Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gGIsMCnd6NP7UKlYcpVarUXj2S4.roa
File: gGIsMCnd6NP7UKlYcpVarUXj2S4.roa (raw, json)
Hash identifier: vtkBvua4h1SPM87B9vrBn960FZRy++rEFpH+T0ACBaI=
Subject key identifier: 80:62:2C:30:29:DD:E8:D3:FB:50:A9:58:72:95:5A:AD:45:E3:D9:2E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gGIsMCnd6NP7UKlYcpVarUXj2S4.roa
Signing time: Thu 15 Sep 2022 02:42:53 +0000
ROA not before: Thu 15 Sep 2022 02:42:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80622C3029DDE8D3FB50A95872955AAD45E3D92E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:e2:2a:3e:b8:ea:3b:e6:a6:06:d1:96:71:27:
b5:53:f3:a5:13:d0:bf:2a:57:1f:84:df:ad:00:6e:
14:6a:7c:7d:00:08:1a:6d:52:f0:ca:21:15:92:ee:
54:9e:5b:bf:b8:46:3d:93:c6:54:68:44:a6:fe:73:
3b:4d:3b:39:37:0a:72:9c:61:bb:e4:ff:b8:74:f2:
23:70:6e:9d:1a:68:24:92:ac:c0:a0:42:44:b4:30:
cd:5f:18:ee:e0:5a:26:c9:d2:e1:2a:35:b9:6c:04:
f0:e1:24:b5:4c:fb:d5:e6:84:b5:27:e0:4b:74:b2:
6e:27:c5:3d:1d:39:ce:5e:20:5f:c7:32:62:bf:61:
57:c4:45:36:74:7b:90:d3:ac:e8:4c:e4:9e:85:32:
a7:ff:42:45:9c:6d:a9:c5:3a:24:f8:68:05:88:7e:
a8:19:47:01:db:a3:22:8d:cc:14:70:3c:8a:fc:11:
54:99:9c:d2:e2:5d:40:c4:92:91:fa:37:5a:58:34:
d6:91:5f:c4:ea:6f:73:4f:8b:4a:4f:9b:22:f8:a6:
0e:67:d1:5e:de:77:d5:c0:34:c4:52:b6:c4:1e:a0:
0f:bf:b2:b7:6e:08:e8:1c:ab:71:cf:5b:d9:49:a2:
84:dd:39:86:a6:02:1a:ed:72:80:f5:a0:05:aa:cd:
a9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:62:2C:30:29:DD:E8:D3:FB:50:A9:58:72:95:5A:AD:45:E3:D9:2E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gGIsMCnd6NP7UKlYcpVarUXj2S4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.64.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:1c:00:f0:68:8e:dc:f4:41:af:e2:92:86:3d:12:77:ab:f5:
74:9e:6f:58:31:1c:40:a0:f8:54:d1:40:bf:3e:b4:ac:a9:e8:
ef:34:e0:10:d0:c6:f7:71:df:42:17:e3:e2:05:6f:5b:a8:ac:
21:be:b7:5d:41:5d:f5:c1:ad:79:98:cc:3f:70:cf:0d:3e:86:
f0:a0:2e:34:7f:b4:0b:67:bb:b9:b4:b2:1e:21:be:64:d4:a0:
8d:4a:25:52:8a:45:38:0a:fa:2c:bc:d8:51:a5:f1:aa:b4:0e:
83:5d:b4:cc:5f:4e:1f:18:3b:6d:ae:2e:d9:7e:3b:c5:d3:00:
3b:34:27:56:dc:a5:de:0b:d3:79:f5:9b:93:da:7e:ca:d6:9e:
2b:8d:94:d7:1f:7d:ef:cc:59:03:2f:67:f9:71:67:85:39:fa:
4c:ce:60:cd:0b:6f:fe:19:06:61:44:54:5d:c0:e7:bc:65:69:
61:e2:e6:f2:ca:5e:c2:63:c3:13:f1:a4:81:b5:a7:73:bb:7d:
b9:a7:d8:59:f1:3c:66:e8:87:5d:ca:94:5b:c1:24:c8:23:1d:
ff:cc:79:6d:cb:a9:07:1e:61:dc:32:c4:c2:d8:64:72:a9:48:
ce:25:61:aa:9c:a8:21:18:ed:d7:a5:69:27:44:44:a7:fd:a6:
86:c1:5f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org