Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1cLNJ1NfYbUZ0XNY-ba6djn1xu4.roa
File: 1cLNJ1NfYbUZ0XNY-ba6djn1xu4.roa (raw, json)
Hash identifier: V2GRW/9yr/WdAXVxmsQiixqb7K/40AJvlVChXrkIW1c=
Subject key identifier: D5:C2:CD:27:53:5F:61:B5:19:D1:73:58:F9:B6:BA:76:39:F5:C6:EE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1cLNJ1NfYbUZ0XNY-ba6djn1xu4.roa
Signing time: Thu 15 Sep 2022 02:42:56 +0000
ROA not before: Thu 15 Sep 2022 02:42:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.107.240.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5C2CD27535F61B519D17358F9B6BA7639F5C6EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b0:67:be:52:71:eb:37:16:5b:38:63:fb:08:
dd:cc:e9:d0:38:f0:ca:84:7e:50:f3:01:e9:56:0d:
f8:ab:7d:a4:d3:71:da:73:f9:cf:46:57:d4:5f:70:
76:57:b9:c6:92:67:c5:cf:ac:49:f7:6c:3a:3a:b7:
b4:50:d1:ea:dd:33:5b:2f:2f:f0:ef:8b:a6:ce:3c:
6b:44:51:70:ef:58:e3:ab:32:c2:33:5a:22:0c:ed:
a5:08:9a:38:e0:52:0d:e2:0f:05:e4:f0:41:43:72:
c2:37:af:ea:cb:31:9b:ed:47:2a:8b:c8:7e:34:90:
5e:6e:1e:f4:20:1a:38:74:58:58:60:be:a0:42:42:
2e:50:be:6f:53:96:71:bb:36:77:0f:b5:2f:71:87:
b5:19:0e:58:ff:dc:a3:0c:e0:5e:da:91:4f:1c:ca:
f1:29:84:e8:a7:5f:09:b5:e4:17:e3:1e:f0:90:66:
b1:c3:61:40:40:ad:25:9f:22:81:c9:b7:c8:6f:73:
20:5f:f5:e9:ec:db:01:25:56:12:33:7c:b8:1d:75:
09:9a:2a:72:12:45:5d:90:9b:08:f1:4f:6b:da:cc:
b5:db:49:ae:9d:76:47:c5:02:d3:db:14:6f:dc:49:
7e:ff:be:9e:0d:2f:3a:a5:36:62:df:ee:b6:04:12:
22:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C2:CD:27:53:5F:61:B5:19:D1:73:58:F9:B6:BA:76:39:F5:C6:EE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1cLNJ1NfYbUZ0XNY-ba6djn1xu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.240.0/20
Signature Algorithm: sha256WithRSAEncryption
98:cf:e0:f0:c1:ee:fe:3e:a7:06:41:89:b6:c1:6b:7f:59:16:
b2:a5:41:51:fe:a2:82:7f:70:46:cd:ee:f7:57:2a:45:a3:47:
46:01:e4:f6:be:c7:36:5d:37:b1:c2:b4:12:12:27:8f:b5:31:
c1:f6:4f:27:65:d1:b9:40:db:3d:cf:a2:f3:22:44:77:d2:23:
ab:37:02:eb:51:34:73:f2:f2:44:db:96:3d:e6:7a:9c:09:61:
b2:f7:99:95:32:6a:4f:43:92:3d:9c:20:d3:0d:78:13:81:e2:
6c:62:eb:5c:63:fe:bd:e3:e9:1f:e0:4c:ed:eb:ba:f5:d6:b7:
07:5b:e2:06:0c:0f:ef:05:71:b8:74:ca:87:e5:08:32:89:a0:
52:60:e0:12:78:b2:5d:9e:f8:3c:61:d7:90:f6:e2:78:c9:81:
5e:49:a5:61:c7:0c:49:ed:23:05:76:06:64:71:1f:98:7e:a7:
d5:d7:61:2d:01:85:83:1a:73:c6:b2:87:74:92:55:1a:74:95:
b5:98:b1:68:32:9b:6f:b6:72:02:fc:a4:20:60:f1:7b:16:d0:
10:dd:5e:93:3c:42:74:fd:cf:78:5c:c0:5f:cd:1c:41:d8:54:
d4:95:a1:c7:74:f1:eb:af:23:ee:0a:27:34:4c:7b:97:01:30:
ab:bd:a0:31
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQyNTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ1QzJDRDI3NTM1RjYx
QjUxOUQxNzM1OEY5QjZCQTc2MzlGNUM2RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHsGe+UnHrNxZbOGP7CN3M6dA48MqEflDzAelWDfirfaTTcdpz
+c9GV9RfcHZXucaSZ8XPrEn3bDo6t7RQ0erdM1svL/Dvi6bOPGtEUXDvWOOrMsIz
WiIM7aUImjjgUg3iDwXk8EFDcsI3r+rLMZvtRyqLyH40kF5uHvQgGjh0WFhgvqBC
Qi5Qvm9TlnG7NncPtS9xh7UZDlj/3KMM4F7akU8cyvEphOinXwm15BfjHvCQZrHD
YUBArSWfIoHJt8hvcyBf9ens2wElVhIzfLgddQmaKnISRV2QmwjxT2vazLXbSa6d
dkfFAtPbFG/cSX7/vp4NLzqlNmLf7rYEEiK/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU1cLNJ1NfYbUZ0XNY+ba6djn1xu4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMWNMTkoxTmZZYlVaMFhOWS1iYTZk
am4xeHU0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGpr8DAN
BgkqhkiG9w0BAQsFAAOCAQEAmM/g8MHu/j6nBkGJtsFrf1kWsqVBUf6ign9wRs3u
91cqRaNHRgHk9r7HNl03scK0EhInj7UxwfZPJ2XRuUDbPc+i8yJEd9IjqzcC61E0
c/LyRNuWPeZ6nAlhsveZlTJqT0OSPZwg0w14E4HibGLrXGP+vePpH+BM7eu69da3
B1viBgwP7wVxuHTKh+UIMomgUmDgEniyXZ74PGHXkPbieMmBXkmlYccMSe0jBXYG
ZHEfmH6n1ddhLQGFgxpzxrKHdJJVGnSVtZixaDKbb7ZyAvykIGDxexbQEN1ekzxC
dP3PeFzAX80cQdhU1JWhx3Tx668j7gonNEx7lwEwq72gMQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org