Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qj1A2dZblrcF_TxW4sCADhBwLZA.roa
File: qj1A2dZblrcF_TxW4sCADhBwLZA.roa (raw, json)
Hash identifier: 9KSb83NH/y6qNKMIVieYgxUnaAlOPM9har6KjX0036I=
Subject key identifier: AA:3D:40:D9:D6:5B:96:B7:05:FD:3C:56:E2:C0:80:0E:10:70:2D:90
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qj1A2dZblrcF_TxW4sCADhBwLZA.roa
Signing time: Thu 15 Sep 2022 02:43:40 +0000
ROA not before: Thu 15 Sep 2022 02:43:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AA3D40D9D65B96B705FD3C56E2C0800E10702D90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0b:16:81:86:fd:b6:26:78:ce:ac:3a:06:88:
35:a6:f7:95:ae:d0:6c:b2:96:04:d1:66:bc:8a:5b:
6a:4a:76:ba:14:0c:df:cc:b5:4e:7a:e4:01:5f:3b:
f6:01:82:a5:c7:cb:56:28:6e:99:49:53:3a:27:a8:
26:54:4b:9a:0d:73:4d:40:dc:d6:a0:50:16:bf:27:
e3:c4:b9:5a:7e:2b:61:67:4d:81:f3:e2:27:22:b2:
8d:fb:24:5a:26:db:65:7e:9e:92:69:6a:6d:c3:76:
ef:38:1c:e3:6e:68:9d:7b:a1:7f:74:11:31:b8:a4:
0c:e2:bd:d7:91:49:e8:fe:d9:c4:75:7c:52:90:76:
97:b2:bd:2f:3f:1d:f3:fd:a4:7f:18:27:e1:bf:ef:
cb:08:52:1d:c1:1c:26:f2:52:95:a1:6c:c6:81:4d:
42:c0:06:5c:bf:9a:b5:2e:1c:d9:d9:a3:67:8f:e2:
6d:ae:1b:2e:d9:69:b5:a5:2f:b6:db:02:dc:54:d6:
13:30:31:21:f4:7d:d6:fa:36:ef:35:ed:ca:20:aa:
f0:0c:22:1b:9f:21:87:b2:5b:0e:7c:ac:0b:68:f1:
9e:eb:39:45:fe:ec:7b:bb:60:f1:a9:c1:bd:f0:ce:
17:63:46:12:f9:2a:c8:bf:bf:00:0f:cd:d3:e4:3a:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3D:40:D9:D6:5B:96:B7:05:FD:3C:56:E2:C0:80:0E:10:70:2D:90
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qj1A2dZblrcF_TxW4sCADhBwLZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f9:52:5d:a7:18:a0:26:b3:cb:e2:4e:80:55:ba:50:d7:60:
d2:a7:b3:5f:be:a2:6c:7a:55:3e:f4:3d:aa:b0:6a:c2:c3:89:
06:d5:a4:41:32:4c:0e:66:45:e8:7e:1e:00:94:9d:3a:62:81:
18:c3:29:c6:90:18:1a:69:24:6d:bd:3a:62:97:32:50:27:13:
d0:95:15:d8:2e:45:8b:6d:99:dd:91:d5:e9:a5:db:c2:fc:54:
22:64:a7:73:7c:d3:2b:0b:35:d9:7d:bb:0f:4b:69:73:b8:0f:
f3:c1:0a:3e:09:af:0b:ee:8a:af:b8:35:1d:a9:19:d8:33:81:
5f:15:04:8e:4e:2a:3f:6b:10:7d:2a:b3:a2:f0:82:5f:98:75:
c1:1c:a2:b6:06:08:69:f0:b7:d4:cf:aa:b0:12:01:a4:d4:13:
a5:0d:40:68:87:77:57:35:af:18:b8:08:de:8e:06:9c:0e:3e:
46:44:18:ab:5c:cf:ed:11:2d:8b:32:23:7d:be:23:d0:b0:73:
01:0d:6c:ea:a4:8c:eb:b9:56:e2:93:a2:3a:6c:41:d4:ec:c5:
ef:10:ed:94:8c:38:1a:ce:67:e5:4a:34:c6:41:75:0c:10:11:
b5:1b:ae:ee:ea:90:4b:9d:9b:99:76:8b:c5:31:67:37:67:d3:
7b:ad:a9:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org