Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nyZkcgIjyvCm7whvdBPSkdBogMI.roa
File: nyZkcgIjyvCm7whvdBPSkdBogMI.roa (raw, json)
Hash identifier: uDTSOYCF4KV5j/W5svf9jC14iZubvoc04OGJ1uu99vw=
Subject key identifier: 9F:26:64:72:02:23:CA:F0:A6:EF:08:6F:74:13:D2:91:D0:68:80:C2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1040
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nyZkcgIjyvCm7whvdBPSkdBogMI.roa
Signing time: Wed 01 Feb 2023 10:28:19 +0000
ROA not before: Wed 01 Feb 2023 10:28:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.205.32.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4160 (0x1040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9F2664720223CAF0A6EF086F7413D291D06880C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:47:fb:c2:59:76:d7:df:3b:0b:03:47:9c:e1:
57:20:b7:ad:d9:80:c8:51:c3:fc:f5:ee:57:e3:a5:
21:31:6c:17:ac:eb:33:f7:dd:45:78:c0:41:27:ce:
2d:e6:54:81:35:41:10:11:ae:28:bf:78:d1:d1:4a:
c2:46:06:7a:e3:46:ee:8c:08:ff:8e:5f:80:52:85:
36:a2:19:9e:61:3a:a9:98:48:ea:dd:e3:b7:f4:56:
e3:bc:d5:9d:85:6c:b1:32:51:a8:f0:19:8f:8e:42:
ee:9e:2e:0b:b8:0a:c3:32:3b:78:6b:da:2a:b6:4e:
75:52:f4:3c:40:d3:b1:77:65:76:b3:36:48:69:30:
b0:59:58:a2:a5:ee:fd:9c:9f:77:c5:fa:f4:17:73:
b1:4e:24:57:22:d4:0d:46:59:44:74:c9:fd:f1:b6:
be:83:26:a4:0e:f7:72:5f:d1:3b:82:c0:a4:c5:66:
a0:a6:b4:4a:97:59:7e:8e:74:31:d2:36:d6:8c:fe:
80:e8:c0:49:5f:28:20:61:ba:9a:a2:4c:16:79:b1:
4f:b4:53:44:6a:c5:e2:59:28:2c:92:e8:2c:31:0a:
35:a0:3e:bc:f0:ac:f4:f0:05:73:38:03:ca:89:37:
da:a3:2d:bb:98:b3:9c:c2:cd:49:b8:95:1b:bf:8e:
93:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:26:64:72:02:23:CA:F0:A6:EF:08:6F:74:13:D2:91:D0:68:80:C2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nyZkcgIjyvCm7whvdBPSkdBogMI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.32.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:47:76:f1:2c:84:57:31:e1:ce:22:b7:86:34:22:a7:b6:9c:
65:3b:be:79:ef:07:dd:2e:d9:ae:ab:38:d3:e3:95:dc:d0:c6:
36:5c:3d:b5:d1:fe:18:f2:75:80:02:e4:09:c7:a6:64:ca:fa:
ea:76:0c:31:93:8c:1a:c1:c5:2f:34:9e:85:59:f5:d9:e7:09:
3f:3d:96:61:c8:f3:90:71:ee:49:16:39:4f:d6:9a:fa:b6:22:
28:e3:b3:1f:94:b3:73:d3:d9:36:01:d2:a5:90:d0:98:82:17:
b3:94:1a:74:f9:b9:02:c6:1d:8b:36:f6:cb:bc:2d:c7:0e:ce:
c1:55:0b:93:d4:71:a1:85:47:f0:83:2e:17:34:7c:37:db:a1:
15:32:3f:da:9c:c1:86:12:38:02:0a:c9:ff:67:73:eb:cd:a1:
02:f5:af:68:31:2f:5a:6b:df:14:f8:cc:d1:2e:bf:f5:17:fe:
04:fc:88:91:68:65:d7:e5:53:02:98:80:89:04:15:10:d0:f0:
8b:57:f3:01:6a:be:42:c3:d5:78:77:55:3b:29:dd:e7:8d:5f:
28:78:81:c1:b0:d2:2d:1f:bc:2c:0c:67:ed:8f:98:93:52:2d:
ae:de:45:f4:09:d6:0f:e4:f7:04:42:15:0c:87:31:8d:ef:65:
21:d9:9e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org