Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sn2rfhz7fTdL7mLiTXKSUv9e7Cg.roa
File: sn2rfhz7fTdL7mLiTXKSUv9e7Cg.roa (raw, json)
Hash identifier: km41tGkMqCBTMYKGnJEaYJ59GYWYKXOKsURoxH/RyZY=
Subject key identifier: B2:7D:AB:7E:1C:FB:7D:37:4B:EE:62:E2:4D:72:92:52:FF:5E:EC:28
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1154
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sn2rfhz7fTdL7mLiTXKSUv9e7Cg.roa
Signing time: Thu 06 Apr 2023 06:40:19 +0000
ROA not before: Thu 06 Apr 2023 06:40:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 106.105.192.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4436 (0x1154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 6 06:40:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B27DAB7E1CFB7D374BEE62E24D729252FF5EEC28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:ca:9c:9e:e5:60:75:d7:28:c3:32:0e:70:
b9:0e:c5:d5:d9:1b:98:99:d5:b9:0d:43:c0:ea:db:
3e:88:c3:2d:1c:89:87:fb:94:33:9f:35:c9:f1:54:
92:73:23:fa:c9:38:94:45:13:4c:0d:86:5c:6f:60:
1e:c0:c7:fc:7b:d0:70:b0:8b:82:99:22:c8:e2:32:
6c:f1:3c:6d:a8:63:59:10:80:31:8b:92:2b:1a:b8:
70:c8:15:0c:0c:e6:c6:4f:11:0c:59:6e:97:44:73:
35:bb:20:6e:3b:d1:93:80:6e:2f:74:c7:6a:28:60:
1e:f3:d0:74:dc:62:07:f7:c7:19:71:94:2c:4f:3e:
11:04:23:fd:f3:eb:7e:e6:87:96:bf:01:15:f0:7c:
b3:3c:50:5d:2b:91:b8:58:7b:39:0f:f1:33:5f:de:
2a:a7:9a:35:d0:08:63:17:0a:7b:1c:47:ce:7c:48:
f3:40:a1:b3:f8:14:76:85:93:8e:63:f5:d1:9c:0c:
b3:ce:d3:fe:67:86:f7:12:68:62:71:25:65:e1:84:
72:ef:b9:e0:2d:d6:5f:45:89:15:07:f8:d9:7b:04:
2d:01:91:ab:2a:6c:e9:f3:7d:7d:06:b8:6c:89:3c:
48:f8:dd:4e:80:f4:b5:f4:62:19:35:7d:22:f1:b9:
bb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7D:AB:7E:1C:FB:7D:37:4B:EE:62:E2:4D:72:92:52:FF:5E:EC:28
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sn2rfhz7fTdL7mLiTXKSUv9e7Cg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1d:1e:de:bc:4b:68:df:ea:74:b8:7f:06:90:e3:03:c9:a0:80:
8e:84:76:4c:08:a6:9a:f6:c7:7e:99:fd:87:02:09:b6:83:56:
fc:3e:14:9f:ca:e3:fb:ab:0d:4c:57:84:b1:35:5f:32:af:ae:
6c:77:16:cc:92:d9:93:67:e0:ba:59:13:4a:07:58:32:ef:f3:
a8:14:76:7b:23:48:34:cd:68:20:8f:40:7f:c3:62:61:89:e8:
08:d8:f1:90:d0:54:0f:59:e5:a7:89:2d:91:2a:a4:3d:41:41:
f1:df:f1:9b:62:b0:da:8a:8d:7c:f6:c8:dd:2a:0e:6c:63:5d:
28:63:75:7b:05:be:9e:3b:a2:69:d5:aa:c8:9b:7d:0f:3a:98:
2c:23:bc:bb:86:92:fe:80:3a:7a:1f:6c:c8:d7:bd:2a:5c:9a:
b6:4d:e5:d6:30:a4:3a:30:1b:5e:cf:4f:13:19:7e:bc:a8:40:
d2:90:1c:98:5d:15:02:45:f9:02:38:78:18:ae:ca:1e:b1:cb:
f9:68:2c:0a:d6:cf:d0:12:c9:5c:a0:95:b8:e7:d1:e0:c9:07:
64:a5:f5:3d:51:f6:97:b3:47:40:98:d7:40:01:14:0f:71:16:
e7:81:50:35:41:6f:62:70:a2:56:9b:d3:01:d3:49:ab:6b:b1:
c9:2b:fe:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org