Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ygTerk9Ek_dr0Ba-WPU8DBwuHAw.roa
File: ygTerk9Ek_dr0Ba-WPU8DBwuHAw.roa (raw, json)
Hash identifier: nNVLhC/pWyYvZNUGVyuPdwkKBHV5vFhdxXZY0WXEGPg=
Subject key identifier: CA:04:DE:AE:4F:44:93:F7:6B:D0:16:BE:58:F5:3C:0C:1C:2E:1C:0C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1070
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ygTerk9Ek_dr0Ba-WPU8DBwuHAw.roa
Signing time: Wed 01 Feb 2023 10:28:34 +0000
ROA not before: Wed 01 Feb 2023 10:28:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.128.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4208 (0x1070)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CA04DEAE4F4493F76BD016BE58F53C0C1C2E1C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2e:5f:35:22:c9:92:38:e3:f2:11:bd:b6:72:
e3:6b:a0:70:66:93:93:9d:b2:3a:72:5a:5c:8d:a5:
85:59:e8:65:01:33:a8:2b:65:ca:c6:6b:04:62:af:
95:05:9b:0b:d5:72:2f:98:c5:31:82:9d:41:2e:4d:
97:87:b3:77:30:a6:6a:5a:a9:35:4b:f4:b4:8d:09:
85:b4:95:f8:af:7f:fb:9d:ec:77:ba:94:5f:e7:b3:
f4:8f:9b:e6:9b:10:8f:d3:1a:06:34:ca:80:d5:28:
54:c8:3e:36:fd:8e:f8:32:7d:46:b0:a4:cc:b0:14:
e8:01:29:20:6a:f0:ee:63:30:42:08:dd:b5:18:ac:
8c:f1:59:ab:4e:21:68:ec:20:9a:b7:14:04:2d:f5:
45:d4:e8:e6:e6:97:4a:bd:17:ec:02:e6:16:7b:c2:
e0:f3:4a:c0:aa:71:ce:c7:3e:61:a5:94:48:7c:99:
30:60:49:00:55:81:ae:8a:9a:bf:c4:9f:5e:81:cd:
d0:10:57:01:97:0a:74:a2:83:03:f3:74:45:f4:a3:
6f:96:8c:d6:0f:22:77:8b:41:f3:69:35:af:2e:61:
60:24:b0:fd:dd:7c:29:e4:db:cb:b8:98:3e:53:73:
4f:5c:b6:a4:1c:e8:e7:7f:0c:2a:ef:f2:03:7f:aa:
24:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:04:DE:AE:4F:44:93:F7:6B:D0:16:BE:58:F5:3C:0C:1C:2E:1C:0C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ygTerk9Ek_dr0Ba-WPU8DBwuHAw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/20
Signature Algorithm: sha256WithRSAEncryption
30:94:dd:e0:03:3a:44:3b:55:e6:a4:cc:47:81:1c:47:9b:aa:
3c:1a:ec:6a:9d:99:7d:b8:4e:10:18:bb:d7:1b:14:33:ca:90:
8d:6f:3f:00:82:f1:d9:76:8a:12:17:72:55:a5:9a:42:e6:2c:
e5:2e:89:a1:0a:d8:66:35:a0:eb:8c:bf:f8:8b:dc:95:86:9b:
71:e5:f7:a3:d7:87:cf:3e:18:82:03:63:cf:b9:f3:b2:05:2d:
4d:2f:e6:59:19:c3:fc:c3:da:60:7d:2e:18:20:81:bb:7b:dc:
71:73:33:ea:53:1c:32:55:a8:d9:ea:10:03:f5:28:c0:77:fd:
08:0a:23:08:96:10:7d:c3:3a:1b:7f:62:cf:f2:85:e9:bf:4a:
8f:84:fb:3a:7b:1b:8a:57:3d:7b:b9:6d:07:d5:96:6d:25:93:
7c:f2:be:8a:be:da:4e:a7:76:eb:44:84:0f:01:62:ba:4d:e3:
a8:3e:4d:55:12:fc:bd:77:9d:ff:f5:2f:f5:4f:12:7c:29:d4:
aa:bf:e6:12:56:85:d4:81:b9:87:b0:1a:54:1a:1b:fd:cc:f4:
a9:01:dd:3f:19:c6:a6:a0:2d:59:93:ff:4f:20:58:7e:71:4e:
98:fb:13:14:73:f3:57:b6:f5:69:9c:94:6d:ed:e6:ca:3f:66:
54:28:de:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org