Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tZtS4c3wTDj3VQ_WOSkK80aHzQY.roa
File: tZtS4c3wTDj3VQ_WOSkK80aHzQY.roa (raw, json)
Hash identifier: BA8TsbUceFzHMfyxL31IS07RYRLGj/BTJYrj3vOKsfM=
Subject key identifier: B5:9B:52:E1:CD:F0:4C:38:F7:55:0F:D6:39:29:0A:F3:46:87:CD:06
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 106C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tZtS4c3wTDj3VQ_WOSkK80aHzQY.roa
Signing time: Wed 01 Feb 2023 10:28:33 +0000
ROA not before: Wed 01 Feb 2023 10:28:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.68.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4204 (0x106c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B59B52E1CDF04C38F7550FD639290AF34687CD06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d7:0e:e4:87:02:52:2b:c2:5a:56:29:64:3f:
7f:87:4a:2e:8b:0a:28:c5:c7:32:ce:45:6a:93:3e:
cd:2f:9e:82:01:8b:22:15:45:ae:cd:7a:86:4e:7b:
39:6f:99:d4:5a:0b:f1:27:59:f3:5a:dd:73:1e:2d:
02:8e:1d:5a:47:03:fe:79:f6:28:71:dc:dd:47:6c:
b7:f6:6f:4d:bb:b9:68:b4:47:83:7b:bc:56:f1:cf:
ce:81:87:a4:ab:52:4c:66:9a:8e:fb:6f:80:21:bf:
e1:4d:fa:ab:de:bc:13:20:12:57:81:18:ed:02:c5:
f0:d2:d8:4c:16:7b:df:3d:bb:f4:de:97:85:3a:b9:
9c:6c:16:be:ff:3b:31:00:fa:9b:29:63:6d:fc:4d:
f2:44:64:83:3d:56:39:af:6e:00:f5:43:fd:76:2c:
dc:1c:48:43:33:2f:c2:8f:e4:69:e5:d7:53:62:24:
e8:1b:01:68:c3:a2:b7:2c:4c:76:c7:b3:e4:87:d8:
00:29:93:08:c3:6d:89:f8:f3:47:c5:a6:c6:34:f3:
51:9a:19:9d:8b:0c:ad:0b:04:29:96:ad:4f:57:fa:
30:17:5f:40:4e:b1:f0:a8:d9:da:d9:fe:8c:c5:fc:
31:39:37:4c:64:49:ad:a6:cb:59:f5:c4:a9:e8:72:
38:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9B:52:E1:CD:F0:4C:38:F7:55:0F:D6:39:29:0A:F3:46:87:CD:06
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tZtS4c3wTDj3VQ_WOSkK80aHzQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ca:fb:ca:72:41:a1:ae:68:1e:b4:49:0f:d8:0a:13:c8:85:10:
74:fc:e1:f6:1c:cd:82:89:93:b2:e4:72:1f:48:0f:c4:3d:e4:
70:35:b3:5e:46:b4:f7:d6:06:fd:a2:3b:2c:08:15:4f:9a:ab:
fc:7c:a7:72:e7:f3:f7:1e:8a:2b:8f:75:00:e6:ff:48:e3:d1:
4c:b4:c3:55:6c:e7:c5:07:31:82:56:b8:d2:b2:88:fd:7c:c8:
d3:63:1a:5b:91:15:85:4b:19:53:86:eb:fc:5c:c0:c6:82:36:
35:44:39:bd:89:d4:0c:ba:11:c0:03:14:f7:39:e3:9d:59:e1:
88:ed:27:76:d9:4c:1e:75:c8:07:b5:2f:b0:04:02:18:c9:7e:
43:2d:99:ca:8e:6f:74:e7:53:53:85:6b:d5:f7:ad:ec:e0:6d:
50:f3:ef:42:89:11:6d:eb:f5:8b:87:9b:3d:b8:23:23:01:53:
1b:0f:ff:87:25:7e:b5:c4:1f:f1:d1:ca:76:66:a8:4e:a1:c0:
f0:e4:08:8d:58:43:be:ef:4f:ec:62:d4:42:4d:6d:2c:22:8c:
59:5f:26:d3:59:a5:45:24:28:e4:71:47:ec:f2:d7:6c:e5:c8:
c8:27:0e:7b:7e:be:96:a5:c7:8e:c1:85:1e:6f:76:3e:d2:b6:
8d:a6:c9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org