Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xZpIYakMnqcK6gLP0wu3TOaIQiU.roa
File: xZpIYakMnqcK6gLP0wu3TOaIQiU.roa (raw, json)
Hash identifier: bq9hIVLhwZDuIxZttLfCEUOKQHJ9Xow4UwI7Wx8BGiU=
Subject key identifier: C5:9A:48:61:A9:0C:9E:A7:0A:EA:02:CF:D3:0B:B7:4C:E6:88:42:25
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 111A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xZpIYakMnqcK6gLP0wu3TOaIQiU.roa
Signing time: Wed 01 Feb 2023 10:29:28 +0000
ROA not before: Wed 01 Feb 2023 10:29:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 106.104.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4378 (0x111a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C59A4861A90C9EA70AEA02CFD30BB74CE6884225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7c:8f:db:0c:6a:4d:6e:c8:d5:ec:94:9a:22:
ee:a5:1c:95:27:53:5a:87:db:b5:15:66:12:da:44:
42:9d:74:59:00:ff:c4:5f:1d:10:34:3f:38:78:d3:
33:02:33:85:fd:7b:d1:7d:87:2c:23:f8:af:7d:e9:
1a:6a:71:31:a5:18:2e:76:73:31:2c:0d:2b:77:af:
87:85:2d:9e:c4:25:4a:e7:a7:9a:10:15:2e:56:66:
bd:dc:95:1c:95:dc:52:fb:7f:1b:11:93:37:d0:a6:
d9:ed:a5:61:56:4b:5d:f4:8b:df:3d:b3:9c:88:f1:
21:80:ff:87:a1:7a:50:36:7d:22:48:4f:f4:61:be:
3b:de:2c:f1:56:2d:85:b6:10:f5:c3:4b:26:fe:f1:
d8:ef:f2:8f:4c:0d:f5:2a:10:68:12:06:44:07:aa:
6a:b2:13:8f:6f:20:3f:03:0a:22:38:c3:6d:3f:52:
9a:fc:9c:7e:47:8d:2b:82:8a:b1:de:f9:ee:c6:9f:
df:5b:04:2f:f8:7e:20:59:0c:af:cb:be:a6:2d:83:
96:18:7b:58:b0:cf:b3:75:27:cd:21:78:43:24:47:
9e:f0:10:7e:29:d5:c2:32:32:6d:21:3a:f1:5c:9d:
c0:5e:72:10:0f:db:65:3d:18:a9:c4:ca:21:f0:48:
d8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9A:48:61:A9:0C:9E:A7:0A:EA:02:CF:D3:0B:B7:4C:E6:88:42:25
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xZpIYakMnqcK6gLP0wu3TOaIQiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:3d:64:3c:82:95:ca:61:53:c6:80:48:e2:52:3c:72:65:01:
17:61:90:f8:1d:3b:67:0f:1c:a4:69:13:9d:80:c3:8b:0e:23:
2b:3d:fe:03:22:80:f6:32:d1:5b:92:d1:f6:43:62:10:90:6a:
f9:fc:13:b7:37:b5:8c:63:4e:f6:b6:ea:28:94:4e:fb:54:f3:
b6:5c:6a:2d:8d:09:a5:71:9b:d4:3b:da:dd:74:57:68:e8:37:
c4:dd:dd:bd:50:62:88:30:8b:d7:e2:96:d4:66:80:14:12:a7:
44:6f:7d:2b:df:6c:46:0e:72:77:2a:84:0b:1a:cd:93:35:4c:
f0:44:85:f4:7c:a9:ee:8b:04:d0:a6:21:24:e3:3f:65:40:7a:
8e:54:c5:04:be:08:bf:60:1d:89:f5:37:65:47:d2:59:dc:b1:
e4:f8:42:35:d2:c3:c7:fa:4f:c8:01:b9:fd:22:2d:3b:16:8b:
5b:a5:20:39:56:58:c9:98:10:42:89:ea:5f:27:1f:e7:52:cc:
7d:4d:ef:63:63:00:20:81:13:e5:94:fc:fd:76:59:18:cc:c7:
28:ce:fd:2d:25:97:26:e9:27:8d:99:31:19:8b:2e:99:16:b6:
e4:e6:c5:77:6b:fa:a0:9c:84:df:47:77:d5:2a:1a:68:17:5f:
21:70:ad:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org