Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nBRTnPRIQ9UGU3mJV1xx8kqNG8Y.roa
File: nBRTnPRIQ9UGU3mJV1xx8kqNG8Y.roa (raw, json)
Hash identifier: 3gsiZ35iJvOZI2bLn1PiegpOTA0KD/v5WAWLAkK12Q0=
Subject key identifier: 9C:14:53:9C:F4:48:43:D5:06:53:79:89:57:5C:71:F2:4A:8D:1B:C6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nBRTnPRIQ9UGU3mJV1xx8kqNG8Y.roa
Signing time: Thu 15 Sep 2022 02:43:19 +0000
ROA not before: Thu 15 Sep 2022 02:43:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C14539CF44843D506537989575C71F24A8D1BC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6a:a7:65:89:cd:72:60:c0:92:56:9e:f4:d2:
a4:03:8c:0e:60:6e:d1:02:ec:5c:85:d6:c7:96:ab:
97:9c:43:5b:99:29:68:35:28:9e:de:62:3a:67:c0:
f0:9d:0e:9a:7e:a1:42:71:5b:d6:9c:a6:ec:4d:bf:
2f:63:53:3e:da:de:4c:4e:c1:74:0c:14:92:8b:1d:
22:3e:eb:ce:36:eb:09:6a:84:8a:82:de:1c:9b:06:
11:35:a2:56:57:91:a6:8e:02:53:55:11:00:0d:2b:
1b:f9:d2:c7:46:1e:d8:aa:d5:39:1e:03:9a:94:43:
93:b4:41:4a:fd:db:58:81:00:6f:e3:4b:71:53:4f:
e0:00:da:d6:2d:40:8b:f8:81:f7:9d:54:af:59:4b:
fd:60:4e:c6:1e:1d:a3:71:8f:81:79:87:55:4f:bc:
32:9d:46:f3:eb:0e:da:f8:70:e7:ad:66:ee:8a:37:
78:cc:dc:fc:1d:e5:04:f4:ba:90:23:86:25:f4:be:
97:89:be:68:6e:a3:54:66:22:35:a7:0d:de:d7:84:
51:fd:24:56:5b:39:eb:2c:52:5a:91:b9:d9:20:c3:
8c:dd:88:b7:fb:3e:a9:1a:6e:d3:9e:85:86:92:e5:
22:e9:ee:ea:a1:6c:1e:57:e7:37:a7:23:75:ee:36:
d4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:14:53:9C:F4:48:43:D5:06:53:79:89:57:5C:71:F2:4A:8D:1B:C6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nBRTnPRIQ9UGU3mJV1xx8kqNG8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
65:97:54:ec:4d:dc:53:bc:8e:12:f3:cc:08:ae:8c:b9:06:0e:
16:00:20:9b:c2:fd:21:bc:25:59:12:fa:5d:74:19:5e:8a:97:
1c:a1:59:02:14:78:fc:64:a8:31:a3:1a:14:7e:b2:6b:75:3a:
f5:85:4a:5b:69:da:e6:25:c7:ba:7d:65:db:40:5e:67:39:38:
68:c5:ed:50:02:ae:4c:e0:89:f6:eb:fb:db:db:57:c4:27:58:
a4:33:66:3f:e8:f0:c0:8c:f2:83:fa:8e:b3:2b:61:ca:69:59:
0d:d4:56:86:72:a8:08:bc:27:21:66:16:03:4e:77:f0:d2:91:
c7:1d:b5:37:9d:5e:69:45:d1:79:eb:88:54:6c:55:c2:19:e9:
71:fa:7e:fc:01:35:97:b4:9b:a0:28:5a:d4:e0:db:c7:7f:b4:
3f:1d:c2:24:26:e1:4c:20:15:aa:40:a2:e0:38:fa:c3:f6:3d:
80:00:d5:15:0d:d3:22:10:af:c4:1a:e8:5a:90:5a:0d:2a:2a:
83:01:33:23:59:3a:1c:cd:9a:48:4c:bc:69:00:85:a1:cf:df:
45:eb:49:bb:38:47:38:a6:55:a4:2d:8a:3a:59:17:6b:04:88:
7a:54:fd:4a:75:24:b9:7e:d0:ac:9b:07:e3:cb:08:62:4e:fe:
67:5a:a8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org