Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jyrVD7oHGHMWAm0IdDKZi1gQAhA.roa
File: jyrVD7oHGHMWAm0IdDKZi1gQAhA.roa (raw, json)
Hash identifier: 9XAjRJk0Ec3CHClAd+eLB4P5HytREDTnacg0aXApXMs=
Subject key identifier: 8F:2A:D5:0F:BA:07:18:73:16:02:6D:08:74:32:99:8B:58:10:02:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jyrVD7oHGHMWAm0IdDKZi1gQAhA.roa
Signing time: Thu 15 Sep 2022 02:43:10 +0000
ROA not before: Thu 15 Sep 2022 02:43:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8F2AD50FBA07187316026D087432998B58100210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:c2:48:10:a1:5d:d0:3b:b8:a8:02:4c:3d:
c6:ac:a6:0c:bf:32:f1:ce:57:db:ba:8f:0e:d6:8d:
dc:3f:6a:8a:ed:a3:91:cf:da:58:40:73:3b:ac:ae:
02:cf:83:48:96:62:19:2c:ef:25:58:7d:64:21:16:
81:28:15:ff:b7:2d:85:7e:8a:91:18:86:25:19:3b:
fc:af:35:4f:81:6a:69:04:6e:df:bf:7a:d2:5d:0a:
6c:1b:bc:7b:61:12:0a:2d:e3:f0:ef:2f:a5:41:a1:
1e:16:8d:02:ba:2a:9b:89:55:f2:17:35:a0:c6:fe:
ad:22:0b:72:37:96:f2:7e:b4:8f:a8:8b:b1:12:4e:
78:a6:fd:d4:ce:25:fc:80:f2:a9:9f:14:26:cc:b4:
5f:df:b9:28:6b:33:f3:9b:ef:fe:f6:71:5d:40:80:
44:1e:bb:bb:dc:c7:b9:d8:f7:4c:03:6c:e9:f4:72:
bd:90:9a:2f:0d:e1:61:5f:c5:58:b1:74:15:86:43:
16:c2:6f:8f:c0:20:2c:93:65:4b:c7:9e:e2:64:c5:
76:6a:53:95:03:d8:7f:1e:16:0c:f8:af:be:ac:0b:
19:56:98:94:e8:90:11:ba:ac:9c:00:cd:77:af:fc:
f7:60:c5:17:aa:ff:13:74:11:ef:db:dd:0e:44:b4:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2A:D5:0F:BA:07:18:73:16:02:6D:08:74:32:99:8B:58:10:02:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jyrVD7oHGHMWAm0IdDKZi1gQAhA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9e:c0:57:1e:cc:cd:e2:18:e6:e2:d8:1e:10:7a:a5:de:6f:e7:
39:92:5c:d6:a3:6e:56:0c:4c:57:3e:d4:05:d8:21:ed:64:88:
70:77:1e:3d:48:c6:35:8f:4a:bf:1d:33:a8:08:4f:05:9a:29:
7a:42:f3:57:c5:bf:43:17:48:5c:e4:c6:8f:e2:2e:33:c6:68:
25:17:18:fc:f5:31:64:8f:a5:8e:fa:26:11:66:bc:b6:d8:0b:
f7:ab:8b:a5:1a:47:1f:4b:a2:38:fc:fd:0e:e1:64:8b:bd:3b:
3d:33:29:2f:d2:d8:c0:f8:d7:74:0c:32:ad:5b:be:e0:43:f0:
ef:84:d7:db:80:48:30:61:1f:03:e3:d0:19:fa:34:32:3a:38:
ad:74:fb:ba:65:df:a9:ab:59:a8:e6:a7:a4:f3:5e:66:1d:83:
9e:ba:a5:9f:94:c9:90:20:4b:db:a2:46:4b:68:26:bc:52:d8:
90:26:4d:ee:7d:e4:aa:d6:98:a7:4b:8e:c7:5c:49:b2:2e:cd:
6c:e4:e5:17:52:f2:55:76:55:6f:23:cd:1a:9d:5c:3e:4b:4a:
7d:bc:51:a8:f7:31:9f:16:5c:ee:79:03:53:39:a7:21:3d:27:
72:0b:be:6d:b2:23:ad:14:38:6b:5b:74:14:08:52:ed:b8:29:
22:80:7a:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org