Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tXH6zpIo7M-K31VK2dApMS7TTWg.roa
File: tXH6zpIo7M-K31VK2dApMS7TTWg.roa (raw, json)
Hash identifier: Bun6xsXSIQlaqnc374OUl7Ua0E2iex2AlFK4k3uX4Z8=
Subject key identifier: B5:71:FA:CE:92:28:EC:CF:8A:DF:55:4A:D9:D0:29:31:2E:D3:4D:68
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CD6
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tXH6zpIo7M-K31VK2dApMS7TTWg.roa
Signing time: Wed 01 Feb 2023 10:28:31 +0000
ROA not before: Wed 01 Feb 2023 10:28:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3286 (0xcd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:28:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B571FACE9228ECCF8ADF554AD9D029312ED34D68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f2:0f:a3:6f:77:1a:fb:32:9e:a1:3a:e4:81:
34:54:2a:cf:96:05:d0:2f:aa:0d:25:12:e9:b0:12:
43:5b:7e:22:33:c4:f3:25:38:db:09:36:49:1e:95:
bf:f7:67:23:f3:07:ee:06:a3:b6:81:1b:07:51:15:
75:72:a4:62:36:65:89:4c:23:04:84:64:b5:08:a5:
53:3e:d4:9d:99:f4:b4:34:28:39:66:eb:a1:bb:77:
14:22:f4:9f:bc:89:83:50:5b:0f:1e:67:4b:cb:4f:
22:c0:ed:f7:9d:0e:ad:52:a1:20:8c:c4:05:b8:cb:
0b:73:43:1a:7e:9c:03:90:67:66:c2:e6:43:a1:1b:
e1:4d:9a:cc:1b:21:0b:5d:fc:4d:6f:88:38:fb:10:
65:58:8f:13:ce:52:20:03:5a:d8:6e:a3:99:ad:6b:
df:e4:df:f8:c6:03:71:a9:f4:c9:10:fc:d2:60:d7:
d5:db:33:a0:9b:94:db:94:32:99:cf:d9:4b:10:01:
bf:97:d4:bb:5f:2b:30:5a:36:b1:4f:72:23:33:3f:
01:7c:c4:df:7c:14:45:60:6d:e1:2e:7c:bf:f5:ea:
28:6d:cb:43:8a:eb:28:e3:f9:94:36:47:9e:4e:7d:
d2:49:3e:90:45:6f:9f:cf:fb:63:e3:e9:8d:2b:7e:
62:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:71:FA:CE:92:28:EC:CF:8A:DF:55:4A:D9:D0:29:31:2E:D3:4D:68
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tXH6zpIo7M-K31VK2dApMS7TTWg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
37:ce:34:87:e2:68:3d:d8:69:ff:bd:98:dd:bf:49:07:32:bf:
45:49:40:0a:0b:6e:af:c6:c7:11:50:c8:bf:eb:7b:cd:65:99:
b8:c3:3c:9f:dd:4a:fe:bf:0f:71:44:61:07:fe:10:2e:67:7a:
9e:3b:b5:63:75:8a:83:0d:d9:8f:c0:eb:29:a6:7f:05:6a:ac:
63:54:97:f1:f3:cb:31:eb:26:ca:c6:9f:32:77:30:3e:07:9c:
9c:79:cd:ba:e6:2b:d1:b5:41:35:23:03:ad:28:5c:d4:e6:22:
fb:8d:6a:12:a0:eb:09:75:4d:40:55:72:bc:4b:e9:92:17:8e:
c6:dc:49:5d:22:5b:b9:40:96:3b:2f:1a:3b:7c:85:de:62:68:
28:c0:93:6a:9c:4f:07:9a:53:25:30:df:3d:0a:97:bc:cf:9c:
f6:3f:6b:93:83:da:91:96:1d:54:21:3c:43:d5:d6:b3:0e:80:
78:d1:3c:d5:a4:be:11:41:ed:a8:f4:30:9d:15:64:26:20:50:
dc:bb:e9:54:56:c8:49:c7:6e:b2:7a:22:3f:1f:38:8d:cd:c6:
4b:94:31:f3:6e:ae:57:b0:d8:52:c7:4b:26:d2:df:9f:b2:b2:
ac:99:f8:6d:ca:26:51:fc:42:96:87:e0:0d:cc:d4:c0:1b:c7:
a8:3c:f3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org