Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lvjmfq7Afzn0MjN8Kdu-Qjy4UVE.roa
File: lvjmfq7Afzn0MjN8Kdu-Qjy4UVE.roa (raw, json)
Hash identifier: uhVTJFpiViWDhyXKmf87OCd5Z25b29RpQaV4G4Ngbv0=
Subject key identifier: 96:F8:E6:7E:AE:C0:7F:39:F4:32:33:7C:29:DB:BE:42:3C:B8:51:51
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lvjmfq7Afzn0MjN8Kdu-Qjy4UVE.roa
Signing time: Thu 15 Sep 2022 02:43:19 +0000
ROA not before: Thu 15 Sep 2022 02:43:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96F8E67EAEC07F39F432337C29DBBE423CB85151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6b:d3:ee:71:a1:22:24:83:c4:56:4d:0b:34:
3a:57:3e:62:29:8d:15:2c:05:d0:02:a0:12:dc:a8:
1e:bf:19:a9:88:44:82:4d:90:a5:76:13:a5:c2:4f:
4e:35:ed:08:fb:6b:2a:e0:c4:26:42:ab:eb:d5:67:
6e:1a:93:70:0f:8e:23:2d:cf:f9:4f:12:01:c2:7b:
46:78:0c:0d:e4:b4:8c:30:e9:23:5f:ac:cf:17:0d:
ec:d4:8e:d7:ec:26:f1:ce:8f:35:1e:58:32:7c:1a:
90:fd:1b:bb:3e:5a:80:9d:0c:d7:35:2b:2a:f2:87:
14:cd:b0:60:c2:56:31:8d:c9:68:0a:5f:1b:32:26:
d8:16:73:c3:4e:d8:9d:8e:a8:8b:26:05:c7:8e:80:
a9:a9:cf:f5:b9:31:7e:18:01:3d:eb:1d:11:57:b9:
9e:75:f7:31:13:58:89:f0:c6:8a:3f:0c:bb:6a:d1:
11:e6:21:a9:c0:90:d6:a2:c2:79:d1:77:f9:4a:31:
81:2a:ef:b1:67:50:37:9a:54:7d:dc:48:77:f9:11:
f5:a5:6b:50:19:f4:77:f2:e6:9a:8b:ce:cb:03:25:
e1:d0:32:b0:72:5b:e4:f4:3e:d9:19:11:9b:d2:7f:
44:d7:8e:c4:5a:d1:3b:37:44:96:f5:8c:fb:49:a5:
27:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F8:E6:7E:AE:C0:7F:39:F4:32:33:7C:29:DB:BE:42:3C:B8:51:51
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lvjmfq7Afzn0MjN8Kdu-Qjy4UVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
97:07:bc:23:00:ff:30:36:fa:2e:e5:57:e2:32:46:df:64:fa:
8a:9f:42:d3:34:5e:40:da:82:bb:80:7d:53:2c:d7:a9:c4:b5:
e5:53:93:c5:ee:61:57:d9:9c:06:c9:d1:e1:55:6f:34:bb:1a:
7b:35:19:c1:81:6f:0f:f0:a9:93:78:04:c7:24:2a:73:39:98:
47:3b:70:d5:94:0e:0f:a9:88:4b:89:d2:09:8c:4f:8f:91:15:
49:45:10:b1:3c:13:de:f1:f0:ed:bc:61:48:af:d5:a3:80:1d:
6d:48:01:95:16:05:4a:e7:79:d2:2d:b9:c0:fe:07:0b:65:1b:
ca:5a:81:b4:84:4c:ff:9b:27:76:0f:2f:65:76:dd:e9:29:dd:
5d:7b:b8:df:e0:e2:6b:6a:fc:cc:9a:5d:e3:28:08:57:3e:e0:
9d:68:f7:c0:58:ee:dc:7a:0d:06:2a:79:1a:38:34:0e:2b:bf:
a8:a5:91:ee:0d:23:1b:73:27:38:bd:ba:e5:54:db:b1:61:23:
ca:2c:0a:a9:84:7e:40:a1:8f:bb:72:c0:ee:9c:71:31:0e:e8:
b2:0d:45:d5:4c:0d:a1:ce:c0:8f:fb:67:dc:17:5e:5b:04:43:
27:a8:b7:5b:64:77:72:a6:78:38:78:4d:02:70:aa:d1:19:ae:
ca:71:0f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org