Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wO8HRnXKwD1p1h8vYeLm57q3SA0.roa
File: wO8HRnXKwD1p1h8vYeLm57q3SA0.roa (raw, json)
Hash identifier: Qk74XbH+Fb+/8juLwwYPaqp9vYFSRP1jlmxPyFpeMLo=
Subject key identifier: C0:EF:07:46:75:CA:C0:3D:69:D6:1F:2F:61:E2:E6:E7:BA:B7:48:0D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1077
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wO8HRnXKwD1p1h8vYeLm57q3SA0.roa
Signing time: Wed 01 Feb 2023 10:28:35 +0000
ROA not before: Wed 01 Feb 2023 10:28:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 122.147.160.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4215 (0x1077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C0EF074675CAC03D69D61F2F61E2E6E7BAB7480D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dc:c7:65:02:02:ed:49:c9:ac:ac:3d:66:7a:
d9:ec:69:da:eb:80:9e:e4:49:c0:6c:d4:a2:ef:6b:
f6:a7:bf:b7:c0:73:3e:d7:02:95:b5:0a:09:a6:24:
43:fe:25:63:91:4d:9d:29:1d:45:99:ca:ea:b3:b6:
6a:31:25:e0:de:10:0b:57:11:35:36:3a:ef:35:be:
af:18:f3:ab:5b:f6:02:fe:7b:c1:11:df:df:c1:eb:
14:3f:0b:e3:ae:b5:b2:b5:97:b9:d7:23:2b:ed:ab:
40:53:3c:98:a8:8e:e2:b1:31:0b:67:65:ad:53:52:
67:46:a8:c2:77:af:9f:73:16:a1:32:bb:b0:cb:09:
0d:5c:05:0b:89:f7:96:ad:c5:6e:70:f8:c4:9d:90:
a4:02:79:13:df:52:db:e0:b9:f4:6a:f5:73:60:7e:
21:88:a6:42:b9:2d:c6:88:2c:00:ec:16:09:8b:2d:
c2:09:50:1c:41:56:89:02:a4:fe:5b:b7:a4:86:10:
d3:d7:46:ab:bc:01:b4:4c:a7:2e:dd:72:fd:c5:96:
65:b4:5b:b9:f0:5f:76:b6:ab:ca:61:23:1e:6b:53:
90:7b:dd:33:7e:49:62:be:5c:82:00:19:4c:d8:bf:
d8:59:b9:48:18:62:9d:74:4b:ec:32:17:37:3d:36:
0e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EF:07:46:75:CA:C0:3D:69:D6:1F:2F:61:E2:E6:E7:BA:B7:48:0D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wO8HRnXKwD1p1h8vYeLm57q3SA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:77:71:ab:9c:1d:6b:5f:9f:24:06:13:09:6f:91:66:c9:7c:
11:fa:2c:4e:47:f8:af:3c:d1:98:55:49:76:69:f7:d6:b0:e1:
f6:ec:28:86:1b:02:d1:41:b8:b0:40:70:bb:ff:e3:71:5a:12:
75:0a:19:19:99:a1:13:a8:03:bb:2b:10:f7:5e:4c:19:9b:e3:
30:1a:4b:81:72:5e:8d:ec:40:49:81:18:c8:f0:c9:0d:3e:af:
c3:db:c5:ef:cb:71:10:64:61:69:1f:8e:12:36:7d:86:4c:cc:
ca:1c:b1:f5:84:95:5e:2b:91:28:c2:00:e4:45:0c:61:99:3e:
35:09:6f:c3:24:cc:f3:a4:52:c0:2e:57:ec:bf:1a:c6:f5:a0:
bf:99:41:73:af:f7:99:62:6e:45:62:2c:6b:1b:60:c2:92:e8:
1c:91:96:66:ed:d2:8d:a3:7b:64:5e:1a:4d:89:0a:f3:c7:b3:
dd:54:1e:0d:98:09:25:25:84:4c:fb:1b:1a:1c:74:2f:bf:31:
ec:e6:5f:6c:b7:5e:0b:49:6a:32:61:9e:83:77:83:7c:73:c6:
f1:44:5e:5c:dd:e2:76:6a:ad:57:c1:c6:30:34:db:c7:19:db:
3b:50:37:4e:d9:17:88:ab:f1:34:c5:e6:97:19:f5:63:df:79:
28:31:9f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org