Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cxZIbimyvVFvlwpKG3aa2DkE3pA.roa
File: cxZIbimyvVFvlwpKG3aa2DkE3pA.roa (raw, json)
Hash identifier: w82dDtOvdHAZ1LSZOOFavB3AI2GoIgOI6QS48f5iURY=
Subject key identifier: 73:16:48:6E:29:B2:BD:51:6F:97:0A:4A:1B:76:9A:D8:39:04:DE:90
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cxZIbimyvVFvlwpKG3aa2DkE3pA.roa
Signing time: Thu 15 Sep 2022 02:42:42 +0000
ROA not before: Thu 15 Sep 2022 02:42:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 122.147.16.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7316486E29B2BD516F970A4A1B769AD83904DE90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:59:ca:25:71:33:87:12:3f:16:29:4a:e2:
2e:3b:3d:57:1e:f9:a9:28:eb:2d:74:41:66:86:69:
93:a2:40:85:00:25:77:e5:d3:de:e7:90:2e:2e:9a:
ec:39:ac:b8:bd:5c:db:32:f1:0d:cd:27:de:25:b3:
f0:22:9b:78:e5:25:31:a1:6d:ac:cb:48:ab:eb:12:
0c:a3:2b:f8:64:85:45:8d:db:93:11:0d:88:a1:6d:
db:cb:0e:76:78:d6:96:2b:f3:81:64:ae:e5:5e:37:
d2:4a:9b:ae:49:58:43:19:5e:3b:ad:9c:32:fd:53:
53:ad:15:ef:ee:31:5e:92:a1:cb:64:6a:fb:ae:72:
a7:b4:10:28:77:13:6e:df:45:a1:9d:6c:0a:3a:20:
8c:e3:8a:8a:59:9f:38:9c:d8:4d:4d:92:e6:20:87:
39:37:8f:1d:1f:ad:06:72:a2:67:15:b4:31:93:a4:
1c:a5:01:6f:7a:80:a8:89:73:15:b6:f9:d7:f8:5a:
6d:e3:94:9f:9f:aa:18:58:40:12:05:bf:63:c6:eb:
03:c8:39:07:f8:f1:2c:87:06:c8:bc:a9:17:89:a2:
90:cc:2a:46:d2:e2:61:81:14:3e:65:31:94:70:c3:
0c:bf:98:7d:17:47:49:8e:15:78:36:3f:c1:4b:c2:
66:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:16:48:6E:29:B2:BD:51:6F:97:0A:4A:1B:76:9A:D8:39:04:DE:90
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cxZIbimyvVFvlwpKG3aa2DkE3pA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
40:14:81:79:fd:42:d3:45:4c:e7:98:fe:74:42:72:96:e2:cc:
e8:02:34:18:e9:02:07:6d:d8:c2:74:19:2b:cb:31:f8:0c:18:
bb:ae:4d:2b:15:bc:d1:f1:59:9b:59:77:45:94:e3:15:15:06:
84:42:05:e7:11:f9:90:16:d6:3f:7e:fb:ae:82:7c:bb:c8:d7:
88:73:7b:b6:26:4f:28:aa:6c:b5:7d:b5:17:6c:b8:7b:e9:73:
9e:8e:68:46:a5:32:0f:54:76:c3:c2:c6:5d:2d:67:08:1a:b8:
de:3a:29:bb:82:c7:be:16:d0:dd:b1:a2:0e:b8:63:1d:62:08:
1d:fb:83:43:03:f1:18:a9:33:50:d8:99:d7:30:1d:55:f3:1c:
8e:7c:a0:ae:0c:d7:0f:b2:4e:7c:43:8d:f9:e4:3f:75:f1:60:
42:db:73:5e:b4:a7:17:e0:b8:30:4f:43:59:82:85:1a:93:48:
3a:36:8b:7d:8f:a2:24:05:ac:58:b3:73:6e:32:5f:47:ad:54:
0d:fe:bf:44:32:5d:29:d0:52:f4:da:6a:42:53:8f:2a:0d:65:
21:a0:93:c7:bd:51:8b:b4:dc:c3:6e:f3:cd:62:c3:76:b0:73:
3a:9d:36:b7:ea:7e:a4:3b:aa:1f:df:79:a8:d2:90:53:9c:51:
f6:dd:78:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org