Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iy2_DOVNMxFdNdGUSIfVigwngRE.roa
File: iy2_DOVNMxFdNdGUSIfVigwngRE.roa (raw, json)
Hash identifier: 0ksY9sKsu58Ml0wsms9NafUlIhyrThS0S1VvAKtuIgw=
Subject key identifier: 8B:2D:BF:0C:E5:4D:33:11:5D:35:D1:94:48:87:D5:8A:0C:27:81:11
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1032
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iy2_DOVNMxFdNdGUSIfVigwngRE.roa
Signing time: Wed 01 Feb 2023 10:28:15 +0000
ROA not before: Wed 01 Feb 2023 10:28:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.192.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4146 (0x1032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8B2DBF0CE54D33115D35D1944887D58A0C278111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2f:dc:10:17:73:71:7f:da:d2:a2:41:0d:a0:
c1:ab:98:82:de:a1:48:43:00:8b:2a:81:2e:20:61:
9e:2c:c9:26:d4:9d:5e:58:84:84:8b:ae:af:99:43:
51:d0:b8:68:e3:a3:dd:90:9b:e1:d2:c8:e9:4d:50:
82:34:2d:3d:a9:f9:6f:1d:37:cc:a2:66:1b:4e:fd:
16:0e:53:1f:41:38:81:af:3f:51:75:b4:e5:6a:2a:
0f:22:6a:dc:df:74:83:23:6b:b3:00:b7:71:cd:03:
83:01:e1:1f:54:02:9b:ce:70:ec:13:4e:8c:59:8b:
58:b9:65:80:7b:af:fa:f1:0d:56:5c:16:f1:db:ac:
e1:7d:e5:7d:b2:d5:f2:25:21:89:86:16:1c:3b:1f:
43:f2:be:40:e2:02:e6:75:e6:a4:98:d5:7d:3c:07:
41:db:cf:1f:1c:c7:58:81:85:a8:1c:68:d5:3b:21:
e4:02:79:9a:76:1b:bf:a6:0c:ee:e0:28:be:77:5b:
fe:39:2d:0d:28:e6:0f:4a:5c:ed:48:42:71:d7:49:
4a:75:9e:6a:49:2d:1d:c0:38:31:2c:4c:97:c2:d0:
9a:57:4d:2c:fb:35:34:8e:45:a6:4b:c7:72:e5:77:
9f:7c:1f:14:c8:43:83:8b:ad:a8:0f:0a:6f:d0:dc:
56:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2D:BF:0C:E5:4D:33:11:5D:35:D1:94:48:87:D5:8A:0C:27:81:11
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iy2_DOVNMxFdNdGUSIfVigwngRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.192.0/20
Signature Algorithm: sha256WithRSAEncryption
99:56:ca:6e:41:39:09:7e:29:3c:75:01:ae:18:ed:1c:09:4c:
d1:2e:3d:16:95:a7:5c:2a:19:1f:40:63:56:a5:f2:d9:2f:8e:
55:ca:e1:c1:bb:72:d4:40:05:c1:dd:b9:6f:db:1e:fc:0d:4c:
c0:65:1b:66:96:7a:02:34:2b:30:97:93:29:1f:09:7b:df:b0:
09:f4:22:ac:78:52:5c:7b:48:7f:97:a3:11:db:dd:32:68:56:
2e:7e:f7:1d:c9:95:ac:3d:a1:1c:61:6b:e6:5d:b8:27:6a:32:
a3:31:96:e7:58:cc:e1:49:2b:e6:bf:e0:b5:ca:36:ad:99:7b:
3c:21:e0:a2:03:ac:57:c1:a5:de:6e:32:0e:c5:fc:b9:30:53:
50:a6:9e:51:95:76:92:ab:2b:0d:b1:94:23:28:89:e2:69:cf:
97:55:15:f4:4d:a3:22:63:72:71:6c:a7:13:56:1a:ae:97:27:
e4:10:20:a5:b6:70:cc:f5:c8:0f:da:99:2e:ec:22:30:eb:de:
9b:55:5c:a3:e9:f0:c2:ee:47:9f:04:73:51:b2:18:d4:54:ef:
c6:09:b0:2c:69:b2:86:a3:82:6d:c6:02:da:8d:20:45:96:14:
7c:f8:2f:07:97:c7:e0:e0:9c:18:2e:a1:f7:fa:87:4c:38:e0:
eb:41:6b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org