Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUHcwCpRlucAJ3_zJZra2LpRZBE.roa
File: jUHcwCpRlucAJ3_zJZra2LpRZBE.roa (raw, json)
Hash identifier: LYI9tDFutD3e4s9BDs4xYI4KGNxKFIMsEbFYpLgpq+s=
Subject key identifier: 8D:41:DC:C0:2A:51:96:E7:00:27:7F:F3:25:9A:DA:D8:BA:51:64:11
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUHcwCpRlucAJ3_zJZra2LpRZBE.roa
Signing time: Thu 15 Sep 2022 02:43:50 +0000
ROA not before: Thu 15 Sep 2022 02:43:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8D41DCC02A5196E700277FF3259ADAD8BA516411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a6:71:34:d5:77:d3:0f:be:83:7b:2e:ab:f9:
cd:8b:31:d8:7f:df:62:da:78:7b:72:3c:9f:17:ee:
41:b0:2b:42:6e:8c:f8:bd:34:bd:64:c4:43:43:ae:
a0:20:0d:35:9d:2e:1a:b1:c7:a5:e9:1a:21:5d:a9:
00:53:56:5e:63:58:d3:02:64:9e:02:77:b2:3b:c6:
d2:1f:3f:ca:e0:33:49:db:f0:f2:50:37:4b:1f:8c:
2b:88:95:cb:43:4b:a2:0d:df:c2:3a:53:3d:e9:9b:
d4:b1:d9:a5:04:25:e1:9d:b7:c4:fc:19:8e:3f:21:
50:0b:01:84:3e:40:c9:45:ba:3d:aa:a2:65:9a:24:
3d:79:da:7b:8f:c6:ea:98:ae:fb:82:dd:a3:45:b7:
71:25:0c:3f:65:0a:ae:07:b8:15:64:d8:34:e6:15:
09:ba:27:21:b4:41:c4:25:97:65:2e:39:0f:b6:d8:
5f:06:a3:f1:5a:76:d5:d5:ea:d4:b6:15:88:cd:fd:
9b:68:0b:cb:b6:c2:7a:31:f8:84:c0:a4:83:90:bc:
e8:82:8c:50:98:8e:6c:73:7f:37:92:55:29:5b:f4:
53:66:df:f2:52:2f:8e:42:99:7e:1f:1a:d6:00:b6:
74:37:e6:8c:51:e9:68:7b:5e:69:85:64:d7:dc:c4:
76:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:41:DC:C0:2A:51:96:E7:00:27:7F:F3:25:9A:DA:D8:BA:51:64:11
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUHcwCpRlucAJ3_zJZra2LpRZBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
ac:f2:a7:6d:a8:dc:c9:55:41:7f:28:eb:ef:03:3a:cc:d2:b8:
67:23:62:b2:86:68:e0:3d:ba:ae:94:bd:46:c8:30:f1:d5:04:
66:c2:51:0a:60:f6:ef:ac:a3:20:ff:2a:a3:13:87:af:2f:78:
60:6e:99:90:ff:fa:8e:3c:fa:e6:d7:22:97:cf:7c:7b:59:6d:
85:f8:06:6f:05:ea:d7:f7:03:87:24:1c:ec:a8:b7:8d:0c:9b:
dc:73:18:cd:23:5a:6b:93:e9:4e:80:b2:df:a6:c3:b5:18:8f:
2b:e0:d1:ab:e3:ba:89:5f:22:85:5c:90:88:db:04:85:cc:ab:
8a:0e:07:81:94:4a:e4:62:59:48:02:6f:c0:ed:b9:6d:8b:89:
75:07:ca:19:b8:42:f6:64:d3:4e:33:d2:f0:59:ac:39:a8:75:
14:18:c7:7d:09:55:d1:ae:d9:d9:af:83:27:99:b7:6e:06:f1:
11:20:47:f9:c1:92:5d:c5:13:82:c5:2a:d3:f0:f9:1b:3b:f7:
49:fd:fc:c6:f2:2b:73:b8:36:69:99:60:72:b6:2b:b8:41:05:
28:65:0c:b6:56:10:ba:e2:ff:81:3b:a4:ee:26:39:4e:58:1d:
ad:48:38:de:2e:d9:5b:13:d6:18:23:b7:ea:75:d5:5b:f5:55:
fd:3a:8c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org