Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7RiNGJLXL6MjxUupzoF_jjBdSHM.roa
File: 7RiNGJLXL6MjxUupzoF_jjBdSHM.roa (raw, json)
Hash identifier: RMm8HzPaSLK+RB94/VnSvQzFwXs/+9MdToZJRT7EMwc=
Subject key identifier: ED:18:8D:18:92:D7:2F:A3:23:C5:4B:A9:CE:81:7F:8E:30:5D:48:73
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0AE6
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7RiNGJLXL6MjxUupzoF_jjBdSHM.roa
Signing time: Thu 13 Apr 2023 00:18:17 +0000
ROA not before: Thu 13 Apr 2023 00:18:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20473
IP address blocks: 2403:a2c0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2790 (0xae6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Apr 13 00:18:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED188D1892D72FA323C54BA9CE817F8E305D4873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:de:1c:5e:26:87:38:bb:97:e8:3b:a1:b1:
d3:df:09:84:d0:e9:a4:10:96:0b:a9:40:55:20:ce:
ee:61:95:51:47:55:61:3c:62:4e:31:05:7d:d8:f5:
a9:1e:40:43:7e:b4:49:e0:b3:cd:0d:7f:8b:fa:a3:
dd:a5:1f:f0:2b:2a:0a:7f:7a:57:a1:dc:5b:bb:c2:
93:dd:ff:42:c3:ff:d7:3c:ff:b1:18:f9:38:b2:6f:
9f:9b:e2:00:5e:6f:4d:83:5d:78:43:24:6a:70:50:
4a:94:4e:5e:7e:18:9f:b9:7a:af:c1:2c:e1:1e:81:
f3:ed:f9:e0:04:4d:40:da:fe:d8:2e:2c:c4:d1:ca:
3b:f4:16:c8:ba:6b:b1:51:a6:80:7b:c1:56:4c:81:
55:ba:4d:f7:cf:f9:c9:66:5f:70:cf:9c:16:cb:ab:
34:0f:77:eb:e4:5e:48:4d:78:66:66:8f:6c:ca:c1:
6c:64:07:c6:73:cc:7e:e6:4a:e2:db:70:eb:62:38:
34:b2:0b:61:91:a2:30:38:52:4a:36:42:ce:ec:4d:
01:f2:36:f2:91:89:73:35:50:98:10:74:d9:08:70:
2b:fb:b2:85:bd:45:81:68:08:da:a2:f7:2b:12:25:
c2:c2:0b:5c:1d:56:2c:70:e2:eb:36:6d:05:5c:35:
b8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:18:8D:18:92:D7:2F:A3:23:C5:4B:A9:CE:81:7F:8E:30:5D:48:73
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7RiNGJLXL6MjxUupzoF_jjBdSHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a2c0::/32
Signature Algorithm: sha256WithRSAEncryption
75:77:67:fd:06:fa:50:82:28:9f:44:de:bf:c9:d5:b2:72:a8:
f0:3d:57:e8:31:f7:ca:ec:03:7d:ca:21:c8:e5:18:36:3d:af:
45:68:2c:e2:a6:63:eb:fb:cb:36:6f:dd:fc:6d:44:cc:87:11:
3c:72:ea:d5:b0:34:ab:f2:8b:39:be:5d:1a:ca:88:50:e7:d5:
d4:20:7f:42:b2:c9:5c:70:ae:9f:9e:04:3a:f4:38:95:ff:3d:
6d:4e:ea:46:c8:d0:14:9f:85:82:c8:bb:a2:f8:b9:21:89:ea:
6a:09:22:66:ad:d0:46:bb:7d:b6:6e:88:63:f6:2f:8e:c3:9d:
75:54:df:4a:cd:e5:1b:41:64:b6:71:9d:24:b8:c6:84:03:ee:
34:a9:76:80:1d:f2:2c:2e:af:db:a2:8e:42:62:f1:0e:fc:81:
f0:41:fc:54:3f:28:ed:9b:ab:55:87:35:d0:b8:48:74:61:c9:
4e:b3:05:e7:26:cd:ed:f2:92:a6:9d:74:cd:94:bb:67:e3:ae:
f2:95:fd:2b:94:52:25:e9:67:cc:79:02:73:5a:4e:fa:02:53:
37:ef:de:93:05:95:5a:f1:8d:76:5f:67:9e:2e:32:f4:2b:f8:
2a:7b:8d:a2:90:f2:9e:e7:cd:5e:58:76:c8:7f:70:4a:b1:25:
45:b9:05:7b
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMzA0MTMw
MDE4MTdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVEMTg4RDE4OTJENzJG
QTMyM0M1NEJBOUNFODE3RjhFMzA1RDQ4NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdbN4cXiaHOLuX6DuhsdPfCYTQ6aQQlgupQFUgzu5hlVFHVWE8
Yk4xBX3Y9akeQEN+tEngs80Nf4v6o92lH/ArKgp/eleh3Fu7wpPd/0LD/9c8/7EY
+Tiyb5+b4gBeb02DXXhDJGpwUEqUTl5+GJ+5eq/BLOEegfPt+eAETUDa/tguLMTR
yjv0Fsi6a7FRpoB7wVZMgVW6TffP+clmX3DPnBbLqzQPd+vkXkhNeGZmj2zKwWxk
B8ZzzH7mSuLbcOtiODSyC2GRojA4Uko2Qs7sTQHyNvKRiXM1UJgQdNkIcCv7soW9
RYFoCNqi9ysSJcLCC1wdVixw4us2bQVcNbinAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU7RiNGJLXL6MjxUupzoF/jjBdSHMwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vN1JpTkdKTFhMNk1qeFV1
cHpvRl9qakJkU0hNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQDosAwDQYJKoZIhvcNAQELBQADggEBAHV3Z/0G+lCCKJ9E3r/J1bJyqPA9V+gx
98rsA33KIcjlGDY9r0VoLOKmY+v7yzZv3fxtRMyHETxy6tWwNKvyizm+XRrKiFDn
1dQgf0KyyVxwrp+eBDr0OJX/PW1O6kbI0BSfhYLIu6L4uSGJ6moJImat0Ea7fbZu
iGP2L47DnXVU30rN5RtBZLZxnSS4xoQD7jSpdoAd8iwur9uijkJi8Q78gfBB/FQ/
KO2bq1WHNdC4SHRhyU6zBecmze3ykqaddM2Uu2fjrvKV/SuUUiXpZ8x5AnNaTvoC
Uzfv3pMFlVrxjXZfZ54uMvQr+Cp7jaKQ8p7nzV5Ydsh/cEqxJUW5BXs=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org