Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lMxpsNvLAAwj7l9f_h59Tbu5cF4.roa
File: lMxpsNvLAAwj7l9f_h59Tbu5cF4.roa (raw, json)
Hash identifier: 3r2QqsrARAxguViBLT+4cOHqRrTy12XE1/xodaY7V+c=
Subject key identifier: 94:CC:69:B0:DB:CB:00:0C:23:EE:5F:5F:FE:1E:7D:4D:BB:B9:70:5E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lMxpsNvLAAwj7l9f_h59Tbu5cF4.roa
Signing time: Thu 15 Sep 2022 02:43:21 +0000
ROA not before: Thu 15 Sep 2022 02:43:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 123.205.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94CC69B0DBCB000C23EE5F5FFE1E7D4DBBB9705E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:1b:c0:2f:07:6e:ef:e8:e2:4f:65:66:33:
11:0e:8e:56:2d:fb:67:9a:e2:d5:c3:97:31:3e:48:
f5:6d:c0:61:66:37:1a:98:5d:b9:f2:ce:76:3d:28:
8d:19:00:f5:93:14:b4:be:5a:aa:cf:5f:49:4a:0d:
15:bc:3a:9b:da:b3:d9:57:7f:40:6f:a9:44:1b:45:
59:ef:e2:34:68:f6:8e:3c:cc:c4:53:0e:8c:e5:8b:
67:01:21:83:4c:11:96:c8:d7:c3:2d:5e:0f:2c:d8:
d5:23:8f:22:19:e4:b7:ae:6c:68:f5:43:31:21:d0:
a8:a9:04:f2:cf:5b:a1:c8:2c:c3:da:35:9b:6c:ea:
8f:42:64:10:28:1e:69:86:d8:87:70:1a:22:9f:aa:
07:a2:29:32:2e:af:b1:25:7b:15:d2:d0:d3:33:43:
2f:cd:90:b1:f2:a2:e0:42:de:70:db:e6:6a:bc:37:
ea:72:ad:68:6f:8d:6a:01:cb:a2:5e:5b:d7:f8:79:
37:e0:aa:bb:c8:af:34:f7:c6:9c:2a:d4:8a:d4:fc:
e1:e7:1b:31:09:2a:ab:af:93:6c:ef:9e:53:ac:6f:
bf:f2:ee:82:51:45:b3:e9:ca:5c:ca:dd:62:83:e1:
21:44:0d:c2:b7:4e:c2:8c:a1:30:a4:8b:66:05:83:
66:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CC:69:B0:DB:CB:00:0C:23:EE:5F:5F:FE:1E:7D:4D:BB:B9:70:5E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lMxpsNvLAAwj7l9f_h59Tbu5cF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/18
Signature Algorithm: sha256WithRSAEncryption
63:da:2e:6f:1d:5a:a4:80:e0:46:57:db:21:bb:f9:a2:f4:0e:
9e:fa:3e:2e:e6:24:5a:d7:c6:cd:d0:a7:c2:10:24:da:bf:c6:
22:a3:27:65:54:cd:18:c9:ac:45:29:a5:5d:bf:7e:16:da:a2:
8e:79:7f:fe:ef:3c:74:58:86:1d:fa:f7:54:b4:49:e7:c6:7b:
b4:ba:da:43:ed:1c:87:69:b8:54:2a:36:79:ce:75:94:88:4c:
06:fb:1e:bf:8b:92:cd:64:95:d8:c8:2e:be:d4:a5:68:05:76:
a1:31:8b:54:ac:32:24:b3:e5:ef:07:9c:2a:c7:cb:bd:42:6a:
e3:53:71:01:b8:5e:64:8a:fc:79:82:59:06:e5:d6:47:d0:8c:
a1:44:9e:a2:fd:b3:d7:59:c7:8c:4a:dc:fa:e0:3a:12:de:9c:
bf:cf:03:07:98:62:2d:cb:0d:2e:0d:8b:6f:f9:18:df:ea:16:
56:79:b0:b7:db:68:63:0c:8f:4a:46:01:f0:ba:e6:70:4e:08:
c1:8a:bc:3e:51:74:37:e5:14:bf:6f:7a:39:8f:83:90:83:a5:
61:0e:c7:92:fa:8c:da:1c:2f:a9:f0:6d:22:fd:60:73:62:64:
50:4e:0b:fa:41:4d:de:d6:46:32:bc:ce:9f:e0:d5:ed:c9:d8:
4d:ee:79:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org