Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xYh9KNmdQ3xcEEWtrvw1lLwzbPY.roa
File: xYh9KNmdQ3xcEEWtrvw1lLwzbPY.roa (raw, json)
Hash identifier: 3wZtVxlY81w0HkxqFv3eVddjiOabj2iDWBwLuNs8tGA=
Subject key identifier: C5:88:7D:28:D9:9D:43:7C:5C:10:45:AD:AE:FC:35:94:BC:33:6C:F6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xYh9KNmdQ3xcEEWtrvw1lLwzbPY.roa
Signing time: Thu 15 Sep 2022 02:42:57 +0000
ROA not before: Thu 15 Sep 2022 02:42:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C5887D28D99D437C5C1045ADAEFC3594BC336CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:86:4c:02:c2:09:fe:c2:f3:43:48:bd:f6:32:
df:2b:c1:f4:0d:f1:3c:37:04:3a:f0:77:b6:b8:72:
24:f7:dc:2f:28:99:2b:4a:42:0c:3d:95:92:64:8a:
f2:41:f8:77:b8:ab:11:52:33:09:e6:bf:d6:02:ac:
8e:4d:39:39:ab:6e:c2:32:78:dc:01:7d:f0:a4:29:
e2:be:5e:b2:02:b6:fc:cb:77:16:56:51:0c:58:9a:
d6:db:83:8d:46:04:a8:e1:1b:bc:a4:44:81:a3:63:
5b:f8:da:12:70:ac:ea:c6:a3:e8:6b:99:ec:12:2e:
04:4f:7f:9a:00:4f:d8:5c:06:02:8d:92:81:0f:be:
b2:7a:87:7e:ac:3f:75:dd:79:c0:af:80:af:f8:67:
f9:65:55:80:05:26:b5:30:92:e9:36:ed:17:ac:9d:
78:e7:fc:25:18:31:2e:86:5a:1c:88:8f:5a:c2:6e:
21:74:fb:df:43:22:58:e2:ee:aa:21:f9:b2:bd:38:
d0:6a:5f:6d:c0:ed:44:41:ea:6f:42:85:ea:3d:46:
f5:96:46:f2:07:0c:5c:5d:60:1c:dc:54:16:b0:c9:
a4:94:3e:ec:24:ed:68:1d:ef:ae:aa:fb:51:94:f1:
20:cd:db:27:25:62:f1:df:20:93:6e:10:27:7a:5c:
be:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:88:7D:28:D9:9D:43:7C:5C:10:45:AD:AE:FC:35:94:BC:33:6C:F6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xYh9KNmdQ3xcEEWtrvw1lLwzbPY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bb:b8:e6:42:f1:3b:75:35:9f:d9:9b:3d:ef:44:59:38:b2:01:
ab:1a:88:a5:14:73:44:ae:d0:66:42:53:74:a3:5d:69:38:01:
e5:cf:ab:7c:81:a0:1e:89:29:5e:f7:f9:4b:12:59:7e:7d:07:
ef:60:39:ed:72:d9:01:ae:b7:9b:a3:db:38:18:bd:0e:94:85:
68:c6:ed:3a:8a:49:b4:61:8e:29:4c:af:e3:30:74:f4:0e:08:
88:a9:eb:da:5f:22:0e:8d:39:f1:aa:21:12:70:dd:2e:8c:a6:
05:50:9c:02:b2:e3:48:a2:5c:8a:7a:84:53:6f:97:3c:ea:91:
9e:63:ea:ea:b6:72:e2:c0:1a:45:74:24:40:37:c3:07:bb:09:
9b:62:3e:39:17:57:5e:a8:96:45:fd:0c:ab:36:0a:9b:3b:2e:
4a:63:a9:44:77:2c:96:3a:3e:99:3d:38:d5:de:e2:46:de:06:
92:cf:a7:55:32:bb:df:10:2c:fc:fb:fb:bf:92:10:8b:4b:54:
fc:a7:6b:d1:3d:14:e2:3f:f5:ec:97:3a:5e:99:32:2a:1c:e2:
aa:dd:22:08:16:be:80:1e:f4:59:b7:28:34:85:b7:73:ab:81:
c5:5e:0e:11:9d:d3:1d:dd:39:a9:74:78:c9:b8:53:1a:b9:71:
18:5a:30:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org