Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/n4vn0L70XX8Xnls3K9_cYeR4M6k.roa
File: n4vn0L70XX8Xnls3K9_cYeR4M6k.roa (raw, json)
Hash identifier: yioU19wTxDs2zklJL7mK4NfLxgkxUmfhGjsX0OB5seY=
Subject key identifier: 9F:8B:E7:D0:BE:F4:5D:7F:17:9E:5B:37:2B:DF:DC:61:E4:78:33:A9
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE1
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n4vn0L70XX8Xnls3K9_cYeR4M6k.roa
Signing time: Wed 01 Feb 2023 10:29:03 +0000
ROA not before: Wed 01 Feb 2023 10:29:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3297 (0xce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9F8BE7D0BEF45D7F179E5B372BDFDC61E47833A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:2e:21:24:4c:7f:57:ef:9b:4e:ea:26:fb:
64:35:7a:44:38:4a:25:14:2f:1c:91:56:ff:96:3d:
75:cf:a0:44:44:ea:48:04:5f:4b:b4:a4:d8:27:08:
a8:cb:f7:a5:d6:e1:5b:10:ae:12:54:1d:86:b8:ba:
75:40:ac:81:ae:25:4c:b6:78:db:fb:df:19:de:14:
52:8c:a9:b5:08:e0:fb:09:c9:c4:ce:c0:cf:35:63:
c8:ca:6f:ec:ad:33:1b:5f:4b:63:d5:66:fe:35:5c:
80:14:14:14:4e:5c:47:2b:29:5a:d8:41:cd:a4:ec:
56:fd:7a:f7:e3:42:0e:2b:3b:70:d5:b9:37:4c:b4:
be:44:18:34:e8:43:c5:15:64:6b:68:3f:75:2c:52:
b1:80:fc:ac:e4:a1:88:32:3c:64:6e:af:0d:64:68:
5c:5d:ac:6b:7d:a9:2d:a8:9d:c1:d1:77:98:ca:6d:
43:e5:33:dc:3a:60:6d:90:28:c7:fa:d4:97:f6:66:
fb:ff:ef:08:a8:20:49:c0:79:2f:6c:70:72:02:7f:
de:fa:0f:a2:24:91:f8:28:9a:bb:f8:29:26:c1:4e:
f4:41:fe:db:21:04:9b:7d:02:12:5a:fb:13:23:ee:
ac:9e:92:3e:e8:b5:9b:64:b0:84:95:f1:7e:fb:33:
d4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8B:E7:D0:BE:F4:5D:7F:17:9E:5B:37:2B:DF:DC:61:E4:78:33:A9
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n4vn0L70XX8Xnls3K9_cYeR4M6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:64:39:5d:41:bc:8d:39:63:98:da:b8:a6:19:df:8d:4b:74:
c7:ae:26:c9:1b:44:f0:8a:8c:3a:dc:4f:7c:df:3a:1f:ae:18:
df:56:33:b3:93:72:f9:1e:5e:11:38:48:12:77:a0:33:f5:ad:
af:97:96:dc:0a:09:f5:ef:16:d7:23:81:15:b1:35:40:05:e4:
f9:9a:89:3f:35:54:04:9b:ea:80:06:c4:e9:4f:0a:39:a3:38:
1f:6d:a9:ec:b2:5e:55:51:6a:24:38:ff:18:0e:08:52:13:8b:
e1:cb:6a:02:8d:34:45:7e:a9:31:63:80:1f:1e:65:ac:4f:0d:
23:6a:07:d2:c4:26:5c:a4:ee:27:b0:ca:d2:39:b2:28:2c:ba:
96:9e:fb:83:c4:5c:53:e0:f2:17:0e:16:8c:4b:a2:f3:23:4c:
5c:33:c3:c5:32:9e:9f:aa:93:fc:29:9e:38:14:5c:3e:0f:cd:
85:6a:44:f8:97:13:f3:fa:5e:95:5e:66:95:58:52:6d:35:d9:
43:59:16:2b:d1:b9:6f:c4:ed:e4:25:eb:96:4d:92:8e:7d:0e:
76:76:9e:11:5a:68:8a:29:e9:dc:d5:6a:bc:f6:76:9f:3d:c0:
9d:d8:86:4b:4e:f7:f4:f2:60:b8:60:f4:8d:42:66:08:31:fd:
6d:9b:d9:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org