Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qF5jjdGfpq1MGTNeRB2BrWj-DHM.roa
File: qF5jjdGfpq1MGTNeRB2BrWj-DHM.roa (raw, json)
Hash identifier: ztgPSHKU/sIUHxrZzGqFKCa8kWL02rtgXk+6GuntSVo=
Subject key identifier: A8:5E:63:8D:D1:9F:A6:AD:4C:19:33:5E:44:1D:81:AD:68:FE:0C:73
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE0
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qF5jjdGfpq1MGTNeRB2BrWj-DHM.roa
Signing time: Wed 01 Feb 2023 10:28:58 +0000
ROA not before: Wed 01 Feb 2023 10:28:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3296 (0xce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:58 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A85E638DD19FA6AD4C19335E441D81AD68FE0C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6f:ce:6b:8f:b0:dd:f3:65:67:07:9b:00:b5:
f6:e1:61:05:3d:e5:12:b6:20:7d:66:c3:3c:96:cd:
0f:49:3c:26:ab:37:22:39:a6:76:6b:38:c0:9e:a6:
df:50:72:bd:39:46:82:e4:d2:10:55:af:48:e9:19:
77:b1:73:1a:11:cb:5f:6a:46:84:18:89:2a:08:22:
d0:9f:12:72:a2:37:b7:08:1f:73:0e:5b:cb:3c:7d:
7b:05:68:9e:96:ab:b0:cb:21:09:e5:88:bc:3e:31:
89:4f:01:c9:fe:69:f3:df:3c:d1:6a:65:cf:73:d1:
a3:cc:a2:d6:c3:95:54:89:d3:58:6f:e9:4b:12:1b:
db:06:b7:29:3b:c0:79:85:cb:b7:8b:cb:2b:31:a0:
4f:bd:88:0a:4e:3d:c8:0b:58:67:e0:16:c7:44:8f:
16:93:54:e3:ec:55:15:c3:a4:5b:cb:d7:a8:a6:38:
d2:c8:67:51:a8:12:44:de:f4:08:ee:81:a5:50:ef:
48:13:ff:17:15:f8:be:7d:0b:d8:bc:45:6e:46:21:
2f:b1:c1:81:3e:bf:25:3a:2d:79:58:a4:eb:2e:5c:
fb:cf:05:7f:c9:78:af:88:7e:29:54:3d:4a:dd:cf:
a0:db:b3:16:70:50:27:c7:5c:f8:fe:75:e6:66:03:
d3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5E:63:8D:D1:9F:A6:AD:4C:19:33:5E:44:1D:81:AD:68:FE:0C:73
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qF5jjdGfpq1MGTNeRB2BrWj-DHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
26:33:85:92:38:b7:56:26:6a:fc:6d:71:7c:60:58:7e:6a:36:
4f:3d:19:a7:68:d3:ce:72:ec:dd:1b:4f:78:ed:cf:54:b3:69:
01:2b:e3:13:ac:dd:3e:07:67:e0:1e:11:af:3f:67:f8:0b:69:
aa:7b:3d:40:12:cb:15:62:63:3f:5d:d3:3f:89:fd:17:1a:13:
87:58:d1:2b:ea:78:2c:89:0c:4e:d6:b1:a1:77:c7:50:f6:d6:
1b:74:26:c4:ed:e4:94:41:87:2f:2f:5c:fc:0c:05:46:f6:45:
eb:f1:dd:d8:d6:63:d5:30:ca:10:1a:e2:ff:84:35:e7:d0:03:
a9:7b:e4:6e:61:e0:0a:c5:67:6f:78:99:2a:35:d2:d2:99:9d:
23:43:14:5c:9d:72:e8:2e:c8:12:e3:7f:f2:ae:b6:aa:bb:fa:
cb:22:e3:f1:52:ae:1a:c1:82:90:ee:3e:e3:72:50:95:30:c1:
df:d3:ef:f4:41:94:a9:1a:49:ae:0b:39:a8:18:f8:86:d1:50:
6e:a3:3b:5e:31:fc:37:ab:af:b5:8b:85:f9:e4:bb:08:c4:6d:
33:10:a4:55:2c:e3:c6:83:94:7c:03:d5:5b:50:0c:05:69:53:
c6:2a:9d:1d:70:72:7e:2a:b2:2b:e6:7e:c9:31:fa:3c:b3:9e:
65:39:b4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org