Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dGaAyS0XlPx0qGjbiJHPlhgSD24.roa
File: dGaAyS0XlPx0qGjbiJHPlhgSD24.roa (raw, json)
Hash identifier: 3DRZPW1LfSN7Yv77AreyAw1rLlgi8d33+dNqZLkz+XM=
Subject key identifier: 74:66:80:C9:2D:17:94:FC:74:A8:68:DB:88:91:CF:96:18:12:0F:6E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 105B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dGaAyS0XlPx0qGjbiJHPlhgSD24.roa
Signing time: Wed 01 Feb 2023 10:28:27 +0000
ROA not before: Wed 01 Feb 2023 10:28:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.147.166.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4187 (0x105b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=746680C92D1794FC74A868DB8891CF9618120F6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:20:7c:7a:92:f4:c9:62:31:76:d8:8b:d2:bd:
b1:7b:4e:0b:3d:15:e9:78:14:cc:a3:b0:69:66:09:
19:10:40:97:53:19:73:93:6d:97:41:4b:61:4a:c3:
5c:dd:85:45:75:44:56:72:f0:a3:62:2b:de:ee:63:
da:c6:e5:e5:f8:a6:c8:6c:b0:bb:aa:72:a7:c5:a4:
43:0d:ee:d3:2d:9d:e1:48:15:13:78:98:4a:3d:61:
48:f4:fa:c3:6d:6f:a9:ca:8b:b2:d6:a0:98:79:b0:
bc:61:a0:36:c1:d7:cb:c0:d7:4e:5c:a0:36:d6:29:
82:57:95:89:52:65:39:f9:c9:9c:3a:6c:93:c4:a3:
77:40:de:b6:2b:56:a1:14:a5:f7:3a:37:fe:0e:1f:
f0:bb:ed:f6:45:ab:f5:e1:02:0e:7d:8e:91:64:f1:
23:99:b5:d3:8c:af:92:c0:e5:ba:a9:28:36:3d:41:
6d:5d:66:1b:82:78:38:e5:3c:d8:08:69:7f:71:7b:
2f:5d:63:f1:a1:87:3a:d6:59:86:34:74:5b:3a:0f:
93:79:38:47:c3:b4:2b:fd:4e:3a:2c:65:a7:9f:43:
47:63:88:97:2f:ea:6e:58:82:e0:17:74:97:62:61:
67:33:a6:8f:58:59:ff:77:79:4f:c0:a0:31:1f:5c:
a1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:66:80:C9:2D:17:94:FC:74:A8:68:DB:88:91:CF:96:18:12:0F:6E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dGaAyS0XlPx0qGjbiJHPlhgSD24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.166.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:c6:80:13:4c:8d:c4:6e:37:8a:47:08:a6:06:11:50:fe:e1:
bd:74:75:d4:ca:f5:97:11:f7:3f:7e:67:05:82:97:35:b3:af:
d5:a3:aa:b8:18:c5:ce:55:53:db:e9:30:9c:70:4b:a6:23:e7:
5d:72:61:af:7e:6d:7f:7f:ce:7d:32:ad:33:cd:64:9e:b0:e2:
c7:77:22:f8:01:e8:03:99:37:51:fd:17:8d:96:50:30:99:0a:
d8:5d:dd:29:39:a5:09:f9:c7:ef:8e:ac:ef:fa:be:4a:60:d0:
f8:03:c8:6e:eb:be:23:27:fd:03:58:e0:91:5d:01:68:7e:5f:
f2:7d:c9:f5:cf:80:43:68:a5:58:f2:66:98:96:81:9d:e9:e0:
3e:99:69:49:ec:35:6e:50:07:5a:a1:25:bf:67:78:59:80:d9:
25:67:c7:1c:bc:05:f2:c8:17:7e:e3:60:ac:da:4a:55:6d:c3:
38:f9:b7:90:15:6a:1b:8d:13:10:a6:b6:c4:65:5d:38:fa:b3:
a1:d6:a2:d9:8c:d0:b8:3b:a5:2b:d7:c2:a1:d6:06:0f:23:e0:
24:27:e7:8e:1d:aa:c6:23:9b:03:6d:54:9a:a3:b1:16:b1:5a:
1d:ef:ce:3c:56:72:31:14:62:58:02:10:6a:69:7d:e2:56:1b:
a1:36:83:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org