Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/4UQyNkrV2Om6VzvcH2zQRVAI4kc.roa
File: 4UQyNkrV2Om6VzvcH2zQRVAI4kc.roa (raw, json)
Hash identifier: 90c1YHAqJq9edCOWJ+Pt9cguasjvIoFwH1iPaz6aJAk=
Subject key identifier: E1:44:32:36:4A:D5:D8:E9:BA:57:3B:DC:1F:6C:D0:45:50:08:E2:47
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0471
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/4UQyNkrV2Om6VzvcH2zQRVAI4kc.roa
Signing time: Thu 15 Sep 2022 02:35:02 +0000
ROA not before: Thu 15 Sep 2022 02:35:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134522
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 15 02:35:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E14432364AD5D8E9BA573BDC1F6CD0455008E247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:ac:3b:65:6a:1f:7c:2e:c4:cb:c0:12:89:
c8:c0:4c:23:31:5c:ad:d3:6d:80:09:f1:b4:8a:89:
c4:8d:2a:9e:3b:d5:4b:35:65:ef:a7:b8:87:81:cd:
7e:b6:48:fb:59:94:b6:e0:ea:09:ad:4e:3e:f4:7c:
59:95:2a:c6:48:42:af:ed:73:c8:c7:21:a9:2e:53:
03:df:21:de:af:bd:15:a6:62:ad:51:6e:7a:ab:26:
57:51:f5:83:7a:ae:43:42:96:d3:85:3c:b4:68:5c:
f4:37:4a:21:0d:cb:80:33:fa:d1:1f:16:d9:95:5a:
d1:e9:d4:7f:e6:1b:60:17:52:95:e4:7d:e0:be:28:
cb:6f:98:c4:be:20:2a:1d:4c:e6:9c:e3:7f:80:74:
12:4b:92:ea:cf:93:73:3b:25:35:21:f6:95:3c:57:
3d:20:a1:17:31:14:c8:9c:ce:07:e1:e4:11:67:ea:
10:92:39:b8:ac:e1:39:a7:df:c8:87:89:10:33:c4:
93:00:e2:ad:d4:ca:f9:32:94:9b:69:7f:90:42:27:
4a:e4:27:f5:a5:c7:14:dd:d3:20:02:7d:a5:b7:a3:
bb:df:e4:cd:37:be:29:6e:b0:10:83:b6:05:28:da:
a1:86:10:91:87:ce:db:36:44:54:98:d7:8f:f6:4f:
f9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:44:32:36:4A:D5:D8:E9:BA:57:3B:DC:1F:6C:D0:45:50:08:E2:47
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/4UQyNkrV2Om6VzvcH2zQRVAI4kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
b4:a2:53:2d:a8:03:15:92:43:62:92:33:20:a0:14:c5:ae:51:
f9:5a:53:b9:ce:8d:bf:e8:76:53:57:d8:17:84:f7:90:14:a9:
33:9c:03:c2:ce:f1:a8:4c:bc:7d:c2:62:96:dc:aa:b0:df:b8:
06:eb:c3:df:2b:d5:7f:ff:ae:35:45:fa:82:5c:1d:9b:f6:a1:
de:81:e4:fe:2a:6a:f8:54:4a:13:56:ed:26:cb:9b:e6:f6:e2:
5b:7f:9d:8e:fd:60:b9:f3:58:55:05:fb:c7:85:c3:8d:df:d7:
fe:f7:72:d4:ff:47:f2:0d:92:5b:a3:bb:ee:c1:29:25:ff:bf:
9a:32:27:da:95:43:6b:7d:39:25:eb:54:e0:f7:e6:b8:88:5c:
a0:1a:bb:dc:68:af:cf:9d:81:84:4a:c3:7e:88:10:20:68:95:
53:c1:11:8a:4d:f0:25:ae:91:74:80:7d:9c:ac:11:ae:43:a5:
73:8a:6d:24:06:64:dc:59:27:e1:66:e3:3b:42:e8:34:47:50:
b1:58:d4:38:50:ab:83:28:03:2b:44:ad:49:8c:9d:43:b5:b7:
7f:ac:92:72:1e:03:e9:dc:9a:36:ae:42:88:7d:8f:b0:34:c9:
c7:99:48:09:a9:02:d4:78:44:0a:d3:ab:78:81:61:08:12:e8:
22:d2:b1:dc
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMjA5MTUw
MjM1MDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUxNDQzMjM2NEFENUQ4
RTlCQTU3M0JEQzFGNkNEMDQ1NTAwOEUyNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrM6w7ZWoffC7Ey8ASicjATCMxXK3TbYAJ8bSKicSNKp471Us1
Ze+nuIeBzX62SPtZlLbg6gmtTj70fFmVKsZIQq/tc8jHIakuUwPfId6vvRWmYq1R
bnqrJldR9YN6rkNCltOFPLRoXPQ3SiENy4Az+tEfFtmVWtHp1H/mG2AXUpXkfeC+
KMtvmMS+ICodTOac43+AdBJLkurPk3M7JTUh9pU8Vz0goRcxFMiczgfh5BFn6hCS
Obis4Tmn38iHiRAzxJMA4q3UyvkylJtpf5BCJ0rkJ/WlxxTd0yACfaW3o7vf5M03
vilusBCDtgUo2qGGEJGHzts2RFSY14/2T/kVAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU4UQyNkrV2Om6VzvcH2zQRVAI4kcwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzRVUXlOa3JWMk9tNlZ6dmNI
MnpRUlZBSTRrYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
AZXAMA0GCSqGSIb3DQEBCwUAA4IBAQC0olMtqAMVkkNikjMgoBTFrlH5WlO5zo2/
6HZTV9gXhPeQFKkznAPCzvGoTLx9wmKW3Kqw37gG68PfK9V//641RfqCXB2b9qHe
geT+Kmr4VEoTVu0my5vm9uJbf52O/WC581hVBfvHhcON39f+93LU/0fyDZJbo7vu
wSkl/7+aMifalUNrfTkl61Tg9+a4iFygGrvcaK/PnYGESsN+iBAgaJVTwRGKTfAl
rpF0gH2crBGuQ6Vzim0kBmTcWSfhZuM7Qug0R1CxWNQ4UKuDKAMrRK1JjJ1Dtbd/
rJJyHgPp3Jo2rkKIfY+wNMnHmUgJqQLUeEQK06t4gWEIEugi0rHc
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org