Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/geKG-vyhMEQ6sjRA3QolEzRUDRQ.roa
File: geKG-vyhMEQ6sjRA3QolEzRUDRQ.roa (raw, json)
Hash identifier: XePorffAQuyarBhOQX6dnUQhCuB6ffDYrLpkLJ+fQn4=
Subject key identifier: 81:E2:86:FA:FC:A1:30:44:3A:B2:34:40:DD:0A:25:13:34:54:0D:14
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1054
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/geKG-vyhMEQ6sjRA3QolEzRUDRQ.roa
Signing time: Wed 01 Feb 2023 10:28:25 +0000
ROA not before: Wed 01 Feb 2023 10:28:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4180 (0x1054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81E286FAFCA130443AB23440DD0A251334540D14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:a9:f6:6a:61:8e:98:76:e4:f2:3b:82:d8:
c3:9d:83:48:48:10:23:4e:65:14:f6:52:80:08:53:
0e:3c:fd:ab:79:2c:77:4d:ee:32:34:5c:eb:a4:fd:
ad:bf:9f:b9:9f:a9:78:99:70:00:07:8c:54:1d:78:
92:ff:ea:39:3d:b4:5b:35:d5:73:66:88:de:78:ce:
63:ba:45:af:2a:f0:11:32:f5:1b:d2:77:ce:81:75:
e7:3e:25:91:b3:17:72:19:db:7c:76:3b:b5:8f:e9:
09:70:ff:b5:d6:1f:1d:e3:e7:2b:dd:e2:c9:a4:f6:
68:94:53:1c:e4:27:40:83:75:b8:d1:ee:af:a2:85:
5a:a2:b7:c4:b7:c5:76:4e:8a:fd:9d:90:11:45:f5:
ed:06:eb:a4:d2:87:42:25:02:5d:81:87:cd:48:68:
23:32:df:60:55:24:e6:cf:b3:2b:87:6e:5f:8e:e5:
89:22:4c:2a:b2:3b:cb:e7:90:d5:bc:b0:a3:55:c0:
c2:af:d5:5b:0c:8b:d0:f7:fe:a6:09:4a:30:dd:7f:
73:fd:2c:2a:14:e7:9a:bb:7c:08:11:68:f3:d0:85:
fb:84:f9:91:7d:37:0e:08:69:e1:a5:de:a5:7b:58:
60:be:42:dc:fa:56:15:98:bb:75:c5:77:57:f0:0e:
a0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E2:86:FA:FC:A1:30:44:3A:B2:34:40:DD:0A:25:13:34:54:0D:14
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/geKG-vyhMEQ6sjRA3QolEzRUDRQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.208.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:8f:03:5c:78:d7:70:d4:c3:7e:b2:6d:97:99:3a:92:f5:53:
db:72:b1:5f:43:ec:ac:03:9f:9a:22:38:a6:be:cc:e9:11:c5:
ff:ce:e3:98:35:04:26:ea:97:0c:c1:60:01:8d:bd:b3:60:08:
ae:06:e3:d4:95:fa:e2:e1:31:52:e8:8e:9e:dd:8e:26:28:ba:
38:53:ed:64:fc:8e:d3:ae:1d:9f:1f:27:af:1e:a1:2a:7b:b2:
57:44:43:45:75:bf:54:2b:9a:e8:38:a6:d0:7b:91:7a:7f:6c:
e5:84:aa:de:72:81:03:8e:da:4e:30:c2:6b:b3:a0:1a:7a:b1:
9d:70:19:58:be:85:f6:3f:c6:7b:ca:86:f5:69:b4:f4:27:d5:
24:7e:8f:90:d7:e5:2f:18:2f:02:84:15:1c:93:8d:ed:b3:51:
d7:59:3e:08:89:55:8b:1d:3f:d6:53:c0:0c:0b:04:a7:8b:d5:
12:50:b2:f4:ca:e9:e1:70:3c:a2:52:eb:13:23:77:f1:c0:d7:
d2:4b:bc:ce:67:2d:7b:d6:ed:36:8c:34:c4:59:35:bd:5e:54:
33:fd:f6:33:93:d8:27:97:d3:69:b6:03:c1:e6:45:ca:5d:a1:
4a:83:c4:8a:50:e3:18:e8:03:44:69:11:f0:df:a9:75:5d:ac:
23:0a:2e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org