Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSTRhdxxrewtCaO41EyNSJ8DZYo.roa
File: lSTRhdxxrewtCaO41EyNSJ8DZYo.roa (raw, json)
Hash identifier: +7kW+b/DAL6PilVKjwiFbOe6JZ95qHD1v1/lwQLFzp0=
Subject key identifier: 95:24:D1:85:DC:71:AD:EC:2D:09:A3:B8:D4:4C:8D:48:9F:03:65:8A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 102B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSTRhdxxrewtCaO41EyNSJ8DZYo.roa
Signing time: Wed 01 Feb 2023 10:28:14 +0000
ROA not before: Wed 01 Feb 2023 10:28:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 106.105.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4139 (0x102b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9524D185DC71ADEC2D09A3B8D44C8D489F03658A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:81:16:48:8c:cf:ad:0b:62:bd:ea:5c:25:
fc:fb:a5:8e:10:27:3b:d0:fa:28:c0:b2:4f:90:0b:
80:26:7f:47:39:d0:a0:65:9c:95:50:33:14:7e:fe:
38:d5:c1:f6:7f:3b:3d:34:4e:3d:6c:a8:79:71:fe:
47:93:d1:c7:a3:4c:f1:62:42:02:92:48:ad:b3:99:
ef:82:87:e3:84:e0:c8:0f:74:e8:ce:1c:90:19:55:
01:07:d2:18:84:6c:0a:6b:e5:3d:b7:07:49:00:35:
ee:db:26:e2:e6:25:fc:e1:96:39:8f:fd:9a:98:3d:
4a:d8:c5:e4:1a:8c:ec:54:e3:07:0d:2b:83:0e:88:
89:55:09:75:53:1d:7c:c2:09:12:fd:7e:64:a8:d0:
da:b4:b8:ac:d2:43:e4:34:23:a7:c9:1c:a3:a0:f9:
f9:81:fe:3e:01:5b:ed:32:0c:1b:e2:10:e1:6a:ad:
89:8b:a1:3c:4a:fe:40:d2:7f:56:ff:65:ff:db:4f:
0f:99:27:ff:fe:36:31:16:c9:ac:c9:6d:4c:7c:b3:
f0:da:f5:43:53:32:f5:3f:6d:d0:01:7f:12:17:91:
47:78:df:f3:b9:34:42:2b:c3:bc:7c:2a:3a:b2:b6:
cf:1b:80:80:fb:60:6d:7f:7b:4a:55:6d:c6:98:e3:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:24:D1:85:DC:71:AD:EC:2D:09:A3:B8:D4:4C:8D:48:9F:03:65:8A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSTRhdxxrewtCaO41EyNSJ8DZYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.128.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:54:4a:77:e8:f5:46:9f:d4:c3:e0:22:b6:fe:f2:20:02:b7:
05:47:26:a4:e1:9f:5c:ca:80:c6:fc:53:be:87:f6:fc:83:1e:
98:77:11:d1:09:91:c9:7c:68:a5:97:ae:cc:c4:c0:cc:84:80:
08:1a:60:71:b4:1d:b4:98:40:c8:8a:9c:49:4e:c9:6e:82:55:
de:33:c4:d8:89:34:8e:68:0c:54:c1:d4:48:52:69:1a:ef:4b:
ff:25:93:23:2b:43:0f:c1:7b:34:6f:1c:95:01:6b:dc:d6:1d:
b2:ee:92:2f:6b:4d:9e:8d:e9:fe:6e:e8:68:69:58:18:0b:69:
eb:9a:0e:7f:fe:e5:13:59:d9:5c:9a:d5:d2:ac:f4:f8:25:01:
c3:b3:1a:c6:a8:39:7f:ed:4b:9f:c3:b9:43:00:cc:da:6b:d6:
5d:84:bf:ac:d8:8b:15:11:19:6c:6e:ba:ec:c7:9e:bb:29:ed:
a3:43:83:b0:cc:1f:cd:c3:62:26:99:98:61:a7:45:a2:8b:45:
ff:b2:8e:77:1f:75:35:cb:37:8f:3a:47:1e:e0:9c:33:37:ef:
82:89:88:f8:7c:9c:ba:cf:10:11:e6:51:2e:1a:2f:08:a5:b5:
da:c4:ae:7a:a0:06:c5:48:b6:01:26:97:4b:5c:c4:a3:13:ec:
12:16:5e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org