Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lgStLMnECt6MXptrbXnTjOjgQ9w.roa
File: lgStLMnECt6MXptrbXnTjOjgQ9w.roa (raw, json)
Hash identifier: RKMP/SrjVZ/sA1+C4RYV/Xu6sJjGa562po767QqsIfU=
Subject key identifier: 96:04:AD:2C:C9:C4:0A:DE:8C:5E:9B:6B:6D:79:D3:8C:E8:E0:43:DC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lgStLMnECt6MXptrbXnTjOjgQ9w.roa
Signing time: Thu 15 Sep 2022 02:43:11 +0000
ROA not before: Thu 15 Sep 2022 02:43:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.152.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9604AD2CC9C40ADE8C5E9B6B6D79D38CE8E043DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f1:57:2a:6a:a0:02:37:b4:13:a2:7f:a4:47:
3d:dd:12:b9:b6:29:0f:75:64:4e:da:5f:a6:c8:90:
54:96:34:18:01:47:84:b6:f4:20:2c:7f:b0:0c:60:
36:91:94:9e:d9:c7:02:5a:f0:dd:79:2d:26:b3:f8:
71:df:e0:2c:80:fb:91:c3:0f:66:2a:db:f1:30:68:
0a:25:3c:f1:79:29:db:fe:a8:e2:a7:9c:25:7d:d0:
3c:53:3d:81:16:64:3e:fa:75:82:c7:c4:1d:2c:ee:
fa:66:36:c0:58:1e:92:36:e9:90:bd:e9:be:2d:b2:
58:b7:44:d8:b0:60:06:5b:99:e0:cf:c9:80:21:25:
c2:4b:74:6f:b7:62:84:63:73:98:69:7c:8d:12:8d:
43:34:ff:f9:49:4e:e6:39:90:d8:e5:70:05:60:aa:
bd:26:00:c9:ba:5d:c6:36:33:14:01:a7:82:43:d6:
3e:98:29:77:87:eb:2b:ab:78:6a:4e:cf:7c:99:d6:
74:a8:10:34:51:31:d2:eb:bf:da:f5:d8:2a:b7:0d:
4c:c0:d4:7c:23:42:f9:e0:8e:63:08:e7:69:f9:27:
e4:92:d8:23:16:6b:2f:16:2e:a5:fa:4b:ef:50:b0:
c9:5b:be:94:e5:bc:4f:b1:c2:cf:b3:40:3e:4a:8e:
25:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:04:AD:2C:C9:C4:0A:DE:8C:5E:9B:6B:6D:79:D3:8C:E8:E0:43:DC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lgStLMnECt6MXptrbXnTjOjgQ9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.152.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:bb:9b:78:d1:3e:95:bb:2b:c2:7c:24:d6:2e:9e:7c:c0:7a:
76:cd:5a:49:c3:a6:63:0c:36:54:30:16:7d:38:81:d1:63:48:
21:bd:03:04:08:31:5b:e6:45:88:eb:18:88:50:f6:9d:71:3d:
71:ce:41:06:00:63:38:34:a9:0f:8f:50:4d:be:2f:48:d6:45:
c6:16:6a:6e:8f:be:bd:11:4a:d8:93:13:a6:d9:44:1e:1b:b7:
ae:d1:b1:05:a6:3f:a3:6f:fc:06:4e:ea:2a:60:19:cd:7a:2d:
97:60:9c:45:a3:6b:c2:0a:ef:0d:c2:37:83:35:72:67:af:b7:
87:46:ab:9c:a5:e2:f6:18:9f:81:40:73:78:15:d3:c0:15:26:
fb:35:45:a7:ad:2b:47:97:ed:01:b2:d0:50:2f:e0:b5:b9:5a:
0b:84:62:a7:27:61:a8:98:bc:dd:69:36:74:e9:cc:6d:fc:4a:
51:02:90:04:6f:a4:58:32:ff:d6:97:57:16:c9:9d:ac:71:02:
cc:01:b5:d1:cb:d7:46:8e:5e:f0:06:62:61:8e:b7:6d:10:f0:
5e:d1:c3:8a:37:17:7f:ec:91:59:f5:cf:62:36:e0:d5:bf:57:
1d:02:99:f0:bf:df:c1:25:06:ae:8a:35:2e:70:b1:74:a7:25:
6b:b7:6d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org