Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4uqAkW3wrj_mHakyTrdq-ghL2c.roa
File: u4uqAkW3wrj_mHakyTrdq-ghL2c.roa (raw, json)
Hash identifier: dlOy3kMOjJgGTCwYGXIAjfj1XPbJdQDnP0IuoqxDe0A=
Subject key identifier: BB:8B:AA:02:45:B7:C2:B8:FF:98:76:A4:C9:3A:DD:AB:E8:21:2F:67
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10FB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4uqAkW3wrj_mHakyTrdq-ghL2c.roa
Signing time: Wed 01 Feb 2023 10:29:19 +0000
ROA not before: Wed 01 Feb 2023 10:29:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 210.244.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4347 (0x10fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BB8BAA0245B7C2B8FF9876A4C93ADDABE8212F67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c1:3a:1d:a6:28:bf:14:ad:c6:79:33:20:98:
ac:00:db:30:5c:1f:94:b8:1a:cb:43:f9:5c:e0:7c:
c6:c9:88:30:ff:fb:34:48:b4:85:2c:a6:bb:29:7a:
8c:ea:f7:4e:4a:9c:62:84:1f:55:5c:75:dc:f8:81:
2c:c3:f2:bc:73:5d:88:8f:f8:93:84:f6:46:45:89:
33:7e:4b:d5:e0:35:5c:bf:b3:86:be:1f:d8:af:4c:
90:0a:28:f6:bd:66:17:ac:6c:f5:e5:c9:ec:ce:24:
4f:11:b8:2c:53:4f:32:95:66:ca:e4:4c:c2:d3:cb:
19:71:86:d5:01:41:6d:cb:1f:14:2e:1a:fe:00:61:
72:79:57:01:5d:70:f7:50:8a:d2:30:9f:fe:1e:fa:
79:74:8a:26:67:e5:ec:9f:ea:b0:3a:1c:01:e9:8f:
60:95:0f:cf:dc:16:07:f5:89:a5:e9:36:24:d9:89:
54:d7:72:63:07:cf:5a:d5:27:e3:24:83:a3:a9:f7:
71:db:2e:d3:1e:05:3b:6b:e2:8e:dc:74:f3:71:84:
e0:e8:ca:7c:fe:89:12:16:09:a6:7d:c4:d8:65:7e:
5e:6f:f1:52:bd:70:38:18:51:c6:f0:12:8e:ed:6e:
1d:94:79:31:97:4b:0a:0d:ed:ce:ca:65:b2:83:e3:
88:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:8B:AA:02:45:B7:C2:B8:FF:98:76:A4:C9:3A:DD:AB:E8:21:2F:67
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4uqAkW3wrj_mHakyTrdq-ghL2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
88:73:f3:66:31:bb:2e:b8:7e:df:0d:61:42:67:7b:db:f7:2c:
e1:b9:f1:c0:ee:35:a2:68:19:26:5a:71:2b:b6:b5:f1:73:d8:
86:b4:14:e4:94:09:dc:8f:2f:49:cd:6b:2e:4a:d5:00:07:9e:
5b:cb:cd:ab:6c:26:6f:2b:c9:2f:5f:53:0a:4b:84:65:fe:05:
15:85:63:df:05:0a:e1:b1:94:fc:25:16:2e:7d:8c:01:13:ac:
e8:23:0c:4d:5f:bc:17:0c:7b:9b:2f:1b:2d:3e:de:0c:1f:f7:
e7:e0:41:63:ac:a3:f5:23:be:b2:c0:99:0b:37:3b:d9:39:25:
b6:e7:bb:5f:6c:ac:ff:ba:63:7b:05:e3:af:ae:00:32:5e:4a:
4e:54:5b:08:b3:d4:98:ec:45:93:31:7f:87:fb:e6:a8:8a:2d:
ae:27:46:37:5b:b1:76:92:3d:c8:82:52:02:56:c8:d1:99:32:
cf:67:8b:4a:52:f3:f8:c4:9b:37:e4:0a:52:49:2d:0a:66:f5:
d7:34:81:8d:38:4e:7c:9d:77:38:a5:14:34:1a:de:b9:70:1f:
0f:f1:43:ba:3e:59:92:3b:87:94:08:de:78:4e:61:97:e5:98:
58:68:cd:b8:87:e9:a6:78:f8:2a:1e:83:e2:ac:2a:fd:f8:10:
78:89:49:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org