Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rn1BR2foAd0thKmLLatazceuo9A.roa
File: rn1BR2foAd0thKmLLatazceuo9A.roa (raw, json)
Hash identifier: 8VUkVZnfu33XNqUVoAlWFdclLo0tG1rVc3ky1aS5qQA=
Subject key identifier: AE:7D:41:47:67:E8:01:DD:2D:84:A9:8B:2D:AB:5A:CD:C7:AE:A3:D0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rn1BR2foAd0thKmLLatazceuo9A.roa
Signing time: Thu 15 Sep 2022 02:43:14 +0000
ROA not before: Thu 15 Sep 2022 02:43:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 106.105.224.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AE7D414767E801DD2D84A98B2DAB5ACDC7AEA3D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ce:f5:44:44:e2:2f:52:5f:c9:2f:2a:3f:bb:
4d:71:f3:58:57:05:c4:81:6a:2c:22:80:ca:6f:d1:
4a:7d:7f:49:9d:3b:a7:73:e7:7a:aa:fc:42:66:6d:
bb:c7:69:5e:f4:99:04:35:da:06:e3:1b:8e:a6:a6:
38:77:d6:4a:ce:21:38:e4:48:d9:b3:d0:99:02:e4:
ec:ec:07:34:fc:02:fb:17:96:e0:41:f1:05:c6:36:
b3:bb:ca:e1:71:5b:24:b1:4a:e3:9e:a8:18:6d:81:
8d:fd:36:1a:81:93:7a:4a:c2:92:01:ae:8e:57:87:
a6:27:a3:b9:75:ef:a7:2f:d3:90:a4:bc:22:fa:61:
70:0a:b4:70:11:de:05:14:77:45:3a:ce:dd:c6:e3:
1a:e5:dc:0b:b9:3b:4a:9f:bf:8b:02:69:bd:70:7e:
f6:c4:7f:8f:14:4b:4c:66:46:7a:a7:f4:8c:83:8e:
91:e0:86:44:b4:ff:3e:97:cb:44:a9:8d:05:2f:65:
c0:e5:fd:e0:dd:64:54:f7:b2:76:94:20:ec:11:fc:
6d:37:4c:e2:f9:a6:b3:9a:3f:66:39:5f:d3:82:84:
7b:a2:5e:25:a5:e0:c7:e6:d3:29:0b:c5:b4:cc:7f:
ff:84:2f:8c:55:14:5b:f8:13:9a:cd:fc:63:b4:ac:
3a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7D:41:47:67:E8:01:DD:2D:84:A9:8B:2D:AB:5A:CD:C7:AE:A3:D0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rn1BR2foAd0thKmLLatazceuo9A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:98:23:df:af:f9:65:56:c6:6b:0b:4c:67:26:d0:6a:dc:72:
2c:ba:67:7e:20:cb:1d:ab:94:84:d9:6a:f2:48:36:13:e2:f3:
a2:d3:6f:a0:4e:25:ec:c6:d7:30:18:75:99:61:7d:74:d9:26:
3a:6d:71:aa:65:39:5c:23:d3:ee:b2:e7:08:cb:db:09:2c:8c:
ec:1a:0e:19:3f:c9:64:86:3b:02:b0:81:ad:ec:80:66:50:54:
8d:45:f2:58:18:ff:9c:1f:c7:e4:82:d3:c6:d1:53:33:cf:98:
bc:e8:0b:5e:94:a8:8c:dd:c6:61:ee:02:d7:39:3b:8a:6f:99:
06:52:ce:e3:68:12:ef:ce:09:52:44:30:11:21:8a:ae:41:b1:
5d:c1:23:ba:aa:28:18:bf:ba:98:d0:ce:cb:b0:13:c4:e9:2d:
f2:ca:a8:fb:a0:70:fc:31:f3:e4:d1:36:57:7d:95:1b:be:50:
39:56:58:3d:8f:2b:b5:d5:c9:39:39:2c:04:c1:46:f8:c5:f7:
77:61:e4:29:36:a2:82:bb:73:66:4b:99:00:66:42:e3:77:d5:
24:70:6f:e5:bf:f7:28:c0:ce:e8:88:16:47:06:09:07:82:56:
83:de:9b:c6:53:c3:c5:f0:77:da:93:31:9e:d9:9c:b2:c7:df:
5c:33:69:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org