Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sPnForORIIS56G_3aS2AkZf0QHY.roa
File: sPnForORIIS56G_3aS2AkZf0QHY.roa (raw, json)
Hash identifier: eQQ03VzHOAkky3GY6CcPpCp6zKTNG1A/7HiISBvEfFY=
Subject key identifier: B0:F9:C5:A2:B3:91:20:84:B9:E8:6F:F7:69:2D:80:91:97:F4:40:76
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 105E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sPnForORIIS56G_3aS2AkZf0QHY.roa
Signing time: Wed 01 Feb 2023 10:28:28 +0000
ROA not before: Wed 01 Feb 2023 10:28:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.240.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4190 (0x105e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0F9C5A2B3912084B9E86FF7692D809197F44076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:12:81:4b:4a:63:e4:07:4e:04:3e:9e:9a:dd:
77:ca:4a:77:33:61:a5:4e:c5:55:44:06:d0:cd:32:
ee:30:30:f2:57:b0:45:14:ed:a4:77:b2:76:3b:ad:
77:15:19:cc:64:73:f7:03:1f:38:ae:d1:dc:54:00:
62:1a:0c:19:cb:32:a9:3d:ff:df:78:e1:43:38:34:
9d:6e:52:76:87:1a:b9:84:e9:d7:ce:f0:cc:14:4a:
3d:c6:19:92:1c:ce:22:f7:58:f3:48:e0:1a:a8:11:
f6:26:ce:ca:41:9d:84:cf:ce:50:0d:a7:e5:d4:03:
83:12:04:4f:09:4d:3c:ac:fd:4b:3c:4b:db:a9:e9:
bd:03:be:9b:71:d5:21:82:b4:ea:c6:8a:a8:72:3d:
28:25:06:46:d3:d8:da:36:3b:5d:76:58:79:73:fe:
fd:dc:86:67:44:1b:2c:3b:9f:81:5d:99:3c:d8:3e:
bf:53:c1:01:4c:08:d5:9c:1c:65:5e:7b:83:f7:f6:
f4:bf:c5:88:60:a4:0e:e3:41:6e:40:5b:a2:df:e7:
50:bd:ed:41:5c:8b:d4:ed:06:fe:e7:f8:65:80:e9:
71:9a:20:b4:c5:5f:cc:5b:51:18:38:37:2a:df:65:
ad:f7:4a:43:12:27:8f:1c:9c:5b:eb:87:16:4f:7a:
75:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F9:C5:A2:B3:91:20:84:B9:E8:6F:F7:69:2D:80:91:97:F4:40:76
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sPnForORIIS56G_3aS2AkZf0QHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.240.0/20
Signature Algorithm: sha256WithRSAEncryption
52:fe:32:b5:8d:92:22:c8:ff:37:5f:08:80:6b:b8:b5:ec:2f:
b0:d0:7f:8f:08:ef:67:e1:b4:2b:99:97:45:5d:e7:64:08:b5:
cb:6a:73:0e:a5:7c:2a:ec:ac:34:ec:49:a3:62:5b:6c:ce:da:
13:f3:ec:a5:43:66:4e:be:22:2c:d6:c9:bd:86:87:e2:e9:1e:
95:6c:17:97:7c:b2:57:36:4c:63:7d:f6:1b:a7:f3:5a:d0:b3:
67:60:b9:f4:43:d9:89:15:d5:e4:12:63:2d:43:17:61:93:d2:
73:72:c1:7c:70:44:a9:96:c1:79:33:02:d2:c5:6d:04:68:99:
f9:84:ef:d1:1b:d4:20:6b:73:b4:2b:d7:c6:02:13:dc:85:70:
c6:e9:ae:90:4c:43:11:de:69:b5:d5:d5:4d:57:8b:3d:56:60:
64:82:8b:7e:f7:e3:5f:b3:2d:76:c7:dc:7e:bd:62:c3:f5:33:
81:1a:05:2d:71:99:3a:0f:93:f3:bf:f9:42:07:34:21:94:e8:
25:eb:fb:d9:65:94:4e:47:3b:dd:3d:d5:ee:5b:1f:b6:a1:9d:
55:31:82:1d:9c:7c:54:71:51:1e:00:88:eb:3e:92:5a:47:2a:
0e:2a:9e:19:45:7a:d9:cd:58:b6:54:e3:a7:61:56:30:e8:fc:
a6:24:1d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org