Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eBw7NIjik-xz53ROC-1ApDddNO8.roa
File: eBw7NIjik-xz53ROC-1ApDddNO8.roa (raw, json)
Hash identifier: Fd01Q42DRiGBrRG4lNmwKtg/9d5U6qLQD8ekJ3recBw=
Subject key identifier: 78:1C:3B:34:88:E2:93:EC:73:E7:74:4E:0B:ED:40:A4:37:5D:34:EF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 103C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eBw7NIjik-xz53ROC-1ApDddNO8.roa
Signing time: Wed 01 Feb 2023 10:28:18 +0000
ROA not before: Wed 01 Feb 2023 10:28:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 218.210.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4156 (0x103c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=781C3B3488E293EC73E7744E0BED40A4375D34EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a8:ce:26:42:2f:b8:23:74:4d:05:3c:2f:06:
95:a5:21:9c:10:da:dd:41:ce:96:7e:18:b6:86:d2:
2d:33:e9:d0:01:44:49:15:f8:82:cc:62:7c:f6:1a:
6f:39:e8:a7:ab:d9:60:db:b9:cd:f7:2a:d3:15:1c:
8c:1e:a7:fe:c7:61:9e:b9:3b:28:19:16:12:bc:dd:
1c:77:7a:51:d8:98:a7:32:78:c2:f8:8f:27:67:5d:
51:17:cc:80:6d:cf:aa:e5:d0:b8:93:60:8b:cb:71:
6a:0f:eb:95:e9:1d:8c:04:38:12:b3:e9:14:1c:af:
28:34:07:c3:65:0a:53:ae:d2:8e:cf:d2:f3:ee:1f:
7b:a2:03:fc:32:1a:b3:2b:d7:96:4c:a0:bb:10:16:
a3:4a:92:b1:21:11:46:47:96:6a:7c:85:97:3d:af:
93:a2:b3:42:4d:e2:ae:b0:88:f3:0c:5f:91:c2:2a:
68:c6:c4:62:4a:e8:78:28:3c:0c:2c:ae:d7:e6:a4:
c8:5f:2a:6b:ef:d2:13:2e:c5:46:8a:35:26:ee:0b:
53:48:ec:25:81:38:12:94:b2:3c:2c:b7:8e:1f:72:
00:28:20:6b:dd:45:2a:73:28:73:8a:9f:4d:9c:79:
82:c5:4d:b7:cb:16:82:53:51:12:24:b5:6c:67:8d:
43:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1C:3B:34:88:E2:93:EC:73:E7:74:4E:0B:ED:40:A4:37:5D:34:EF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eBw7NIjik-xz53ROC-1ApDddNO8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5b:cf:17:7b:fd:34:30:11:eb:f6:fe:f3:4a:5d:bb:a4:ea:b2:
5a:0f:51:50:9c:b7:7f:ee:4c:69:70:ed:83:f9:bf:45:39:77:
a4:e0:f3:0a:44:31:c7:bf:16:6d:32:47:8a:41:7b:60:28:d0:
39:80:53:8b:4c:6f:bb:80:82:a8:eb:df:55:b8:99:d7:18:2e:
cf:be:27:50:bd:bc:c0:2e:b8:34:4a:10:5a:9e:60:92:02:17:
ce:2a:d2:b1:4a:d6:d6:d3:b7:c6:2e:b2:a2:07:dd:a3:a5:da:
bd:11:37:5d:83:32:a3:f8:7a:f4:8e:50:e4:2f:9a:3e:fd:54:
0a:18:98:ad:0c:71:31:1a:5b:08:a9:77:1e:20:4a:90:04:73:
0b:59:80:b7:3d:b4:a4:60:25:1f:81:52:71:38:0d:db:e1:2f:
4e:2b:d3:51:20:1c:a3:1f:3f:6f:94:09:a2:f8:08:40:29:06:
38:a1:fa:d7:3a:d4:6c:dd:9c:44:8e:b3:e4:90:f9:87:b5:cd:
0e:57:9f:19:f8:22:e0:ed:44:d1:d3:6e:d5:bc:06:42:63:65:
59:e1:2d:4f:b2:c6:c8:ab:e6:97:8d:11:11:ae:58:0e:f0:54:
61:49:13:74:56:43:1f:13:10:62:50:c3:0e:c4:04:d2:7d:fd:
2b:0f:ec:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org