Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yZX4n17GlXfLlsdMJSUmm5B5tlU.roa
File: yZX4n17GlXfLlsdMJSUmm5B5tlU.roa (raw, json)
Hash identifier: zW5ca8ckf2rXj8SAIWLKyGNfb82VMmeO6KTc5BQOgDY=
Subject key identifier: C9:95:F8:9F:5E:C6:95:77:CB:96:C7:4C:25:25:26:9B:90:79:B6:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1042
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yZX4n17GlXfLlsdMJSUmm5B5tlU.roa
Signing time: Wed 01 Feb 2023 10:28:20 +0000
ROA not before: Wed 01 Feb 2023 10:28:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.228.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4162 (0x1042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:20 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C995F89F5EC69577CB96C74C2525269B9079B655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:be:86:79:d6:e0:64:79:12:d8:60:82:d6:
46:0f:95:d7:77:b2:27:39:d4:17:cc:77:a2:58:72:
48:22:93:85:0b:59:d1:b6:88:ef:49:02:1e:52:eb:
b8:38:fd:26:fc:8c:ea:77:70:d8:db:b1:fc:86:0c:
a8:db:45:1e:14:f9:f9:71:ee:33:42:7e:be:6b:60:
75:c8:1b:28:4d:92:19:98:fa:aa:73:f3:cb:f2:06:
8b:28:af:cf:6f:31:c5:97:dc:f9:04:7b:da:c7:09:
2e:46:0d:ad:43:22:91:3b:1b:40:37:06:67:a6:f9:
f9:83:1a:5d:70:c2:86:6b:6a:6e:5b:73:7a:7d:01:
8e:f3:3b:e4:b5:b9:fe:49:97:06:61:dd:36:1e:78:
a0:9c:b2:7e:b8:3b:b1:ab:ce:d4:1f:6a:81:70:fe:
e0:c0:c2:92:f6:88:63:d2:50:fe:d9:f0:18:8b:9b:
94:bc:70:fc:86:d9:35:2e:91:d1:47:23:f2:14:d3:
fb:ba:b5:d1:b9:e0:8d:dc:66:4f:24:f6:2e:88:03:
a4:80:8a:07:9f:f6:f3:2c:e9:dc:98:fb:d9:e2:5d:
2a:49:7a:7d:ff:6f:2e:f6:e5:f0:4e:22:e7:0d:12:
59:c9:af:33:8c:5a:b0:83:b6:f0:5f:26:36:26:e4:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:95:F8:9F:5E:C6:95:77:CB:96:C7:4C:25:25:26:9B:90:79:B6:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yZX4n17GlXfLlsdMJSUmm5B5tlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a9:e3:05:58:f4:62:a2:d3:4c:bf:40:81:8e:50:85:f3:7f:15:
17:b5:ba:7e:35:bf:f0:17:90:a5:6f:36:f9:be:56:3e:39:48:
f0:f1:7a:e0:cb:65:a3:61:47:47:09:09:0f:7e:ae:36:a8:e7:
c9:55:65:f8:3d:36:e1:62:9e:a4:dc:27:0d:f4:8c:57:d3:5f:
6f:82:e5:1b:96:63:e8:d3:aa:c6:cb:49:6d:5a:2e:9e:ac:2b:
f5:f7:ca:7c:c3:93:db:01:65:61:f1:63:0a:5b:2c:18:1b:1c:
0a:91:01:9d:0a:0a:2b:21:95:be:14:1d:a8:91:66:62:16:61:
84:79:ab:b3:c9:3d:b3:3c:48:c3:7e:db:4e:f8:6e:66:b3:3c:
f6:03:a8:04:92:e0:88:00:9f:5b:14:4c:04:0a:bf:43:ee:18:
e9:02:25:71:e7:0f:21:77:15:de:6f:04:95:69:52:2c:e0:1c:
38:c8:10:b6:0a:ed:06:3e:41:5c:b8:08:eb:dc:6f:d8:05:b9:
a1:28:19:d4:47:7c:51:86:fa:fa:56:2c:55:cb:2f:74:05:55:
74:de:35:8c:af:f5:09:7e:cc:d9:96:ec:26:fb:2c:e3:01:e4:
19:fc:28:95:17:93:f5:d7:b1:6f:8e:5f:5e:f1:7b:05:d3:cd:
4d:6a:51:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org