Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gAJu4UeT5HHH75hyQcldCu5VgiU.roa
File: gAJu4UeT5HHH75hyQcldCu5VgiU.roa (raw, json)
Hash identifier: kO3Cm9jai2LpOTUu89Jz7gzq3m7JiuLpPmsT4AXVW2o=
Subject key identifier: 80:02:6E:E1:47:93:E4:71:C7:EF:98:72:41:C9:5D:0A:EE:55:82:25
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 109D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gAJu4UeT5HHH75hyQcldCu5VgiU.roa
Signing time: Wed 01 Feb 2023 10:28:47 +0000
ROA not before: Wed 01 Feb 2023 10:28:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 60.245.96.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4253 (0x109d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80026EE14793E471C7EF987241C95D0AEE558225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:b3:06:8e:4a:dd:04:99:65:e0:39:1c:4a:
4e:8d:34:cf:47:3c:3f:f4:a5:3a:8d:f5:a1:f9:c1:
46:b8:ab:54:6e:fb:b7:5f:fd:65:a4:b6:4d:0c:d7:
b9:83:19:5f:fa:78:7a:6c:bb:1c:b0:be:0b:6e:0f:
08:13:f1:08:7c:c9:a8:a4:85:d6:f3:72:e5:63:b3:
4f:65:58:00:57:04:bb:07:8f:c9:a0:83:55:f4:52:
1a:94:da:33:e0:2b:82:a5:51:4c:94:17:1e:5e:14:
7b:70:70:99:af:92:1e:6e:42:f6:96:ba:62:b6:98:
a8:c5:85:67:4e:78:d4:ad:b5:51:a6:bc:f7:c1:c5:
26:2d:c7:c2:c7:42:50:38:0f:4a:c6:d5:c8:d7:f4:
20:37:05:4e:de:4a:b9:49:79:fc:d2:e5:0c:3f:d7:
3d:7a:10:32:ed:f9:66:e9:d1:68:3b:34:7e:d0:4c:
d6:8c:ba:17:00:24:1e:9b:2f:fa:c2:7c:9d:b6:1e:
37:42:18:ab:b5:49:0b:a0:82:a9:78:9d:b7:65:03:
fa:64:85:41:ed:63:20:03:f1:3f:2a:df:94:82:eb:
de:1e:68:d0:cc:ab:ab:57:73:7e:a4:33:5f:4b:64:
e0:d3:b5:9e:aa:14:da:4c:35:82:70:5e:1a:78:27:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:02:6E:E1:47:93:E4:71:C7:EF:98:72:41:C9:5D:0A:EE:55:82:25
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gAJu4UeT5HHH75hyQcldCu5VgiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/19
Signature Algorithm: sha256WithRSAEncryption
70:da:f0:6d:48:1c:99:aa:59:18:fd:79:0a:7b:af:a9:4a:df:
23:99:e3:fc:9c:42:11:08:ca:02:ad:7f:ed:93:b7:28:7b:ce:
8a:4c:e3:10:b3:c4:53:aa:6a:5e:a4:ab:06:bd:1a:cd:05:69:
10:ad:ac:e5:7a:44:0b:dc:9f:67:be:a2:04:ad:d7:3d:f4:85:
a1:bc:7e:0b:d1:17:ad:46:64:99:eb:06:46:e7:ed:e8:32:cd:
c6:8a:60:f3:da:c0:35:db:f7:ed:02:95:77:f7:42:ee:83:7d:
b7:e5:3f:50:db:26:3a:4a:9b:df:1d:6b:83:93:4f:c0:94:f9:
7f:d2:52:1c:bd:6e:34:cd:c8:7f:98:64:fa:e7:b6:37:1a:f6:
97:72:39:7d:f6:b8:06:99:de:0f:f2:c1:7d:2f:32:4a:67:d0:
fe:55:76:25:08:64:ab:14:99:42:3d:1e:e8:ad:22:25:cb:30:
f8:f7:a5:be:20:ca:d3:76:ec:f6:f7:f1:03:db:4a:27:e6:ec:
05:04:12:57:fd:e0:bd:9b:7b:9a:1a:12:c1:26:21:a8:8b:01:
1a:14:71:c0:b4:cd:ed:0f:4b:50:4b:24:45:00:21:8d:c4:f9:
f6:c1:87:d2:4d:66:4b:35:f7:1d:7f:10:7b:8e:83:86:67:a7:
b5:cb:dd:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org