Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/uejPTktWMQdDD3TteAlbLRI7piw.roa
File: uejPTktWMQdDD3TteAlbLRI7piw.roa (raw, json)
Hash identifier: nDFrQjJGYwNuH8sA2CEz38dfRyXr2lYOo8D2ebLlS7I=
Subject key identifier: B9:E8:CF:4E:4B:56:31:07:43:0F:74:ED:78:09:5B:2D:12:3B:A6:2C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 106A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uejPTktWMQdDD3TteAlbLRI7piw.roa
Signing time: Wed 01 Feb 2023 10:28:32 +0000
ROA not before: Wed 01 Feb 2023 10:28:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.146.96.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4202 (0x106a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:32 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B9E8CF4E4B563107430F74ED78095B2D123BA62C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:d8:34:43:dd:4a:a0:fd:be:89:d3:6c:47:
4a:19:c0:a4:7f:e5:0d:94:31:eb:fa:28:69:db:95:
d9:72:70:49:1e:a2:1d:12:5c:2f:53:02:63:66:eb:
36:8e:34:0e:d1:1f:d6:59:d2:b3:03:c3:28:8f:ad:
80:77:df:f8:11:c7:95:31:0a:c9:84:7c:bf:10:e3:
59:3e:50:e8:90:34:b3:5f:7e:64:d2:31:02:36:ef:
f7:3c:25:96:57:f0:2b:46:e6:25:b5:26:ee:41:db:
bb:cd:df:57:28:13:11:d6:f5:ea:a7:e3:48:b8:7f:
30:15:ea:0e:01:0b:a1:51:66:be:1c:c7:4c:4b:38:
33:0d:82:c9:bf:42:2d:65:04:86:f8:40:6d:c5:16:
38:95:e8:13:e0:be:85:ab:84:28:58:52:9d:77:56:
36:91:c1:77:1d:a2:f9:d9:97:fa:15:b9:75:3b:10:
e9:8c:cd:8d:af:1c:65:87:c4:e8:7a:d9:77:6f:ed:
1f:a3:6b:9a:12:fd:e6:3e:fd:1c:52:15:39:12:a3:
05:0c:5f:ac:28:86:cd:e2:b1:f2:3b:6b:ab:5c:4b:
0d:1d:45:d5:16:64:a8:aa:ed:19:83:2f:5b:1b:66:
7c:64:c0:0d:3f:92:a5:e1:8f:39:4e:e7:3e:60:66:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E8:CF:4E:4B:56:31:07:43:0F:74:ED:78:09:5B:2D:12:3B:A6:2C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uejPTktWMQdDD3TteAlbLRI7piw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.96.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:d3:4b:ff:de:a5:36:f2:16:e6:df:bd:bc:99:f3:de:71:1f:
06:d7:f7:bb:f5:20:be:8c:ce:c9:c7:79:05:67:64:f0:62:0b:
42:0d:f5:26:de:f3:22:a0:57:bf:c7:32:bc:fb:ea:4d:0b:9a:
10:1b:74:f1:71:b9:ef:7c:cd:a0:62:dd:ad:6f:f9:5f:72:17:
a8:5c:17:b1:ef:d3:66:29:b4:cf:32:68:29:7f:76:d5:f3:e9:
6d:64:44:3b:49:f8:fe:21:65:0f:eb:87:51:ab:61:44:41:1f:
0c:da:2c:4f:81:79:77:23:32:42:2c:6e:c9:c8:4c:0f:8b:5d:
05:c1:93:6f:31:37:99:12:ab:a7:b9:4b:4c:68:3a:72:b9:08:
5c:ee:a8:bd:b6:a2:9a:37:a6:7e:28:3c:a9:04:ef:18:4a:a9:
17:be:51:62:0a:54:41:e4:aa:a1:39:da:f1:fb:21:d9:cf:f2:
e9:5a:12:63:a7:37:73:18:66:a1:59:8a:cf:56:f4:65:d8:10:
f8:f1:c4:70:27:11:14:b1:93:2f:8c:c3:5e:26:c3:d9:2a:2e:
33:41:ed:39:e5:3d:d8:12:55:2a:da:b1:5c:81:c1:97:3d:44:
24:97:c7:83:b2:b9:1b:5b:d8:ba:af:f9:55:3b:21:cd:80:2b:
e1:cd:3e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org