Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yn8NDjDpiMSaXiSelxZtGno78BY.roa
File: yn8NDjDpiMSaXiSelxZtGno78BY.roa (raw, json)
Hash identifier: 4TX/k/VYUOTD+DkE86wE0px+np/bEJNymF1mqhO8nJk=
Subject key identifier: CA:7F:0D:0E:30:E9:88:C4:9A:5E:24:9E:97:16:6D:1A:7A:3B:F0:16
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yn8NDjDpiMSaXiSelxZtGno78BY.roa
Signing time: Thu 15 Sep 2022 02:42:52 +0000
ROA not before: Thu 15 Sep 2022 02:42:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 60.245.112.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CA7F0D0E30E988C49A5E249E97166D1A7A3BF016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:25:85:a2:2e:6b:d9:12:d8:50:52:74:16:
84:2e:73:42:95:00:14:bd:dc:dc:76:90:46:d0:97:
a1:b3:48:67:fa:cf:8d:f8:3f:8b:7a:59:c6:90:19:
ff:bd:a7:a4:ae:d0:01:ba:b8:30:c1:f7:ab:72:2b:
e1:58:6f:fb:3c:b6:4b:a0:59:ca:a8:ce:fd:cc:bb:
99:6c:0c:09:a9:8a:d0:35:57:58:57:53:8a:f0:83:
dc:f4:23:77:4f:f6:a5:89:30:77:c4:2d:7b:91:4e:
a1:5c:07:8e:18:09:85:e7:4a:22:59:22:2f:56:da:
1f:52:3c:6d:98:6f:21:5d:79:24:b8:02:6a:0a:32:
ab:eb:6e:da:29:29:5c:f9:c3:53:fd:a1:47:aa:53:
e3:c5:32:c4:28:5d:33:d3:60:95:90:5a:b6:90:8e:
fb:f1:b2:40:82:7f:9c:d5:d5:ea:74:51:d7:90:b3:
3e:37:2e:9b:06:90:1c:79:8c:b5:7e:66:6a:63:d5:
ff:89:ad:96:1d:38:dd:bc:39:20:8d:e9:f6:48:0c:
d5:14:d8:b4:52:bc:fc:56:d5:8b:a9:3f:22:6a:76:
8a:4a:44:ed:f5:66:15:fe:6e:44:68:6d:b2:3f:16:
0e:25:a0:79:01:ef:4c:11:ab:2d:28:7f:1f:9b:8a:
ca:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7F:0D:0E:30:E9:88:C4:9A:5E:24:9E:97:16:6D:1A:7A:3B:F0:16
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yn8NDjDpiMSaXiSelxZtGno78BY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.112.0/21
Signature Algorithm: sha256WithRSAEncryption
35:4b:c4:d5:3b:47:62:4d:f2:27:c4:ba:be:70:3c:5b:bd:b7:
dd:30:5f:83:50:0a:f8:f3:be:26:4e:83:2e:c0:d7:c3:2c:58:
80:9c:5d:ac:bf:02:01:8e:6b:09:d3:2a:04:a9:da:b1:ed:ed:
8a:e1:1c:b7:95:6a:b7:51:8c:d1:79:94:ba:7a:ec:ba:5a:b9:
f1:cf:e0:69:d4:ed:e1:95:e2:e2:c5:05:da:15:ec:d1:0d:13:
33:73:b7:6e:94:10:03:b9:0b:e8:d0:1a:0f:07:fb:f5:85:d6:
5f:65:63:fa:4a:2e:10:20:0f:75:49:0b:df:d1:9f:85:98:54:
76:fb:b3:59:b6:ba:27:f3:e6:1a:7b:bd:ae:09:26:31:60:e4:
a5:e4:b1:cd:a8:7b:77:39:ca:0b:10:23:59:0d:74:a8:8e:7f:
e8:ad:42:31:78:c8:71:12:e1:a8:49:38:b3:f5:65:37:b4:cc:
08:60:26:53:d2:42:46:b9:eb:18:f6:6d:05:02:d4:eb:15:20:
ba:bb:28:b2:d1:65:de:2e:2c:ea:38:9d:9d:57:af:87:a2:16:
c1:6a:d1:5c:b9:6c:a7:48:7a:06:43:6e:f6:b7:a6:6c:2f:c7:
74:b5:4e:74:33:f2:19:b7:1e:98:80:5b:01:ab:fa:b1:d0:91:
36:9d:c3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org