Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb-PQvjYRQNSCGBSsToZaFiM6Wo.roa
File: rb-PQvjYRQNSCGBSsToZaFiM6Wo.roa (raw, json)
Hash identifier: IvIzriU1BtkmM2ydX8BNNTiIskrh409Pmwxn07hKkeQ=
Subject key identifier: AD:BF:8F:42:F8:D8:45:03:52:08:60:52:B1:3A:19:68:58:8C:E9:6A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CDF
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb-PQvjYRQNSCGBSsToZaFiM6Wo.roa
Signing time: Wed 01 Feb 2023 10:28:57 +0000
ROA not before: Wed 01 Feb 2023 10:28:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3295 (0xcdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:57 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ADBF8F42F8D8450352086052B13A1968588CE96A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:62:5f:17:da:68:24:83:9d:cf:09:f4:a1:8d:
f8:7c:f9:ec:14:6e:51:cf:06:92:cf:0e:ac:63:97:
21:f2:80:c9:24:90:57:47:13:17:c3:cd:22:dd:5a:
06:e0:9b:9f:cf:8b:59:e1:13:23:b7:f7:f8:59:45:
a4:05:47:7c:91:45:7a:f7:bb:60:75:6e:7a:4f:57:
a5:1a:b3:ba:6f:0a:f2:be:7e:b6:58:a6:d6:f3:a2:
80:0f:e9:42:51:46:a1:14:cc:a3:a6:8d:9c:a4:7f:
6b:ba:22:88:85:f9:e6:52:d0:b0:e8:d1:06:0d:2a:
1c:95:63:a8:b4:98:d5:e5:35:2e:d9:47:5c:fa:c5:
9f:ec:9a:83:74:ea:5d:39:ad:32:ea:ea:f0:2a:2b:
24:66:39:e0:81:b7:08:c3:95:34:c2:70:15:ff:76:
7a:51:37:1f:41:59:2e:53:ba:fe:0b:55:68:e9:0a:
ce:f2:3a:68:ed:4a:be:d2:af:94:bc:41:b6:82:e8:
18:8f:a9:59:ff:cc:ab:72:b2:5d:75:f6:bc:6d:12:
e4:7f:70:96:fc:ee:fd:3f:5e:23:e5:aa:64:9f:42:
17:c3:31:fc:e9:ce:ae:7f:9f:6f:c3:0b:2b:61:2a:
7d:ed:a5:93:86:93:e2:22:2c:e2:cd:57:bf:53:ba:
0c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BF:8F:42:F8:D8:45:03:52:08:60:52:B1:3A:19:68:58:8C:E9:6A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb-PQvjYRQNSCGBSsToZaFiM6Wo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.32.0/19
Signature Algorithm: sha256WithRSAEncryption
13:41:e3:39:9a:c6:91:af:f3:09:4a:45:da:68:ab:4e:56:08:
c9:dd:69:e9:5d:cb:18:f4:9a:43:25:08:84:ee:43:1b:24:5a:
b7:20:03:78:ea:44:e3:af:52:21:41:01:0a:7f:d5:d8:9f:ba:
75:ff:6a:d4:2a:61:b8:07:5c:3e:c8:f8:34:35:85:35:15:29:
e8:11:2a:a9:54:57:a4:10:86:61:b5:83:8a:49:0a:36:37:d6:
03:5a:dd:4a:c6:c8:f2:83:60:53:50:5d:50:93:a2:54:5e:bb:
8c:d6:c3:27:51:b1:9c:3b:1f:e3:21:2c:8c:c6:b4:bf:0c:6f:
eb:8d:57:9f:08:03:5c:ef:6b:34:25:7e:35:a9:80:e5:d2:b0:
9d:af:37:6b:7d:4d:ea:d7:57:a5:09:6a:bb:34:9e:7f:9a:ed:
76:ba:af:20:59:09:05:cf:6e:bd:51:00:71:7f:c1:0d:56:2e:
90:48:85:39:d7:4a:53:89:c1:c3:0d:a2:7d:6a:21:54:01:60:
a6:ea:6d:3f:e8:f4:a9:33:f2:76:bf:3e:b9:4d:a7:7e:e0:e2:
60:67:8c:36:eb:9e:c9:de:b6:b9:86:c6:59:8e:a7:3a:ca:c5:
08:c7:ef:45:34:41:a3:ee:55:8f:88:07:c7:0a:a6:57:b1:89:
9c:58:25:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org