Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/g7OxFjXv_I2Lg_L8sXaNDGp2jQQ.roa
File: g7OxFjXv_I2Lg_L8sXaNDGp2jQQ.roa (raw, json)
Hash identifier: vJnJD5hagr36PX90oBqm25XtB+UPP6Ag0nvHvXMCyWo=
Subject key identifier: 83:B3:B1:16:35:EF:FC:8D:8B:83:F2:FC:B1:76:8D:0C:6A:76:8D:04
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CDE
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g7OxFjXv_I2Lg_L8sXaNDGp2jQQ.roa
Signing time: Wed 01 Feb 2023 10:28:56 +0000
ROA not before: Wed 01 Feb 2023 10:28:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3294 (0xcde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:56 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=83B3B11635EFFC8D8B83F2FCB1768D0C6A768D04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:81:4c:7e:42:7e:be:0c:39:91:2c:c6:98:93:
07:81:21:6e:6f:11:63:37:bb:eb:30:ce:8f:21:02:
6e:07:f1:09:9e:55:b2:7e:bb:a4:ac:81:83:e7:fe:
ef:94:4e:2a:45:0c:d8:c6:10:b2:87:be:53:3a:48:
2b:03:43:ab:bd:bf:e8:e7:2e:fc:62:d8:05:82:e6:
15:e3:97:84:00:6c:5d:e8:69:c6:ab:99:a8:44:6e:
93:5f:1f:59:6f:1e:c0:bd:3b:c7:20:9a:00:34:1f:
f3:51:f3:c4:44:a7:91:5d:11:e4:98:ed:90:70:29:
94:16:96:ee:52:50:11:5b:e3:7a:01:08:1f:4b:ec:
9d:7b:3e:61:74:35:69:df:64:96:ff:dd:0f:9f:de:
5a:4b:ec:56:5e:d2:8e:4f:51:ab:27:c0:07:ee:b5:
01:38:c3:49:ec:f2:66:55:03:55:38:34:06:88:ad:
11:de:d9:0e:0b:10:80:9f:69:c7:fe:c2:26:9e:34:
1e:ca:c3:0c:37:5c:60:aa:27:75:2d:47:34:ff:13:
5e:88:d2:11:7a:85:ed:9e:ac:01:50:71:45:80:95:
e8:c8:69:78:e7:a5:a2:86:be:b3:81:df:ef:90:77:
99:c8:4c:c1:ae:1a:77:de:3b:a8:d0:23:e5:1b:fb:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B3:B1:16:35:EF:FC:8D:8B:83:F2:FC:B1:76:8D:0C:6A:76:8D:04
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g7OxFjXv_I2Lg_L8sXaNDGp2jQQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
30:b3:8e:3b:8b:a2:8d:88:f9:ec:97:38:bc:49:eb:37:5e:a0:
cb:18:7c:d0:90:2c:4c:c5:c1:74:ed:ef:95:bd:90:3f:a1:b0:
a5:da:12:b5:16:f7:97:a1:c6:43:b9:80:89:39:3f:70:1c:31:
36:1d:17:a1:f7:00:75:17:8d:f5:4e:c7:d0:a3:05:c5:f1:9d:
5a:91:f7:7d:57:1b:95:2b:02:a1:d7:b3:b3:9e:7f:ea:9d:b0:
64:14:36:6f:d0:ef:72:24:5d:f6:bd:06:05:09:ec:cd:0f:27:
ed:35:a9:7b:cf:5a:93:b5:a6:ab:1b:14:22:be:12:c7:f9:69:
80:69:31:15:1b:33:cb:cb:77:26:bd:f6:4c:9e:ef:d4:75:1e:
72:02:cd:52:eb:48:e5:0e:7c:c2:6b:c2:b3:e8:e5:29:3f:3d:
12:91:e0:b4:4c:95:a8:7d:bf:80:33:ba:28:fa:a9:86:f2:ac:
02:6f:9f:52:1f:16:6e:c4:ff:67:fa:1e:f3:78:fa:1e:71:c7:
f1:85:42:91:44:64:ce:29:76:ef:32:e0:8a:31:a3:23:24:1b:
67:d3:ee:06:ba:88:e8:6e:25:66:1a:4b:4b:d1:94:30:6e:68:
3f:b7:f3:0b:f0:75:f9:48:ed:68:57:b8:fe:5c:29:1a:b6:f1:
68:a1:41:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org