Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tlPxpmfxA-rJgvA78OEJ1Ls38lA.roa
File: tlPxpmfxA-rJgvA78OEJ1Ls38lA.roa (raw, json)
Hash identifier: vbO3EaROnSnM+zxBA6XdVvjaRkAy/MAJsbP2FKsRo+U=
Subject key identifier: B6:53:F1:A6:67:F1:03:EA:C9:82:F0:3B:F0:E1:09:D4:BB:37:F2:50
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tlPxpmfxA-rJgvA78OEJ1Ls38lA.roa
Signing time: Thu 15 Sep 2022 02:43:24 +0000
ROA not before: Thu 15 Sep 2022 02:43:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 218.210.32.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B653F1A667F103EAC982F03BF0E109D4BB37F250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2d:1e:91:b1:53:86:e6:3d:b5:61:1c:74:ff:
ea:18:63:f1:0f:88:17:b6:40:04:c8:69:6b:a7:c4:
70:44:07:97:6f:cc:bc:f1:f8:91:aa:dd:b4:91:a0:
dc:71:e7:60:6b:a3:e4:2a:0a:85:47:e1:eb:7c:54:
7f:c7:cc:1f:5a:18:25:4f:84:40:f3:ed:41:00:a6:
fc:70:9c:a8:fb:1d:40:ce:9b:0d:05:45:03:2c:28:
14:ae:2a:8e:f7:fc:53:aa:c9:cf:e6:c4:82:87:e6:
b9:73:9b:00:ca:28:01:0a:dc:6a:a4:19:de:52:3e:
18:e9:02:89:b7:81:07:1f:f5:12:31:bf:86:72:be:
bd:9a:63:89:b8:61:de:0e:e4:b4:37:42:87:b0:cb:
ef:19:32:e4:10:08:17:8d:f9:6c:95:db:27:37:38:
b3:77:48:82:e8:c1:5a:75:6a:9b:df:4c:a6:c5:04:
12:3f:fe:d8:ac:6e:4c:e6:80:24:04:f4:7b:7a:51:
0d:f3:10:64:b2:61:1d:ea:a3:f6:1a:79:1a:5a:dd:
39:d3:f0:a6:a6:9a:73:72:58:bf:93:52:3c:0f:a5:
73:cf:4f:37:de:9e:5b:f1:ce:cf:c5:da:61:42:15:
8a:ec:c1:7d:19:3c:b4:a9:95:94:47:6f:4e:aa:a8:
48:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:53:F1:A6:67:F1:03:EA:C9:82:F0:3B:F0:E1:09:D4:BB:37:F2:50
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tlPxpmfxA-rJgvA78OEJ1Ls38lA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:f0:7b:f1:43:8f:7e:50:14:29:4f:74:ee:3c:15:71:9d:a7:
66:34:52:4b:45:b3:2a:ae:cb:87:e1:e7:97:0e:35:4c:76:4e:
c9:b0:3a:b6:83:37:6d:5c:ff:20:50:82:de:25:f3:38:d3:68:
fd:4b:e9:d2:bb:e6:0a:eb:23:48:e8:4a:6c:b2:28:2d:27:c6:
71:e2:0a:6c:f8:b3:41:35:1a:6a:81:ea:2d:b1:7a:65:b3:36:
cf:a5:d5:96:95:2f:ec:c4:01:39:b9:cd:ec:44:88:1a:f0:4d:
91:7e:2c:77:f2:f5:2e:29:1c:b4:2f:75:8f:b7:6a:ea:b2:5c:
f8:72:6f:92:49:8a:1e:32:0a:a6:c5:35:40:32:fd:0d:1e:7f:
88:e2:be:80:0e:1a:fe:70:05:3a:cd:87:66:f1:a9:79:22:f6:
fc:10:7d:e1:b8:8f:a3:80:f0:db:3a:4c:57:2a:18:f8:17:c3:
f6:de:71:b4:33:55:b4:05:a6:f2:ce:b0:7d:02:52:82:1a:78:
5f:66:bc:90:56:51:d0:85:ec:a1:a4:2f:5b:63:d0:ac:ff:55:
82:ad:3b:c1:f0:fe:41:34:f7:28:86:20:bd:05:0d:46:87:64:
ab:15:2f:ab:90:8b:28:ae:66:89:c4:bb:9c:63:8f:3e:c1:da:
e8:d8:45:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org