Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/r8TvczYGrbOLP0ihzAQvlbR_xW8.roa
File: r8TvczYGrbOLP0ihzAQvlbR_xW8.roa (raw, json)
Hash identifier: PkENP2BCgN7SgfGOiz4e9DkLsjI8yqCkHec9rynO+RI=
Subject key identifier: AF:C4:EF:73:36:06:AD:B3:8B:3F:48:A1:CC:04:2F:95:B4:7F:C5:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1060
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r8TvczYGrbOLP0ihzAQvlbR_xW8.roa
Signing time: Wed 01 Feb 2023 10:28:29 +0000
ROA not before: Wed 01 Feb 2023 10:28:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4192 (0x1060)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFC4EF733606ADB38B3F48A1CC042F95B47FC56F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:5a:dc:3a:7d:62:19:42:4b:b8:dc:21:f1:
22:27:f1:e5:04:82:87:e7:20:55:25:bd:b0:3d:ff:
3d:c1:8e:d7:8f:41:9b:ee:b6:2b:bc:ee:c4:3a:b8:
79:aa:3c:f4:8a:eb:a4:9e:68:8b:a8:a0:91:d1:f7:
e7:91:76:0f:7f:7d:4d:b2:9b:37:fb:2a:06:85:58:
1a:56:79:63:05:d8:41:ab:1d:bc:c6:31:b3:f7:c3:
fd:50:7a:ed:75:65:e6:68:b4:25:44:aa:70:d2:02:
85:19:4e:0c:4e:7c:35:68:34:0a:5b:4b:42:33:ed:
79:b9:37:73:4c:d8:bb:c2:e4:42:66:2e:0e:39:90:
1a:32:55:ea:23:f0:f3:11:3e:33:34:6c:c4:58:12:
0f:b3:86:1c:6e:83:a6:fa:e5:d3:cc:2a:da:94:b5:
8f:59:f5:99:0c:fe:c1:df:9a:2d:68:40:58:0e:fb:
73:a3:82:09:5f:d3:cb:62:fc:fa:70:76:f3:ed:51:
a8:52:c6:d4:09:9e:7e:20:5d:cf:8f:ba:6b:fb:ff:
04:8c:3d:11:c7:9f:90:a2:9f:82:03:72:f9:78:fc:
49:70:71:01:ad:18:ea:a0:97:12:11:93:7b:b3:bc:
44:64:13:4e:19:74:68:5c:d6:e5:fd:e9:39:5c:6a:
55:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C4:EF:73:36:06:AD:B3:8B:3F:48:A1:CC:04:2F:95:B4:7F:C5:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r8TvczYGrbOLP0ihzAQvlbR_xW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8d:37:e6:9d:8d:28:f1:ab:c3:f5:20:10:7d:69:a4:11:4c:63:
66:52:22:01:87:0b:c0:84:4f:3d:d0:43:21:ab:13:bd:b2:49:
27:a2:aa:6a:1b:16:0a:4b:fb:28:47:15:b9:84:20:31:b4:68:
e1:f0:e6:fc:e5:ea:cf:b8:50:9d:a2:13:33:07:1e:35:25:45:
82:7c:c7:8b:4c:1a:02:fd:c9:bf:f1:53:b7:2b:1d:d3:94:7b:
82:a5:6b:b5:43:69:b9:8a:2f:5f:0a:51:04:68:81:e7:58:70:
6d:f5:fe:db:bf:9c:d7:b5:c5:b1:b2:33:ac:3b:d7:20:25:0f:
ad:a7:43:4d:ac:5f:96:9e:a8:02:25:e3:cf:bf:40:b6:ad:9d:
40:3f:1c:b4:8e:d3:be:3d:f1:81:62:b6:16:3d:b6:34:b9:31:
19:96:8e:d6:2b:2c:50:31:cd:11:d1:8f:ed:02:e2:67:aa:51:
2b:80:a9:51:36:ee:72:db:6a:06:71:98:d7:63:62:a3:cb:8b:
71:8d:2f:ff:9f:1c:a3:ba:7a:aa:8f:97:ff:29:d3:10:ee:27:
54:ae:0a:28:38:cb:f4:79:1d:fb:a2:6c:79:68:2d:c6:25:3e:
66:0a:7a:53:2d:a1:67:79:c7:f0:81:d9:44:76:80:17:36:8b:
a4:23:ac:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org