FB:7D:11:4A:92:DA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bnNrMc1zg06ujdAEHqb7fRFKkto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/17
Signature Algorithm: sha256WithRSAEncryption
c4:fb:17:ba:87:96:f7:08:94:25:52:b8:6f:1a:ef:c6:72:28:
2f:c5:8f:27:dd:4e:19:e3:97:b8:ed:12:b5:5b:03:c3:4b:40:
78:10:ac:4e:ac:90:c7:cc:9f:df:25:bd:08:4a:3b:7d:34:a4:
18:9e:6b:ce:55:7a:a0:f8:b9:8b:be:0d:1d:da:28:6b:47:41:
75:be:59:b9:0e:6d:9e:b4:69:76:4f:6c:e8:21:51:e2:be:74:
ce:94:e0:e4:35:03:f2:d8:2a:74:34:7b:1f:86:0f:7d:0e:6e:
45:88:b8:e8:72:6b:6a:9d:3a:08:46:1d:b7:31:17:b7:ce:5f:
68:ea:4e:b4:cb:3d:65:71:30:76:af:6d:ce:74:30:60:ce:3b:
27:33:03:df:69:f1:97:5e:f1:ff:ee:b8:73:73:6c:a0:89:47:
26:3e:11:6f:c1:95:c5:60:5f:d0:f2:93:62:af:04:9f:59:98:
78:97:4f:1b:f7:47:a6:b9:e2:d8:f0:59:12:4f:15:ce:60:b8:
83:36:3b:e6:87:41:43:c4:b3:f7:f1:cd:da:5f:12:06:41:b6:
e0:2d:c5:96:b9:6f:68:a5:ef:1d:54:cd:b7:4b:4a:05:e2:2d:
78:0d:6f:eb:96:2a:bc:df:5f:7b:a2:8a:c9:a3:8c:ec:b0:90:
81:57:40:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org