Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pyxYCVcAYi6-akYd1NXQq2i8yGY.roa
File: pyxYCVcAYi6-akYd1NXQq2i8yGY.roa (raw, json)
Hash identifier: KzzyzTj+XJgCKIjngCTb4v3T14ij5TPMPmBd7SR+mpo=
Subject key identifier: A7:2C:58:09:57:00:62:2E:BE:6A:46:1D:D4:D5:D0:AB:68:BC:C8:66
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1152
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pyxYCVcAYi6-akYd1NXQq2i8yGY.roa
Signing time: Thu 06 Apr 2023 06:39:28 +0000
ROA not before: Thu 06 Apr 2023 06:39:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 106.105.168.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4434 (0x1152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 6 06:39:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A72C58095700622EBE6A461DD4D5D0AB68BCC866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:63:21:76:b8:88:8d:92:1f:18:75:63:20:6c:
b6:0b:63:05:2d:9e:d5:95:6c:e4:6b:31:ab:09:69:
47:29:50:01:df:e9:1c:a0:60:e7:a9:68:6f:21:ea:
66:9b:ac:d5:44:8e:be:8e:20:cf:ab:fc:9f:03:b3:
28:ef:d4:02:83:b5:ac:4e:9e:ee:a3:e3:7c:23:c9:
68:95:d3:2b:78:95:f6:07:c6:da:b6:33:04:79:47:
9e:45:e4:28:58:07:f9:77:17:85:c3:4c:e4:f9:a7:
f1:c6:3e:be:b7:71:bb:39:57:2c:31:61:50:48:fb:
c1:c7:a7:d7:87:86:bc:e7:2c:92:62:7f:99:81:b5:
14:bb:77:ee:f1:b6:a3:35:c6:c5:36:57:fa:6c:54:
99:79:2c:ea:0f:04:56:53:46:62:b0:0d:8c:d3:f4:
57:4e:77:bf:19:da:25:79:e4:14:28:5a:4d:f3:a3:
3e:e7:a7:b2:ee:9a:02:48:cc:10:79:28:af:1b:69:
23:f4:18:d8:69:95:d7:ef:ae:7a:c5:0f:bc:67:c2:
1c:b3:fb:89:f0:75:dd:c2:25:e4:7d:60:9c:8a:09:
f6:9d:c2:a9:82:f9:f0:31:aa:8a:66:15:0d:08:07:
c9:ea:eb:70:6b:f1:26:95:26:3b:15:f4:68:03:bd:
95:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2C:58:09:57:00:62:2E:BE:6A:46:1D:D4:D5:D0:AB:68:BC:C8:66
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pyxYCVcAYi6-akYd1NXQq2i8yGY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.168.0/21
Signature Algorithm: sha256WithRSAEncryption
22:2b:02:5f:c8:67:9a:c6:c8:ba:1b:48:1d:9d:f6:5a:88:53:
e2:15:7c:22:34:e5:83:c8:a0:cd:c1:02:ba:7a:4b:f9:fd:af:
49:6b:e1:5f:01:01:02:c0:69:84:16:bc:c1:53:17:49:8e:b8:
f0:15:3b:e0:62:22:52:37:5c:0b:1b:ba:d3:a5:f9:82:3c:5c:
93:6e:51:01:b3:ab:43:b5:fe:bb:58:49:87:19:86:22:25:34:
97:b6:f9:0b:4c:82:56:6a:20:5f:3f:23:09:ce:b9:4a:e2:d3:
18:37:04:f0:33:04:b5:53:aa:9f:bf:43:1a:06:d6:ed:c3:1c:
e9:a3:0e:8b:6b:0d:b5:ff:ed:da:1c:dd:dc:38:1c:b0:92:10:
bc:df:68:7b:c0:2a:79:3f:f5:42:ca:4e:0c:d9:74:67:28:14:
11:1d:15:7f:e7:71:8c:d4:36:da:04:de:8c:df:c8:1d:46:d1:
ea:41:69:a3:ef:f6:18:d8:f7:5f:ae:ad:49:d1:ae:43:7a:66:
85:00:12:ee:df:40:47:5b:85:d4:68:b1:ba:8a:45:1c:39:95:
59:fe:ae:70:7f:aa:db:c9:82:e7:ae:6f:71:1c:a7:6e:ee:b8:
be:b4:f2:fd:e9:93:d2:b0:70:fd:c7:cf:8c:db:a1:af:66:43:
6d:42:21:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org