Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gQ3mCJcw_txEDSpGvD4gs3Lo_jY.roa
File: gQ3mCJcw_txEDSpGvD4gs3Lo_jY.roa (raw, json)
Hash identifier: R4oLyOMhfFrSQL/mFFH14X/KFgn2G2Gchky8gAnByIA=
Subject key identifier: 81:0D:E6:08:97:30:FE:DC:44:0D:2A:46:BC:3E:20:B3:72:E8:FE:36
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10EB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gQ3mCJcw_txEDSpGvD4gs3Lo_jY.roa
Signing time: Wed 01 Feb 2023 10:29:12 +0000
ROA not before: Wed 01 Feb 2023 10:29:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.105.88.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4331 (0x10eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:12 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=810DE6089730FEDC440D2A46BC3E20B372E8FE36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:0d:34:00:1e:9a:b0:cd:d9:80:cf:3d:8f:
0c:34:7d:d1:84:43:ce:a8:00:64:d9:cc:99:0c:01:
d4:66:a4:c1:cd:c3:20:df:74:24:1b:65:c6:27:51:
bf:eb:db:e1:d7:48:8b:81:60:8b:0a:f3:58:8f:69:
d2:f6:2b:62:de:98:d9:50:d9:df:83:0b:62:ec:5a:
cc:cc:6c:a1:da:b7:ff:28:0d:f9:a9:da:cf:e5:02:
1d:a0:98:c9:5c:31:10:bb:dc:51:b5:ad:8d:8e:c7:
38:32:21:bd:ae:97:cd:33:58:ba:36:14:26:a8:c6:
d3:5b:2d:53:70:ce:79:1c:73:0b:a1:3c:d4:05:51:
45:83:21:99:f8:67:e0:be:cc:0e:64:38:cc:b3:d2:
31:0e:ce:b9:d0:93:42:c2:b5:85:c2:1b:07:6a:37:
a1:46:8c:13:c2:6a:7e:50:4f:13:fa:d5:ee:1c:2f:
ec:0c:f4:f9:2c:63:6b:94:60:24:99:07:bd:a2:96:
5b:89:05:5b:ae:f5:ee:55:90:0d:b3:e9:19:90:3a:
57:8a:86:98:9d:03:03:4e:bb:c4:44:f0:ae:e6:48:
75:ca:b8:33:44:38:7e:5e:41:0a:7b:67:b4:bf:5a:
16:f2:b5:16:ed:f1:ac:b4:5b:96:47:f0:25:f0:d9:
97:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0D:E6:08:97:30:FE:DC:44:0D:2A:46:BC:3E:20:B3:72:E8:FE:36
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gQ3mCJcw_txEDSpGvD4gs3Lo_jY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.88.0/21
Signature Algorithm: sha256WithRSAEncryption
76:d5:c8:95:14:87:b9:26:80:fa:58:e9:59:96:72:ee:39:b0:
af:93:bc:8b:c7:d1:b4:57:48:c3:21:20:ea:9e:43:e3:e9:a3:
a3:72:13:04:fc:45:cb:a0:3f:d4:cc:0a:e4:18:d9:25:d1:00:
05:f7:fd:3d:63:d2:b5:b4:eb:86:0e:a7:7f:1a:67:c4:83:c0:
3e:bf:6d:a3:a8:d7:60:b5:0f:7b:b9:1d:45:1d:1c:4f:db:e1:
5a:4a:3b:6f:f5:db:8f:db:6f:a6:c9:8b:b0:87:f0:1c:11:26:
ae:5e:20:58:af:a5:12:93:c5:4d:08:af:2c:ec:d9:6c:c0:4a:
92:29:52:48:2e:a1:e6:a5:1f:74:27:a3:bc:30:51:10:7c:08:
83:ff:ef:5e:8e:6f:66:b0:f7:22:64:8c:88:c1:68:4e:3b:58:
b6:d6:a5:fb:82:6d:df:14:f1:00:c6:f8:84:8c:46:e6:c7:dc:
82:17:44:77:79:2c:1c:15:22:48:45:4d:bc:9f:70:ac:6a:c9:
31:58:52:48:2c:f0:47:11:69:39:3d:e5:f3:4b:65:9f:29:dd:
7f:98:d1:cf:44:32:4e:3f:d4:cf:fd:6f:2e:5c:f8:30:ab:82:
ac:56:97:29:fa:2b:4c:cd:3f:27:77:9c:8b:70:96:b1:0c:17:
94:a3:ff:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org