Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nM_eIWomdpr9PaeY8WYYKwPCHAQ.roa
File: nM_eIWomdpr9PaeY8WYYKwPCHAQ.roa (raw, json)
Hash identifier: xhg+zF+A79CvpxBgQxn0ABajvE07Im0TBPON8/MOqj8=
Subject key identifier: 9C:CF:DE:21:6A:26:76:9A:FD:3D:A7:98:F1:66:18:2B:03:C2:1C:04
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nM_eIWomdpr9PaeY8WYYKwPCHAQ.roa
Signing time: Thu 15 Sep 2022 02:42:46 +0000
ROA not before: Thu 15 Sep 2022 02:42:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9CCFDE216A26769AFD3DA798F166182B03C21C04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:84:7e:57:36:10:ab:79:00:4e:29:33:ce:
fd:15:d5:31:28:d0:90:c1:a9:74:33:1c:75:96:16:
31:31:d8:75:86:e1:3e:0c:71:c6:47:51:c9:44:ae:
4f:65:13:73:c7:2a:bc:5e:bf:73:bb:57:15:23:21:
e2:bd:52:ad:c9:36:ec:25:1e:97:5e:2d:b6:cd:29:
c8:04:83:9f:8f:28:42:b4:e8:92:0b:eb:91:d1:e1:
b1:cf:1b:25:4c:44:28:b6:81:36:26:27:73:7d:8b:
cb:63:ba:8e:60:1f:f4:f6:85:1a:aa:ab:67:c1:f8:
67:93:b5:89:ad:8a:77:93:ca:42:b2:ee:4d:d2:90:
99:36:c0:84:3f:79:d4:d9:3d:a1:ac:76:84:9c:30:
96:8f:16:9b:31:41:59:6c:48:93:dc:08:c6:35:9d:
aa:cc:1d:cf:9f:d2:54:e0:e8:e9:9c:05:72:44:a8:
ee:a0:aa:85:0f:75:83:4b:34:44:a9:f7:75:ba:ee:
39:85:d6:ef:ed:49:ff:9d:95:cb:e2:f9:c3:43:f6:
53:1a:b6:9b:e7:ae:99:68:4c:c5:48:b2:bc:fa:02:
96:54:2c:70:07:36:bb:bd:54:93:2b:13:5c:90:4c:
ce:0b:c4:f4:97:e7:25:b3:fe:32:82:68:57:e6:70:
c4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CF:DE:21:6A:26:76:9A:FD:3D:A7:98:F1:66:18:2B:03:C2:1C:04
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nM_eIWomdpr9PaeY8WYYKwPCHAQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
19:e9:6f:00:84:27:f2:3b:a7:c8:08:95:3c:74:52:2f:45:08:
d5:1a:ab:f7:18:37:e5:86:3a:2f:55:ba:44:58:41:5c:3a:0c:
4f:a4:8b:99:58:80:f4:15:64:53:33:03:eb:8b:f3:cf:65:41:
cb:d8:3e:82:1c:10:d9:37:e3:06:74:64:55:d5:c5:94:e7:3f:
31:63:08:18:6c:4c:d0:f1:5f:27:bf:14:ea:51:fb:f8:87:8c:
59:58:68:0b:48:16:5d:8b:0e:b2:68:dd:29:5b:f2:dc:30:83:
87:71:d3:ef:d9:dc:97:cc:78:db:cb:66:8d:3e:28:a4:71:31:
2b:17:90:58:df:15:cb:71:47:ae:d0:fa:e2:95:6f:2f:0c:ad:
2b:07:a1:dc:0f:e7:9e:fc:94:c9:9c:74:d8:f0:05:9f:28:30:
19:3c:50:aa:cc:fe:b7:e4:be:c1:17:e6:10:c7:4a:01:07:ad:
77:66:90:5c:d6:b4:52:50:76:32:6e:81:c9:37:8a:3e:1e:fe:
ea:24:03:0f:83:a4:2c:5d:c1:91:b7:de:c8:30:f7:21:a3:25:
79:52:ff:7b:6e:8c:23:60:ec:a5:01:22:87:76:92:45:d5:ef:
aa:31:5f:e7:78:56:e4:71:27:6d:eb:95:58:40:e8:b6:7a:85:
d1:7f:2c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org