Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/f_2CpkGynqWdp1HFX-Gdd9nAncQ.roa
File: f_2CpkGynqWdp1HFX-Gdd9nAncQ.roa (raw, json)
Hash identifier: D4PLiUVNAQ6S76Pea3oh4Pf07eZJ5DzTQcrd0vaKEdQ=
Subject key identifier: 7F:FD:82:A6:41:B2:9E:A5:9D:A7:51:C5:5F:E1:9D:77:D9:C0:9D:C4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f_2CpkGynqWdp1HFX-Gdd9nAncQ.roa
Signing time: Wed 01 Feb 2023 10:29:11 +0000
ROA not before: Wed 01 Feb 2023 10:29:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 122.147.24.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4326 (0x10e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:11 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7FFD82A641B29EA59DA751C55FE19D77D9C09DC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:43:13:c8:29:f1:44:55:ee:54:a0:be:ee:32:
ad:79:3f:e9:b6:2b:e2:b0:b7:14:5a:c2:f9:16:11:
cc:35:78:37:fb:50:a9:1f:fc:94:66:fb:6d:02:4d:
06:a7:99:10:92:a1:4c:9a:f2:90:80:ac:bb:1a:9b:
c8:0a:b4:cc:1f:f1:fb:d3:92:93:9f:7d:44:e9:18:
f4:48:30:cb:23:c4:d1:90:de:d0:df:77:e7:d1:fd:
58:38:e5:a4:eb:05:0d:63:3c:8b:53:8d:ff:bf:02:
cd:da:cd:0e:fc:70:db:b9:d1:2a:1e:ae:d2:18:c1:
4c:5d:a5:04:8a:16:24:3b:a4:02:72:8b:be:16:f3:
8e:48:a9:99:a4:8f:07:66:7a:c9:4e:2d:dd:c1:31:
ad:3a:e3:02:d2:e9:ad:06:10:6f:81:b9:87:85:72:
d5:34:18:30:90:76:1d:88:ee:b1:ce:ff:4a:e3:22:
87:f6:a7:f4:30:a9:53:43:cb:28:4e:d5:69:9c:11:
00:59:ea:9a:17:39:b9:80:67:cd:71:a0:82:72:ac:
94:a9:38:3e:46:19:bc:b5:b8:72:82:3c:81:69:33:
23:50:73:7c:cc:58:50:49:bb:e0:1c:41:50:5a:af:
45:ec:c2:5f:43:7c:4e:38:f9:a6:81:f2:2f:2f:55:
9d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FD:82:A6:41:B2:9E:A5:9D:A7:51:C5:5F:E1:9D:77:D9:C0:9D:C4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f_2CpkGynqWdp1HFX-Gdd9nAncQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
63:25:af:64:63:68:5d:4d:6a:4c:9b:ff:0f:4b:5a:7f:d0:f7:
f8:39:56:a8:ab:b6:83:b3:07:0d:90:3a:37:94:94:5a:79:bd:
5e:77:65:9b:00:91:86:69:d4:8f:42:cb:29:2a:6d:12:3c:d1:
ce:97:63:45:c3:c1:1f:8f:e7:a0:b1:eb:68:7b:b9:4e:98:b1:
63:d9:65:92:8d:76:90:b0:d6:03:b4:e0:d4:d0:5d:b4:a0:36:
b1:80:62:04:e4:74:b8:6b:17:cb:47:86:4f:ad:26:05:79:6d:
af:1f:8a:3b:de:02:d1:10:87:f7:40:54:e8:00:da:e5:59:50:
6d:08:a9:e4:d1:e9:2a:07:fa:28:2c:16:1e:d1:7e:37:3e:65:
59:56:22:bf:05:bc:ed:3c:c7:33:c2:be:ad:bb:e4:d8:42:4e:
48:d0:ed:b6:e0:b0:e1:6b:fa:82:76:ef:d8:ce:0f:fa:85:d7:
b4:94:5f:a1:e6:23:f1:69:42:c0:d0:f9:75:bc:b0:5c:b8:ec:
de:7c:ca:d0:70:64:32:40:1e:0a:c3:a8:ad:32:1c:1a:92:48:
b5:eb:db:a9:60:68:2c:3c:7f:55:b4:7c:55:d5:3b:8b:98:34:
05:8f:eb:8d:ae:dc:88:a3:fd:c5:37:a2:36:98:33:2a:ba:1d:
03:91:32:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org