Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2T0lYIEAyn1NFD9DUeArmnd2nQ.roa
File: o2T0lYIEAyn1NFD9DUeArmnd2nQ.roa (raw, json)
Hash identifier: thgmiHogBUWyJZ5yERjOXtVf4V1fFQRtK35NXFB3pxI=
Subject key identifier: A3:64:F4:95:82:04:03:29:F5:34:50:FD:0D:47:80:AE:69:DD:DA:74
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2T0lYIEAyn1NFD9DUeArmnd2nQ.roa
Signing time: Thu 15 Sep 2022 02:43:03 +0000
ROA not before: Thu 15 Sep 2022 02:43:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 203.70.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A364F49582040329F53450FD0D4780AE69DDDA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:5b:59:59:37:a3:7f:43:53:4c:23:43:32:
19:45:9a:5d:7d:64:81:e0:09:69:ea:85:14:00:a0:
af:78:2d:e2:f8:d8:10:19:bb:20:58:76:78:ac:09:
9b:1b:18:84:58:62:8c:6d:47:f9:cc:be:d6:59:43:
68:7d:38:a4:9f:66:bd:46:e4:e8:e7:04:38:ce:9e:
df:64:1c:ec:db:25:22:61:f3:a6:ac:80:ba:c6:91:
3a:27:86:65:83:1b:4e:81:d0:da:b2:fe:a6:73:3b:
c5:48:25:83:a1:a0:5d:5b:bd:4a:0b:3c:ad:e0:ac:
72:66:43:7d:2e:84:fd:49:87:f5:11:fa:e1:5e:2b:
cb:fc:8c:6b:8b:af:65:7a:9b:e1:03:52:71:b2:af:
46:0e:f5:a1:ce:69:85:d6:dd:60:1c:95:06:c3:b1:
11:fe:ba:c2:09:63:33:8f:2c:ee:50:3c:39:e5:ce:
1e:ab:6a:04:bf:f8:38:05:c2:48:b1:55:35:12:98:
20:30:0a:2e:91:53:71:6a:2e:f7:56:75:a9:b6:c6:
45:32:9b:2a:bc:e2:c6:c4:af:70:db:b2:98:3c:b4:
64:f3:82:ed:b0:58:9d:e4:07:a9:04:ab:03:d5:47:
78:48:39:b7:4b:85:3e:f5:16:af:0f:a1:9d:86:f8:
15:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:64:F4:95:82:04:03:29:F5:34:50:FD:0D:47:80:AE:69:DD:DA:74
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2T0lYIEAyn1NFD9DUeArmnd2nQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:69:c5:d5:a0:9c:ed:d5:bf:c2:1a:62:48:71:be:44:09:0f:
09:35:d9:f7:ce:d3:1b:ce:ad:1f:84:1c:65:b8:f3:fc:e0:67:
36:7b:14:5f:b0:09:93:b2:15:58:98:6b:07:7c:d3:16:e2:82:
f4:3a:39:a6:a8:be:6b:ab:e7:38:65:ec:98:d7:f7:8d:5b:85:
d5:3a:8d:34:71:57:83:fb:31:ee:aa:7b:3a:54:53:d1:cd:83:
78:97:c7:79:54:0a:7e:43:55:a7:2c:bf:a7:c5:b4:c2:7d:a9:
ec:9b:7f:cb:ea:80:29:4d:d9:61:f9:d4:84:07:35:79:00:4c:
69:0c:76:23:d8:2c:bc:ca:9c:98:5a:25:a8:4c:6e:bd:e2:f0:
27:f4:15:77:00:2e:2b:25:79:18:56:56:ab:9e:47:ac:b1:19:
76:61:c5:dd:56:c8:8e:f8:f4:72:ca:a4:b1:90:d6:36:59:e5:
70:09:9f:10:be:e0:c8:4b:fc:c4:12:83:8c:46:d4:a1:ec:b2:
3f:72:ef:5b:b5:aa:00:3f:9b:04:77:f3:0d:fc:4a:55:f4:47:
4d:67:f2:c1:55:5d:a1:42:78:ff:d1:21:b7:07:13:46:5a:ec:
41:95:e7:f2:71:34:4c:dd:8e:d8:04:85:6f:d9:e8:7d:91:5a:
ab:09:b6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org