Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/y1d_o99-_Vz0Bchxa324G68fWv0.roa
File: y1d_o99-_Vz0Bchxa324G68fWv0.roa (raw, json)
Hash identifier: EiZkb7gMNMHt5NbfmfUE+D/OeEdpI6srxkG6WQh8zmw=
Subject key identifier: CB:57:7F:A3:DF:7E:FD:5C:F4:05:C8:71:6B:7D:B8:1B:AF:1F:5A:FD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y1d_o99-_Vz0Bchxa324G68fWv0.roa
Signing time: Thu 15 Sep 2022 02:42:48 +0000
ROA not before: Thu 15 Sep 2022 02:42:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB577FA3DF7EFD5CF405C8716B7DB81BAF1F5AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a3:6b:b3:8a:95:11:84:6e:06:22:70:c8:99:
b1:c9:53:b9:92:ac:24:37:8d:fb:7c:2d:d5:c5:a7:
67:f8:4c:2e:f5:f1:f5:37:c6:39:70:61:57:e7:76:
b8:41:65:20:14:5a:01:3d:6b:6e:9f:72:7b:64:f7:
89:1a:64:b0:38:ca:bb:6c:e6:fb:bf:93:3f:46:93:
36:e1:cc:cf:70:40:14:f5:d7:9a:e6:77:45:72:9e:
ea:99:3b:46:12:6f:5e:12:7a:cb:af:5c:be:fa:f6:
5b:ea:94:33:36:fb:3f:0c:26:a8:03:86:9a:72:af:
b1:cd:cf:3e:4e:a3:b6:7a:7d:2a:21:51:43:9e:76:
42:dd:b1:f8:25:5e:3f:54:d3:b1:6a:01:1d:90:63:
15:10:18:1f:0f:16:68:4e:0f:80:3a:84:47:df:e6:
d6:f0:bf:cc:16:4a:b5:04:04:d2:c5:9e:72:51:8c:
0a:91:86:1e:d8:d4:af:11:0f:e9:b1:df:52:fe:b6:
09:ea:a6:45:5f:c6:a4:f3:14:7c:42:db:8d:f0:0c:
d4:f6:02:e0:29:20:62:00:92:b4:d7:6e:f0:f7:f1:
eb:26:fd:d2:d5:5e:e4:a5:7d:22:c4:12:0f:5d:32:
91:2e:71:b0:93:85:1f:3e:6a:df:cf:b4:52:1b:b9:
f3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:57:7F:A3:DF:7E:FD:5C:F4:05:C8:71:6B:7D:B8:1B:AF:1F:5A:FD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y1d_o99-_Vz0Bchxa324G68fWv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:e3:79:07:b2:a0:f8:61:79:85:65:5e:59:b8:01:93:28:ae:
b0:6f:20:25:61:24:98:bd:7e:8e:11:65:f6:79:d2:56:cb:c2:
d7:25:dd:b0:06:11:57:15:53:69:28:d1:05:2a:9e:28:74:7e:
f0:f6:70:12:35:22:93:9f:84:43:0d:ce:f2:7b:92:92:03:6b:
3c:f1:ee:bb:e8:cc:50:78:6e:72:92:cf:e6:1d:57:05:bc:c3:
77:0d:89:17:6e:bc:af:7a:05:7f:fa:89:7c:3c:ad:2b:76:13:
0d:64:fc:bc:98:86:8e:fd:0c:b6:c5:5f:e8:4a:1d:90:bb:b2:
1b:2a:1f:3a:46:2d:92:ae:dc:2e:32:86:4b:88:5d:c4:01:2b:
36:87:39:0e:46:55:62:2c:ba:2a:d6:aa:97:92:bd:57:4f:d9:
3a:c3:a5:56:f9:8d:b1:2f:69:9b:a6:0f:6b:46:a7:90:65:f6:
f4:34:00:8b:ab:75:33:26:01:26:35:52:91:4f:7a:70:4a:dd:
e5:47:84:96:eb:9a:a7:9a:9b:17:fa:70:be:c2:82:41:b0:87:
16:63:9c:e2:bf:b0:3c:82:76:87:88:39:1a:43:25:c3:bc:0b:
e4:1f:49:6e:bb:66:f3:9c:66:3a:89:41:eb:70:18:ba:b6:de:
c5:cb:f7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org