Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/uue1HAbIJ1h225F_NHrTwwVpdFU.roa
File: uue1HAbIJ1h225F_NHrTwwVpdFU.roa (raw, json)
Hash identifier: Bp9ttfP6skMZ7aRki51behJvKqc7cL57aW3uc2IRbiM=
Subject key identifier: BA:E7:B5:1C:06:C8:27:58:76:DB:91:7F:34:7A:D3:C3:05:69:74:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 102A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uue1HAbIJ1h225F_NHrTwwVpdFU.roa
Signing time: Wed 01 Feb 2023 10:28:13 +0000
ROA not before: Wed 01 Feb 2023 10:28:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4138 (0x102a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BAE7B51C06C8275876DB917F347AD3C305697455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bd:e7:67:c5:20:32:e1:ee:d2:a4:6b:18:e1:
1b:a7:63:87:ab:d5:a3:87:b4:3f:35:cb:57:59:b0:
15:86:d7:bf:f5:0d:4b:c9:25:a3:ea:13:89:e7:8b:
1a:64:bb:2e:65:77:0e:49:70:14:cc:1e:48:6f:a0:
1b:4f:0c:62:47:94:01:43:80:4e:f6:ea:5d:da:9a:
b2:1c:20:1e:c6:fe:b5:09:b4:40:70:38:55:9e:dd:
10:c1:9b:64:a0:01:60:f0:8b:54:38:f0:40:24:64:
7a:dc:1b:d3:73:7a:2f:77:e2:a9:2c:43:6d:b4:24:
ed:f4:98:84:c1:5b:ef:c7:59:60:1c:b6:9d:b4:f4:
c3:d4:48:7b:48:1c:34:68:fa:37:66:76:e3:fe:5a:
10:1f:f0:29:3d:fd:c1:fc:a5:66:8f:62:e9:18:e4:
cb:17:10:90:75:19:19:27:37:cf:25:33:38:b1:b9:
3b:6a:bc:17:33:c3:c7:76:ce:34:15:f9:44:fb:a6:
a3:87:42:1b:45:cb:ef:d8:05:54:3f:ee:81:22:d3:
81:94:f3:52:2b:b1:2c:89:0f:85:66:a8:3e:d2:d2:
79:8d:bb:be:d8:57:ca:f5:3a:b2:6d:7a:5d:37:69:
ba:e8:6b:e0:7a:d8:7d:7e:fb:b7:99:74:72:d7:f8:
f8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E7:B5:1C:06:C8:27:58:76:DB:91:7F:34:7A:D3:C3:05:69:74:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uue1HAbIJ1h225F_NHrTwwVpdFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a2:53:41:3a:0f:79:f5:86:16:13:8a:77:0b:19:ac:f9:68:bc:
06:c2:28:7f:c5:46:6b:e1:67:34:9a:af:37:9d:c2:2d:82:98:
7d:69:06:27:e8:bd:2d:03:a4:9a:02:a7:0a:6b:98:f4:f2:93:
a3:4d:20:c9:d0:3a:0a:49:f1:ba:e0:be:4d:6f:2b:69:0c:8c:
c9:d0:d0:f7:b2:21:ac:77:ca:7d:60:86:8c:80:8b:6b:8a:82:
b9:0a:e2:e2:bc:35:09:40:46:91:a1:c3:bc:8c:e6:5a:ca:dd:
47:5d:13:28:f2:8c:d6:10:74:59:0e:43:ca:16:c1:b7:ad:e3:
43:6e:03:7e:4d:b5:c4:c4:01:aa:a4:16:ce:58:7a:27:f8:f9:
8a:d3:89:7c:e5:7b:40:43:aa:0b:48:22:a3:b5:73:ff:72:99:
c4:f0:67:1c:4f:d7:a3:f8:86:bf:0a:3b:c6:de:7d:4f:1f:70:
5d:40:63:e3:af:8e:e4:89:0f:92:94:50:08:09:cb:e5:10:05:
80:21:57:a6:9e:57:9f:1c:f4:4f:22:2b:e0:45:e7:34:36:e8:
53:75:6b:f8:0c:59:36:ad:0a:10:dd:c6:dc:6a:22:19:16:76:
36:b1:6b:72:b5:b5:e3:c7:02:a7:a5:50:1a:d7:b4:44:84:4d:
31:35:ba:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org