Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tBqTi9Iv5K5IxIGA2VIQ9JqdqCE.roa
File: tBqTi9Iv5K5IxIGA2VIQ9JqdqCE.roa (raw, json)
Hash identifier: WOPV54hWgKUT7bCGKQ+djD54hbxj+wauQ8cLzUIeJeA=
Subject key identifier: B4:1A:93:8B:D2:2F:E4:AE:48:C4:81:80:D9:52:10:F4:9A:9D:A8:21
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 109E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tBqTi9Iv5K5IxIGA2VIQ9JqdqCE.roa
Signing time: Wed 01 Feb 2023 10:28:48 +0000
ROA not before: Wed 01 Feb 2023 10:28:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 123.204.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4254 (0x109e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:48 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B41A938BD22FE4AE48C48180D95210F49A9DA821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f2:a0:d1:2b:e6:99:c7:18:0f:b4:f1:04:79:
56:21:c5:5e:d7:54:ad:06:22:16:df:1e:48:1a:af:
6f:89:4b:85:cc:cb:32:6c:8a:0a:54:f8:31:9b:18:
c0:6e:20:59:2a:84:71:a9:e0:2e:75:6b:35:4a:4b:
b4:3c:90:75:b1:e9:a5:4b:f9:73:cb:af:70:c6:95:
40:8f:46:8b:cb:30:ab:0a:95:8d:69:eb:31:e7:70:
27:d2:59:b5:7d:d2:11:7a:a3:35:4c:c4:62:86:b8:
3f:f3:b0:de:79:8b:24:a7:31:35:cc:1f:ae:bb:6b:
e2:8d:a7:6e:48:29:4e:23:3c:cd:b3:c1:b4:89:10:
87:73:be:7c:a2:f5:96:7b:2b:90:13:e4:fa:62:4a:
76:53:c1:d8:99:1b:a8:e2:4f:0e:09:0c:66:3d:f1:
de:52:e4:c0:41:44:e3:de:01:eb:a2:a3:a7:df:ad:
61:6d:a3:c1:7b:41:25:21:08:fe:76:43:5b:90:a3:
c9:87:0c:c7:89:cc:ed:22:8d:f0:0a:1c:41:da:bc:
28:ec:91:fc:72:81:75:a7:84:eb:43:09:bf:34:c8:
40:68:01:d9:c7:ad:f6:3d:57:49:9c:85:80:40:9d:
91:4a:cf:f1:bb:53:9d:e5:ba:c2:a5:f5:43:fa:52:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1A:93:8B:D2:2F:E4:AE:48:C4:81:80:D9:52:10:F4:9A:9D:A8:21
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tBqTi9Iv5K5IxIGA2VIQ9JqdqCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/16
Signature Algorithm: sha256WithRSAEncryption
48:10:fb:95:b1:7b:d8:f4:01:09:a6:d3:c8:c3:20:16:fa:80:
87:1b:20:e8:27:e3:2c:11:8b:2e:1c:8d:73:46:e5:cf:2b:70:
93:8b:62:f0:d2:a9:7c:78:8c:f0:a9:d5:36:59:64:a6:00:4c:
16:3a:66:de:a0:51:14:b9:5b:40:79:35:b5:9a:71:b9:cb:af:
6b:3d:e5:f5:3c:8a:4a:e8:dc:f5:2c:43:06:b6:84:67:3a:76:
1f:a2:a1:dd:ca:c6:52:1a:dd:1a:32:fa:1d:35:74:11:98:e3:
bb:1e:e9:a1:42:6e:85:83:9e:9e:12:ef:40:65:ac:49:62:ed:
9a:12:da:76:ea:62:00:98:87:dc:32:08:7e:fe:da:20:f5:9b:
73:d2:57:76:14:7c:16:79:cd:5c:36:53:e4:cb:31:41:e0:4d:
e1:02:f6:64:89:2d:75:5f:3a:b1:31:c6:fc:c3:c4:43:36:71:
ad:f3:1a:fd:42:bc:16:3e:48:68:09:0d:10:b4:09:ae:28:2c:
34:aa:e8:1c:4a:f4:33:dc:6b:e0:b3:f8:83:24:9d:da:b7:19:
cb:44:c3:b9:51:91:98:57:30:af:fc:d5:06:b4:04:47:fb:f3:
c9:43:ee:b4:e5:d8:b3:00:36:63:0c:87:09:da:18:f4:43:5a:
84:46:7c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org