Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/uiGl4Dh3UBS-EkQaPBt0ynOCohQ.roa
File: uiGl4Dh3UBS-EkQaPBt0ynOCohQ.roa (raw, json)
Hash identifier: wm79A4P1CH/S2IzVypIzUO8liiD9b3iE07hkt/LHwHM=
Subject key identifier: BA:21:A5:E0:38:77:50:14:BE:12:44:1A:3C:1B:74:CA:73:82:A2:14
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0A3B
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/uiGl4Dh3UBS-EkQaPBt0ynOCohQ.roa
Signing time: Thu 15 Sep 2022 02:47:56 +0000
ROA not before: Thu 15 Sep 2022 02:47:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9264
IP address blocks: 2403:c240::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 15 02:47:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BA21A5E038775014BE12441A3C1B74CA7382A214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ac:b1:c9:bd:88:a5:5f:3e:1d:4b:13:5d:86:
ca:7b:b3:d0:ad:e9:82:f7:e4:40:9b:90:84:4d:4f:
28:7f:cd:fc:55:7f:d8:b3:f0:a7:92:00:f1:07:75:
e5:83:bb:b7:e6:bd:5b:4e:0e:e5:76:40:74:28:fa:
fc:ac:63:bd:b2:71:a8:8d:17:3e:28:70:b0:18:9a:
ac:ed:0f:4c:b7:72:7e:16:42:69:79:3e:ae:30:1f:
28:d9:04:27:50:ab:e0:22:51:45:27:44:d3:40:a1:
ac:2d:61:96:af:02:aa:41:38:c9:96:9d:9a:04:2a:
63:de:69:29:81:d7:7c:2a:1a:7d:0c:68:23:ce:46:
17:da:69:06:9b:32:59:17:cf:17:c5:57:a8:cd:1e:
e2:ec:73:38:69:38:85:24:3d:12:74:13:81:d5:b8:
20:50:f3:7d:53:9f:f3:b2:d8:1f:31:82:e2:32:ce:
4a:c4:a9:2d:17:21:46:cf:41:9b:2e:dc:0a:44:2a:
78:15:bf:65:ed:70:9c:e9:24:ec:01:35:b6:d5:e7:
20:74:dd:52:c5:c7:d7:b3:1f:01:23:08:35:e3:51:
21:2d:5a:20:fa:b2:c8:3e:0b:e2:b6:c5:20:62:34:
87:41:7e:29:72:7c:fc:d8:a8:4d:15:66:6a:a1:3c:
78:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:21:A5:E0:38:77:50:14:BE:12:44:1A:3C:1B:74:CA:73:82:A2:14
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/uiGl4Dh3UBS-EkQaPBt0ynOCohQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:c240::/32
Signature Algorithm: sha256WithRSAEncryption
b8:34:f3:3c:ac:8f:5b:07:aa:c8:f7:c2:2e:ab:77:05:ce:bf:
ce:d1:2f:fd:17:6e:50:e1:8e:59:de:09:aa:b3:6d:a5:fd:1a:
5d:60:c1:79:e1:87:ab:27:b1:f1:6e:03:ba:ab:05:3a:16:81:
31:25:06:30:04:cb:41:05:55:75:48:04:04:50:bd:aa:8d:4a:
de:46:ec:ea:e0:2d:22:e6:3e:57:89:87:66:5a:59:6b:8d:c9:
a5:54:8e:cd:15:25:e6:00:05:b1:23:03:61:88:e9:ca:59:7e:
9d:37:d7:a6:55:3a:1e:c7:8e:36:4e:e7:44:dd:cb:14:b2:fe:
93:c4:8a:1b:46:2b:d3:54:e8:cc:56:f4:99:36:dc:be:a0:36:
c4:8a:81:e1:47:07:ed:ba:6d:38:ee:6c:57:2e:4c:74:0b:b6:
a7:ed:69:1e:fb:45:d5:8e:8c:be:01:01:30:1d:7b:d1:34:15:
57:83:f3:dc:9c:6d:67:78:7c:64:28:5a:04:17:e1:cd:41:3a:
61:97:9c:50:2b:d0:df:f2:1e:ce:9e:7a:2b:c3:79:90:ef:cc:
ba:cb:6a:a1:63:22:78:d9:c0:9c:93:0e:68:4a:d1:4c:f2:fb:
46:57:15:57:26:ea:91:c6:7d:e5:b3:d5:27:82:a5:19:9a:06:
88:97:2c:37
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5
ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yMjA5MTUw
MjQ3NTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJBMjFBNUUwMzg3NzUw
MTRCRTEyNDQxQTNDMUI3NENBNzM4MkEyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4rLHJvYilXz4dSxNdhsp7s9Ct6YL35ECbkIRNTyh/zfxVf9iz
8KeSAPEHdeWDu7fmvVtODuV2QHQo+vysY72ycaiNFz4ocLAYmqztD0y3cn4WQml5
Pq4wHyjZBCdQq+AiUUUnRNNAoawtYZavAqpBOMmWnZoEKmPeaSmB13wqGn0MaCPO
RhfaaQabMlkXzxfFV6jNHuLsczhpOIUkPRJ0E4HVuCBQ831Tn/Oy2B8xguIyzkrE
qS0XIUbPQZsu3ApEKngVv2XtcJzpJOwBNbbV5yB03VLFx9ezHwEjCDXjUSEtWiD6
ssg+C+K2xSBiNIdBfilyfPzYqE0VZmqhPHh1AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUuiGl4Dh3UBS+EkQaPBt0ynOCohQwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj
U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv
Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC91aUdsNERoM1VCUy1Fa1FhUEJ0
MHluT0NvaFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAPC
QDANBgkqhkiG9w0BAQsFAAOCAQEAuDTzPKyPWweqyPfCLqt3Bc6/ztEv/RduUOGO
Wd4JqrNtpf0aXWDBeeGHqyex8W4DuqsFOhaBMSUGMATLQQVVdUgEBFC9qo1K3kbs
6uAtIuY+V4mHZlpZa43JpVSOzRUl5gAFsSMDYYjpyll+nTfXplU6HseONk7nRN3L
FLL+k8SKG0Yr01TozFb0mTbcvqA2xIqB4UcH7bptOO5sVy5MdAu2p+1pHvtF1Y6M
vgEBMB170TQVV4Pz3JxtZ3h8ZChaBBfhzUE6YZecUCvQ3/Iezp56K8N5kO/Mustq
oWMieNnAnJMOaErRTPL7RlcVVybqkcZ95bPVJ4KlGZoGiJcsNw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:13 2023 by rpki-client on console-fra.rpki-client.org