Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mFQg8ZstAwoBInBMrg5Rnxccttg.roa
File: mFQg8ZstAwoBInBMrg5Rnxccttg.roa (raw, json)
Hash identifier: oPLk4jDLH4xAj50GzYYhSs29lbF1PO7ty9GCfUnaZW0=
Subject key identifier: 98:54:20:F1:9B:2D:03:0A:01:22:70:4C:AE:0E:51:9F:17:1C:B6:D8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1058
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mFQg8ZstAwoBInBMrg5Rnxccttg.roa
Signing time: Wed 01 Feb 2023 10:28:26 +0000
ROA not before: Wed 01 Feb 2023 10:28:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4184 (0x1058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:26 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=985420F19B2D030A0122704CAE0E519F171CB6D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:87:9a:ea:cf:83:24:49:1d:37:bf:22:42:88:
4f:da:bf:36:2d:14:7f:0d:8a:81:1a:b0:4f:ec:65:
e8:32:ec:40:aa:d8:6e:c3:eb:2e:96:01:07:51:4f:
aa:54:59:9f:d8:5d:3e:5d:fb:bd:9b:f0:8e:55:da:
86:95:86:b8:5d:75:80:33:f1:e6:bb:9b:ca:3a:56:
3b:a5:63:47:a3:ad:c5:ac:07:18:46:9f:40:c4:e5:
d5:51:50:6c:17:f9:c4:9c:9d:65:fd:aa:39:47:ec:
e1:a8:40:e7:f9:8e:28:92:c1:0c:dd:b5:01:dc:13:
f0:71:32:3a:05:29:17:08:a5:63:00:a3:a3:57:6b:
10:d4:01:e9:1b:cf:a5:b2:d4:66:8a:aa:2a:d3:19:
12:28:e4:08:64:44:48:1f:a5:53:22:2e:b2:b6:64:
67:77:fb:f8:08:43:c4:c8:09:ca:99:f4:20:cd:c4:
10:5f:89:23:cb:14:8d:9f:25:ca:e3:7c:ac:83:6e:
95:eb:b3:e8:5a:82:41:88:e3:32:3c:8d:1a:ab:e5:
34:f5:ae:6e:f6:9f:55:b9:86:9a:95:2b:b7:8a:d7:
93:60:6f:db:32:f2:30:ec:cb:67:c8:62:1c:93:e1:
64:40:f1:de:ce:0a:7f:e6:3b:32:c1:51:8e:ee:2d:
b1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:54:20:F1:9B:2D:03:0A:01:22:70:4C:AE:0E:51:9F:17:1C:B6:D8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mFQg8ZstAwoBInBMrg5Rnxccttg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.183.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:75:5a:1e:8f:fb:7e:e5:24:90:bb:4e:4b:90:a3:ea:b1:2f:
d8:28:c2:ef:74:5e:31:ec:5a:fa:62:21:d6:39:6d:c9:d7:5f:
92:f2:1f:ad:e7:c0:b9:08:8e:97:cb:e5:9b:5a:cf:e5:15:2e:
92:72:af:3b:b3:1f:7c:86:79:0c:02:93:16:20:35:38:6a:7e:
9e:f7:12:d3:2c:89:34:67:a8:7c:81:b6:a4:de:79:bd:4c:e9:
2b:72:86:f2:1b:ae:5e:07:52:4a:cb:78:2c:a7:19:7c:ab:c9:
95:7f:ef:71:17:ee:e3:b6:f6:41:0f:d0:a8:36:e3:bd:cd:7f:
ef:4d:74:be:a8:cc:34:7a:ec:e1:3f:c5:83:f6:2c:ba:60:35:
c9:0f:99:ad:fe:a7:b4:9a:6a:92:a4:2e:0e:aa:56:c7:dc:d6:
18:6f:5d:f4:9e:5a:70:d6:a7:22:9d:96:8f:ae:7d:ee:19:05:
8a:be:55:d8:c6:d3:0b:9d:fb:58:58:e8:bb:3a:c6:2f:6b:f0:
80:a1:9e:cc:d1:32:c7:ba:1e:39:93:b4:bd:e1:18:a5:88:4c:
d3:d4:dd:80:fc:18:d1:c2:39:59:2c:58:c1:74:2f:43:f8:70:
48:18:59:5d:f6:3d:63:ee:60:5b:fa:1e:45:18:ac:2f:b5:6c:
bb:46:73:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org