Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/brxlFhG5R03hYc_gaA04vD0srGY.roa
File: brxlFhG5R03hYc_gaA04vD0srGY.roa (raw, json)
Hash identifier: 4PiPYzCEWDylSjWoAp+U69xr8ngvM8xpQR7rkwk0YoU=
Subject key identifier: 6E:BC:65:16:11:B9:47:4D:E1:61:CF:E0:68:0D:38:BC:3D:2C:AC:66
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1039
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/brxlFhG5R03hYc_gaA04vD0srGY.roa
Signing time: Wed 01 Feb 2023 10:28:17 +0000
ROA not before: Wed 01 Feb 2023 10:28:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.176.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4153 (0x1039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6EBC651611B9474DE161CFE0680D38BC3D2CAC66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:59:f8:8a:8f:5d:1a:24:65:7e:1b:38:a3:ca:
97:db:ef:3d:5c:66:4b:11:76:7a:5f:0c:8e:6d:4b:
bd:55:4f:61:f9:23:77:8b:82:cb:12:66:c4:50:f4:
e8:84:d2:0c:5d:db:30:22:da:13:f9:b4:de:29:cf:
02:00:93:06:df:dd:96:07:51:13:5c:3a:09:bc:1a:
09:07:5b:46:d3:28:38:b2:e5:70:e8:0d:90:44:fa:
8c:2f:c0:a0:f8:be:d5:fc:3e:01:d7:9a:d4:d5:c4:
8e:34:59:92:b2:3c:8b:d6:db:24:de:4e:bf:47:d9:
6b:a9:a4:4b:60:1c:cf:58:8f:5c:72:b2:ca:72:ab:
1d:eb:8c:7a:60:3d:8d:01:61:1f:17:c4:0b:1d:d5:
ff:4e:73:16:9e:a9:e2:f6:83:d7:88:c4:18:ae:f0:
94:90:33:70:6f:17:2e:ca:0a:03:cd:08:04:06:df:
e6:e4:62:99:68:3c:90:fa:a4:05:a5:35:63:81:21:
76:9a:0b:cd:0b:75:2c:2a:9c:8d:52:2c:06:46:0c:
81:e7:05:ad:d8:42:f8:21:15:c0:c7:06:50:4e:c1:
49:a4:d9:2c:cf:35:d4:8b:9c:62:d1:0d:2e:0e:97:
fe:e0:d2:1b:64:70:66:61:32:94:26:e8:b4:0d:ad:
14:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BC:65:16:11:B9:47:4D:E1:61:CF:E0:68:0D:38:BC:3D:2C:AC:66
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/brxlFhG5R03hYc_gaA04vD0srGY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.176.0/23
Signature Algorithm: sha256WithRSAEncryption
17:bb:31:8f:f5:ce:09:d0:fb:f6:8d:3a:66:65:40:62:d7:8c:
0b:f7:0c:5b:36:0d:ec:c7:09:e0:08:f0:17:5a:bf:03:dd:51:
7a:67:41:98:e8:db:1b:f8:ee:fc:3c:92:10:82:38:ac:12:10:
ab:71:5b:15:5d:78:d6:06:24:cd:2a:3a:36:6f:21:18:62:89:
61:2a:52:a6:59:ef:98:17:7d:60:93:39:12:eb:ec:37:16:4b:
ef:e2:4e:9e:1d:4d:51:8c:a1:5d:ea:2a:06:d7:29:e1:d9:cc:
e4:1e:9a:b4:64:d0:b0:48:bd:e0:f6:58:26:08:78:d1:70:c6:
7f:dc:ae:b2:03:79:a4:c3:d4:de:1d:e9:09:ca:ee:85:94:39:
e0:79:91:bc:d4:56:33:a4:9c:83:ca:59:22:86:5d:9a:b7:4b:
4d:3c:e0:f7:bf:f5:fa:03:10:9b:1c:af:03:7a:2c:f3:11:2a:
ba:71:ff:16:0c:d9:0a:07:b0:a0:c7:25:de:a7:09:cb:7f:07:
9b:49:29:96:5c:1a:4d:09:ee:2a:72:05:ad:63:65:6e:f8:5e:
6f:77:5e:63:b0:20:29:93:de:4a:10:bb:70:77:55:84:71:10:
e6:79:7a:6e:ef:9d:8b:02:32:c7:3a:f8:35:ca:f1:1c:5d:45:
77:c0:b3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org