Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qOSma5MAmaeBTfSAm32oQ6VzSs0.roa
File: qOSma5MAmaeBTfSAm32oQ6VzSs0.roa (raw, json)
Hash identifier: 8mMWAi6Axe7FSMoxysO4Th8Om8pkVkadNbZef/Ywi4Q=
Subject key identifier: A8:E4:A6:6B:93:00:99:A7:81:4D:F4:80:9B:7D:A8:43:A5:73:4A:CD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10C1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qOSma5MAmaeBTfSAm32oQ6VzSs0.roa
Signing time: Wed 01 Feb 2023 10:29:00 +0000
ROA not before: Wed 01 Feb 2023 10:29:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4289 (0x10c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:00 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8E4A66B930099A7814DF4809B7DA843A5734ACD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:32:e4:7b:83:83:ce:01:f4:38:a5:5e:7d:5e:
29:9d:1e:1a:a3:7e:9e:69:f5:8d:fd:b4:6d:ce:c2:
10:de:fc:b1:c7:46:21:9f:5c:d8:68:da:14:a7:7c:
8f:19:0a:68:ea:e8:52:a2:da:9b:c7:c3:c7:8c:24:
dd:b9:ce:be:b4:14:87:97:0e:f6:13:4c:74:a4:fe:
e2:a1:0d:8c:1a:d9:7f:31:99:a9:c3:72:4b:7a:c8:
08:3f:cd:37:24:25:cb:79:73:79:99:d9:22:d1:ee:
18:61:06:97:e3:4b:b8:f1:43:91:12:4b:a8:bb:c0:
08:5c:c8:c1:ab:fc:de:30:8f:b3:f4:b9:d2:b9:e2:
52:ae:4b:2b:11:04:52:29:b3:53:a5:51:89:39:48:
ab:00:b6:b3:df:3e:7e:c9:2d:28:3d:ef:df:ba:00:
77:47:c5:65:ab:2c:48:6d:99:85:05:49:e2:36:ed:
52:67:c5:01:f8:54:52:e9:a8:89:2f:a9:2e:fd:a3:
50:d3:3f:c0:3e:9b:98:5b:10:92:67:f9:fb:3b:ef:
f2:2c:2c:8a:4a:59:28:e7:31:74:04:82:58:3c:d6:
36:c8:ba:df:e5:cb:6f:eb:e6:00:56:3d:7f:92:f4:
4e:c6:6a:67:06:ea:e0:76:93:37:a2:50:c6:6e:97:
ab:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E4:A6:6B:93:00:99:A7:81:4D:F4:80:9B:7D:A8:43:A5:73:4A:CD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qOSma5MAmaeBTfSAm32oQ6VzSs0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0a:3e:f8:63:21:47:70:7f:78:aa:9e:4c:3f:c1:4e:01:ee:5f:
5a:1a:2a:b7:04:6c:0c:33:58:30:99:ff:12:df:c1:4a:6a:49:
5f:69:af:91:fd:24:df:78:08:c8:a9:da:f6:dc:7b:cd:76:77:
f9:26:3b:1d:22:ac:01:bf:c9:7c:86:4e:35:0f:b6:2e:36:2a:
a3:02:c4:d9:c8:07:8a:cd:22:d6:99:eb:f2:fe:0c:dd:ab:df:
86:6b:17:17:df:e0:8b:0c:c9:97:77:20:c1:05:0d:58:f0:a9:
de:73:06:29:43:e5:64:61:50:3f:4b:60:39:c6:69:ae:62:9f:
2c:bd:0c:84:91:b0:f6:2d:9e:26:c7:65:f6:e6:be:52:86:55:
88:46:50:5f:e7:9d:26:24:67:3a:45:dc:05:47:78:f3:22:b8:
61:5a:3c:91:74:16:aa:ce:65:6c:58:45:99:cb:80:34:1e:5a:
70:53:00:97:d5:53:46:c0:b2:6d:b3:dc:ad:4c:9c:97:41:e9:
c3:8a:aa:d9:93:a1:69:3c:95:6f:e0:39:d2:1b:89:bb:83:51:
52:b6:d7:46:9a:7b:19:63:92:03:a1:a9:fd:cf:d7:a6:e5:40:
4a:5f:ae:66:45:6f:03:76:8a:9d:62:a8:c7:d5:a2:0c:e6:53:
f6:57:29:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org