Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/n2R0KvD_XVCJKSqIqdibrixWYY8.roa
File: n2R0KvD_XVCJKSqIqdibrixWYY8.roa (raw, json)
Hash identifier: 0D6+GvhFtRy+c50MzQxGspNdCdqgWan1lH6HJjsMT/g=
Subject key identifier: 9F:64:74:2A:F0:FF:5D:50:89:29:2A:88:A9:D8:9B:AE:2C:56:61:8F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n2R0KvD_XVCJKSqIqdibrixWYY8.roa
Signing time: Thu 15 Sep 2022 02:43:09 +0000
ROA not before: Thu 15 Sep 2022 02:43:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9F64742AF0FF5D5089292A88A9D89BAE2C56618F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:0d:a7:63:cc:c8:d0:dd:19:47:ce:e3:b2:
57:55:2d:4c:61:3a:ff:67:a9:61:02:87:07:2c:13:
c3:b2:54:71:c0:98:2b:d8:0f:3b:5c:e2:26:27:32:
d5:de:02:f3:ce:a2:8c:f2:04:eb:6c:87:de:da:1d:
90:62:cf:40:fc:17:50:c4:8e:82:e7:6c:60:3e:8b:
78:66:ad:dd:12:c2:54:54:84:d3:63:c7:52:d6:2d:
b3:fd:15:01:c7:f8:02:a8:82:1e:86:bb:e1:21:42:
d2:d0:1a:3a:67:03:42:63:ad:59:93:a0:eb:db:12:
6d:19:b8:9c:4c:a4:8c:3a:97:55:4d:1e:28:90:f2:
d5:df:1e:03:64:f8:3a:4f:47:ac:f3:54:1b:1f:65:
cd:da:d3:58:28:2c:ba:b5:63:db:83:1b:62:2a:a6:
e1:4e:a5:c2:f1:ee:ae:cd:17:e9:c1:a5:6a:b5:8f:
13:55:b7:2b:04:d7:3e:cc:50:a1:ca:6a:43:12:ad:
04:4c:5d:ab:4a:23:b4:56:06:91:25:66:c2:81:5d:
00:cd:f5:89:b0:89:df:7c:1c:aa:6c:14:05:bc:36:
ec:f6:4b:0f:ce:84:de:1b:3d:ff:fc:10:c8:ff:8c:
73:c8:0d:02:cf:97:82:92:23:c6:d5:f1:5f:c1:4c:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:64:74:2A:F0:FF:5D:50:89:29:2A:88:A9:D8:9B:AE:2C:56:61:8F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n2R0KvD_XVCJKSqIqdibrixWYY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b8:95:fb:17:cb:a2:80:ec:91:09:02:b8:4e:d8:6c:93:0d:cf:
d4:1b:51:66:a6:27:49:01:77:5c:3b:d8:67:bd:fb:01:c4:c0:
17:fa:b5:26:c9:6b:7c:f8:be:03:4d:50:ba:1a:29:65:1a:c7:
44:58:6c:41:ea:e7:73:5e:de:66:f4:89:ca:75:cc:b3:21:c2:
8a:94:0f:ce:8b:17:de:83:c2:95:a5:3e:6e:35:d5:be:4e:25:
bf:62:d1:03:49:b2:82:24:ed:e6:f9:c4:ab:b9:70:e6:ec:57:
0c:1d:50:a7:2d:17:6f:82:0e:c6:0b:99:76:ea:1a:08:8d:a6:
78:07:ca:21:8b:dc:14:e4:d5:93:d2:a1:f7:54:c3:c5:ed:4a:
ec:8d:f0:56:fc:83:0a:49:c7:61:24:32:c6:17:ae:25:41:7b:
01:ca:1d:e1:42:d3:55:30:ec:c4:20:a6:10:81:6f:15:e9:ce:
04:bf:7d:8b:0e:62:f6:cd:b1:31:66:17:a2:d2:6f:64:63:12:
8e:8e:7b:6d:a5:f3:d5:cc:cf:76:80:ca:4b:ea:8c:bb:fd:bd:
8d:ba:9d:ee:d5:f8:67:24:32:81:b4:fe:5c:0b:b9:1f:9a:8e:
0f:76:05:4f:b4:40:dc:58:00:a4:4d:c7:6b:8a:ca:20:de:3e:
5b:5d:84:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org