Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lCBgjt3WPHeF2JMv1yKATkSj0pQ.roa
File: lCBgjt3WPHeF2JMv1yKATkSj0pQ.roa (raw, json)
Hash identifier: +Cven0hQpCWzo3dTBQsDSayEnrXGNXITsU+hl9bTqJY=
Subject key identifier: 94:20:60:8E:DD:D6:3C:77:85:D8:93:2F:D7:22:80:4E:44:A3:D2:94
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lCBgjt3WPHeF2JMv1yKATkSj0pQ.roa
Signing time: Thu 15 Sep 2022 02:43:24 +0000
ROA not before: Thu 15 Sep 2022 02:43:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9420608EDDD63C7785D8932FD722804E44A3D294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:39:2e:64:4a:82:54:c2:e1:3e:34:52:04:04:
9d:ee:b4:cc:97:9a:22:ff:f6:41:92:37:71:3f:ec:
6e:a1:8a:0a:5e:43:f8:6e:fc:87:97:31:e8:15:10:
a0:05:cd:88:0d:7b:8d:4e:6b:97:42:b6:6f:a4:88:
9c:cf:30:17:d1:2e:cc:46:84:07:d8:e3:f7:c2:51:
3a:56:bc:c4:92:53:24:95:88:e3:3d:c0:8d:f4:cb:
e9:57:58:50:72:5f:e8:c7:0b:22:3d:18:07:8c:3a:
61:85:85:6b:66:20:0c:9a:f8:49:ce:b6:cf:dd:8b:
04:42:a4:1f:cb:4d:f2:ee:10:ea:47:c6:c5:ae:61:
72:b6:b3:b3:19:1d:b3:4c:8c:7b:9b:3b:ec:c1:f6:
43:ec:37:b8:3c:cc:bd:e2:60:9f:89:e1:b7:75:41:
a0:32:2f:9c:4d:2a:de:3c:12:57:fb:ec:6b:78:59:
7c:01:75:0c:1a:5c:5e:66:c2:b8:a6:ff:9b:6c:a0:
40:c2:2a:d8:7b:70:24:de:24:d2:e5:df:76:b9:c1:
5c:10:ef:78:5b:b8:45:81:91:b1:e6:1c:86:d2:10:
34:d1:bb:11:a8:17:0a:96:ec:22:24:3b:95:64:bd:
ac:48:bf:1b:e5:22:d8:01:58:20:2d:75:6f:53:4a:
5c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:20:60:8E:DD:D6:3C:77:85:D8:93:2F:D7:22:80:4E:44:A3:D2:94
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lCBgjt3WPHeF2JMv1yKATkSj0pQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
57:7a:f9:65:62:4b:81:94:52:32:b8:ce:09:ec:bd:ed:b2:dd:
fc:eb:29:40:89:d6:e2:05:71:07:c2:10:97:cc:8d:63:be:1e:
43:d9:c8:77:bc:61:0c:b3:2a:fb:97:d9:d0:ab:47:fb:a8:f4:
90:21:21:e9:10:d0:f6:9e:e1:ab:18:06:f6:c9:87:a9:ed:36:
cb:28:13:c8:de:d2:6b:00:d6:e2:a9:b9:9e:d1:33:19:61:ef:
94:24:a0:20:d8:48:94:b8:9c:f8:63:51:eb:04:ba:bf:6f:93:
6c:23:2c:03:ad:1b:fb:6d:39:f5:17:45:8b:87:19:24:34:ca:
aa:a3:5a:c7:03:1d:9a:2c:f4:2f:06:9a:ba:69:f2:a8:d7:e9:
d5:3a:7b:b6:75:2f:d9:cc:2c:f0:cc:7a:59:53:2b:04:09:83:
01:d1:83:0a:e0:08:bd:fb:67:b1:29:c9:cf:9f:5a:14:a9:56:
90:e0:46:45:5b:51:e2:ce:11:13:28:d1:34:61:c4:3c:85:57:
17:38:54:d1:24:68:a5:72:42:52:5e:7a:bc:9f:99:85:b3:ba:
1a:b9:d7:e5:50:84:70:ea:7e:d3:47:ec:f1:7e:29:7e:12:28:
c1:7b:1c:bc:02:22:23:32:2f:80:5b:6a:ab:36:c3:68:ba:c5:
3a:af:8e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org