Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/r2pIhn6DwLUNelPhtUlZ4sxu-Bg.roa
File: r2pIhn6DwLUNelPhtUlZ4sxu-Bg.roa (raw, json)
Hash identifier: CsYE7vhEBTDWlAHjUYOALfjSSKAgU55FduCiDxdmOBE=
Subject key identifier: AF:6A:48:86:7E:83:C0:B5:0D:7A:53:E1:B5:49:59:E2:CC:6E:F8:18
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r2pIhn6DwLUNelPhtUlZ4sxu-Bg.roa
Signing time: Thu 15 Sep 2022 02:43:22 +0000
ROA not before: Thu 15 Sep 2022 02:43:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.74.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AF6A48867E83C0B50D7A53E1B54959E2CC6EF818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:71:87:c7:0c:e8:c8:cf:6f:76:e7:f9:b3:
da:5a:52:3a:a0:a0:48:97:ed:a2:be:e4:c8:55:ce:
15:35:00:60:be:da:a5:18:43:6d:35:05:06:4a:e6:
76:81:2b:ad:e2:8b:a0:c9:7d:d7:e6:32:14:13:12:
e2:38:53:d2:1d:4f:8e:c4:1b:70:83:be:63:07:f6:
de:db:37:81:27:61:4c:b1:1e:c6:56:6c:dc:ba:27:
19:90:cf:e9:85:02:82:88:12:a3:f4:d3:68:15:b9:
04:e5:61:44:27:7f:9c:51:0d:f4:25:a0:06:f2:e1:
93:86:8b:c9:c4:a0:15:dd:4c:02:ad:c5:bb:d1:71:
8d:0d:b7:4a:d7:91:dd:a2:12:d4:47:cd:ba:96:be:
ef:2b:d0:77:9f:df:5c:3a:d9:c0:b4:ed:ec:42:5e:
17:4c:01:9f:4f:3e:cc:79:3a:bc:99:1a:88:8c:cc:
a2:c0:ab:01:5e:89:45:26:cf:d9:49:9b:27:f4:c1:
9b:9b:85:e6:80:b0:41:f7:ff:a2:27:0b:71:c9:a4:
55:a3:45:5a:ad:d3:5f:37:35:72:7f:5f:95:db:be:
cf:dc:af:5a:67:36:8c:42:7a:00:c2:8b:ec:0e:ec:
d4:ac:55:09:aa:38:37:73:d2:34:2d:8f:df:e1:69:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:48:86:7E:83:C0:B5:0D:7A:53:E1:B5:49:59:E2:CC:6E:F8:18
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r2pIhn6DwLUNelPhtUlZ4sxu-Bg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:5d:3d:5c:e4:cf:85:a9:e2:a1:c6:90:62:4f:a7:eb:05:4e:
d4:f7:fb:0e:01:4f:e7:f4:f5:83:d6:92:91:5c:48:c8:a7:55:
b0:c4:c9:14:61:e7:e8:b9:fb:a2:a7:73:ff:6a:2e:53:4a:bb:
2e:f5:83:75:03:fe:5c:42:c9:c4:df:79:52:96:be:f3:e5:59:
58:c4:d7:b9:fc:82:c3:2e:62:e1:25:67:f6:5c:3f:20:51:ac:
52:c7:e6:51:bb:fe:3e:af:18:d9:bd:09:b9:88:9e:1f:fa:e5:
28:10:1d:0c:bd:94:ec:54:08:0b:3b:f9:37:35:85:7c:08:f0:
14:bb:55:5f:de:05:13:50:0f:b2:24:ad:51:43:43:ee:8a:b6:
b4:54:34:9f:ac:86:64:b6:c4:ea:e2:44:3f:7d:38:07:e8:84:
2b:6e:80:8e:54:de:bc:30:44:3a:21:96:0c:f8:8f:b7:8a:60:
c3:35:7f:93:1a:e5:fe:71:06:cc:d5:0b:86:26:d1:65:e7:fa:
a2:7c:26:8e:2e:aa:07:c6:ee:17:50:e4:32:36:65:fb:49:30:
29:67:4d:c9:cd:d5:da:68:a9:49:41:f4:8a:13:68:1d:a6:7c:
82:6c:ab:f5:a7:fd:53:f6:ba:73:92:23:50:80:81:98:69:e3:
22:a8:bc:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org