Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wZmk62U9uLdigyUESDA883Bd3yw.roa
File: wZmk62U9uLdigyUESDA883Bd3yw.roa (raw, json)
Hash identifier: VJMCoFyS0Dq0tlXcQ93HABpjqOA3ei4SMJsbsm57MBY=
Subject key identifier: C1:99:A4:EB:65:3D:B8:B7:62:83:25:04:48:30:3C:F3:70:5D:DF:2C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1117
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wZmk62U9uLdigyUESDA883Bd3yw.roa
Signing time: Wed 01 Feb 2023 10:29:27 +0000
ROA not before: Wed 01 Feb 2023 10:29:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 175.183.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4375 (0x1117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C199A4EB653DB8B76283250448303CF3705DDF2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:54:03:56:11:03:13:c6:6c:5b:20:01:f0:59:
52:f9:fa:24:85:2e:da:ed:64:b0:b5:cd:87:ce:a5:
b5:15:95:5b:c7:c8:b1:dc:40:08:0d:40:58:36:db:
3a:6c:f4:ed:20:61:2a:db:57:2e:78:6f:dc:c4:c4:
fd:e9:f2:44:7e:e8:ae:3b:c7:29:dc:fd:1d:3e:7e:
c4:c0:76:85:48:05:b6:74:9a:0f:f6:82:13:12:ec:
f9:e0:6e:74:55:de:14:9a:9c:a8:b8:18:64:29:ef:
21:44:c0:ca:2e:05:c7:2d:4e:ed:b3:eb:c1:00:2e:
1c:bb:5d:b8:58:46:b9:26:6a:96:64:43:37:8a:3e:
26:39:3d:73:14:85:a8:66:62:95:ed:9b:3a:82:66:
1f:20:78:0c:58:c1:cb:b2:4d:d3:4e:4f:6e:5c:0e:
fc:be:5a:62:9b:0b:f8:3b:af:05:4e:a6:a5:f7:27:
28:b1:ae:9b:44:c0:63:45:8c:64:09:3f:50:e8:c8:
aa:e0:dd:e7:d4:d4:60:3e:6a:f2:f0:55:10:49:74:
39:d9:51:1b:60:78:2b:8c:fb:a6:c8:05:bc:a9:6e:
d6:e3:ba:a2:d4:6c:1a:6e:0c:06:f5:0b:09:06:d4:
e3:12:98:9b:e1:f5:fe:bc:6b:ca:d1:b5:51:e2:72:
2a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:99:A4:EB:65:3D:B8:B7:62:83:25:04:48:30:3C:F3:70:5D:DF:2C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wZmk62U9uLdigyUESDA883Bd3yw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/18
Signature Algorithm: sha256WithRSAEncryption
2f:e4:b6:23:45:ef:ea:02:c9:b1:c2:1e:23:0d:87:c6:e2:b5:
02:e4:aa:8d:50:ed:97:74:50:9f:e1:c7:34:d0:29:5b:56:f3:
9c:dc:78:1e:2f:22:92:7a:3d:de:9d:eb:b8:14:a5:a0:66:01:
f1:28:f5:15:dc:11:3d:c5:42:58:93:68:47:f2:74:44:1d:78:
3d:cd:13:c7:16:19:86:a4:39:04:90:e7:57:12:66:4a:b3:df:
eb:fe:ed:06:09:67:cf:87:77:e0:8f:56:86:f9:d9:0c:04:8f:
18:23:bf:cc:9b:89:bd:8b:62:de:fd:e4:77:b6:a1:d9:71:28:
4b:4d:1b:f4:8a:a1:31:04:58:6d:f8:34:b3:b8:70:2a:0f:8d:
ae:3d:cc:78:7c:09:28:2c:c0:ee:b0:41:40:09:9d:97:e7:b9:
77:ea:9a:30:6e:41:e1:2a:34:18:92:c4:4f:e5:07:52:c5:fd:
6b:1b:d6:0f:a3:9b:46:41:1e:80:ce:45:4d:74:5e:ed:9e:49:
67:b4:19:69:36:68:1f:c9:33:c8:8b:f3:9e:f9:c6:3e:2c:25:
0c:0f:63:6d:2e:ba:0e:98:bb:15:b1:72:44:52:c5:66:ce:5f:
4c:a2:7f:a1:bf:8a:65:1d:d4:86:93:b8:4a:64:56:cd:52:c1:
d2:67:77:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org