Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/p1YYWcmSVtQ0J_WEpMfmOih-BK8.roa
File: p1YYWcmSVtQ0J_WEpMfmOih-BK8.roa (raw, json)
Hash identifier: AZ9NcUjmAQmlmKp3elQueB4evblzGLoUtWFeckO2LfQ=
Subject key identifier: A7:56:18:59:C9:92:56:D4:34:27:F5:84:A4:C7:E6:3A:28:7E:04:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10B7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p1YYWcmSVtQ0J_WEpMfmOih-BK8.roa
Signing time: Wed 01 Feb 2023 10:28:56 +0000
ROA not before: Wed 01 Feb 2023 10:28:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.0.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4279 (0x10b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:56 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A7561859C99256D43427F584A4C7E63A287E04AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:db:70:36:4c:fb:bd:a6:d8:37:87:6a:c2:8a:
be:2c:3c:81:01:c6:b4:2c:30:3b:83:33:a7:70:e6:
80:49:16:4c:7b:ad:ae:0e:2c:60:f7:07:bb:a6:b0:
05:99:0d:e7:cc:54:35:8c:45:c9:ee:24:52:4a:dc:
04:b1:0e:99:80:64:7e:d6:e6:34:b3:ee:f8:e3:00:
dd:8f:aa:dc:16:33:a5:15:d9:15:79:cd:22:0c:25:
6c:c7:d4:27:bd:0a:2f:92:57:ab:cf:6b:5d:3e:8d:
11:4e:40:81:22:cd:9f:53:5b:e4:b4:b4:13:f0:1d:
b4:88:73:0e:1d:be:95:94:ba:49:65:0f:22:f2:fa:
8c:f3:cd:29:2d:29:aa:4a:d5:59:d3:e7:db:a2:7b:
b6:73:50:33:e1:95:87:68:7f:77:26:6e:6e:77:8c:
ca:a4:69:8b:63:52:2a:b7:db:13:59:36:3a:07:42:
ac:7d:d6:5c:09:c4:ea:e0:90:99:a2:61:29:35:e7:
aa:9a:73:8a:37:e7:c0:a7:53:34:5a:f6:c6:9e:5b:
4e:64:4d:c5:01:10:e2:29:bc:3d:70:c4:cc:3b:60:
4c:e2:3c:ac:fb:34:fb:27:08:b3:f7:d3:6a:a3:6e:
45:c3:76:0f:d7:e7:fb:2c:c3:7c:16:3a:0c:d6:84:
80:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:56:18:59:C9:92:56:D4:34:27:F5:84:A4:C7:E6:3A:28:7E:04:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p1YYWcmSVtQ0J_WEpMfmOih-BK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.0.0/20
Signature Algorithm: sha256WithRSAEncryption
85:f7:d1:24:67:f7:d7:a5:b7:b3:1f:31:3b:ac:0a:4f:01:58:
ba:ae:04:8c:aa:7e:75:c5:5d:85:76:1c:f0:2b:df:f8:67:b4:
f5:81:5b:46:89:01:21:ea:41:0b:5e:b2:e9:e4:f4:cc:81:6c:
8b:0b:f1:03:20:a6:17:af:21:16:98:04:ae:b0:11:27:f3:14:
1a:81:53:75:96:40:8b:2e:33:87:b4:32:f7:cd:17:df:7a:b0:
a9:11:db:45:5f:fe:41:fd:e7:3b:39:a7:d8:a8:82:07:f4:6c:
90:05:94:52:e5:7e:15:a1:f1:44:1b:47:ae:3e:d0:51:d4:0c:
72:48:6b:10:88:df:ea:30:bb:cf:09:f7:c3:85:5c:d5:0e:81:
73:f8:06:e8:a1:9d:b7:dd:ce:e3:46:6a:47:6c:f5:c1:33:8c:
ba:db:d8:a1:c6:b2:89:a8:a4:2f:ce:0b:25:e2:36:a3:00:ff:
cd:d4:b3:2d:0b:73:1c:1b:22:ba:63:38:08:5c:0a:2e:02:f9:
4d:84:95:01:ab:48:f2:9c:b4:76:9d:91:63:ea:53:d4:1e:e7:
e1:91:a6:97:b0:02:af:6a:a2:b7:17:36:d3:25:54:32:d0:dd:
5e:26:a4:72:a5:e6:b7:6a:6f:aa:82:ed:d5:74:96:76:ca:fa:
93:9f:0a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org