Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2TfDCL1XDxSj6Rbpyb94IOd6iC8.roa
File: 2TfDCL1XDxSj6Rbpyb94IOd6iC8.roa (raw, json)
Hash identifier: ZUz11tW/OYceLzo6beb6qc1IsSes1JNFpQNScGI3IRs=
Subject key identifier: D9:37:C3:08:BD:57:0F:14:A3:E9:16:E9:C9:BF:78:20:E7:7A:88:2F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1085
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2TfDCL1XDxSj6Rbpyb94IOd6iC8.roa
Signing time: Wed 01 Feb 2023 10:28:40 +0000
ROA not before: Wed 01 Feb 2023 10:28:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4229 (0x1085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D937C308BD570F14A3E916E9C9BF7820E77A882F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e9:e2:ee:06:4b:6c:ca:a0:ef:68:e8:b5:98:
4c:f5:81:00:40:f2:01:41:7d:bc:51:65:06:38:c3:
22:66:d9:b9:d4:8f:c2:f2:95:a4:64:15:d5:40:fb:
be:a7:6f:31:7c:39:79:ae:96:02:15:d0:1e:c3:1e:
26:9c:7c:15:46:71:38:26:bf:60:e3:15:a1:7c:4b:
eb:69:90:fe:9f:d2:b1:d7:33:d5:a5:bf:cd:37:f5:
4b:df:2f:6d:c2:c9:1e:b6:bf:be:e5:ee:91:b0:d7:
63:0b:5d:62:cf:f4:3a:d7:db:4d:5c:b0:1e:83:ff:
8a:b1:a5:f4:6f:b1:11:4a:81:2a:3d:22:ff:a1:4b:
16:9e:fd:d4:42:c0:32:8e:4b:b2:06:f8:e5:6b:18:
b3:f4:fe:ad:5e:e6:21:b2:3f:7f:2a:45:3c:12:6b:
af:80:4c:c2:0b:c3:1a:f9:60:54:9f:fd:f5:53:c9:
4c:19:cf:78:8e:88:69:22:23:71:4b:bf:7f:08:6d:
72:04:b9:8d:bf:e4:8e:64:ae:58:94:c4:a8:3f:a7:
33:3c:16:28:81:cd:71:24:57:c4:88:89:6a:b8:64:
9b:b0:57:5c:cb:65:ab:92:d2:cb:1b:e1:d1:3f:18:
f7:91:1e:95:67:1b:83:f5:7b:a7:cc:12:66:86:60:
66:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:37:C3:08:BD:57:0F:14:A3:E9:16:E9:C9:BF:78:20:E7:7A:88:2F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2TfDCL1XDxSj6Rbpyb94IOd6iC8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.181.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:a0:50:4c:30:6e:67:60:40:ea:33:cf:44:08:e9:9d:78:f9:
56:ea:cd:93:d5:47:1e:a3:82:85:68:cb:9f:5b:0b:2d:6c:c2:
55:38:37:5d:13:ff:a0:a4:51:80:40:28:6a:4a:5f:7c:ce:6b:
bd:78:2d:52:98:5d:76:f1:97:21:95:33:cf:58:a7:08:62:25:
f8:09:c7:b3:59:8d:dc:0f:0f:e0:ec:e2:4a:04:48:d9:db:cb:
4c:1b:04:34:78:06:4a:c0:fd:69:a9:10:9e:b0:da:12:0f:c2:
d3:2e:66:5f:c7:c6:19:33:b9:f2:d8:a5:12:78:bf:55:06:29:
b4:18:6b:6c:27:ba:c9:4d:6a:e4:73:a9:cb:77:cc:0d:15:cc:
04:b8:82:ac:68:c4:21:ab:23:69:87:f7:6c:3a:40:c8:c9:90:
4d:5c:ac:10:97:dc:17:1f:a2:ef:20:42:83:a5:b9:ff:42:08:
3b:24:5a:46:93:27:a3:ed:42:d4:9f:2a:43:a9:11:85:fe:2f:
3a:05:4e:01:d4:dc:90:7f:5b:42:67:db:f6:8d:11:48:f9:17:
19:22:16:9e:8c:25:a9:cc:9e:43:e3:47:52:54:bc:65:db:f7:
e1:0c:0d:74:56:80:6a:d4:38:4b:ee:aa:91:3b:a7:1d:a0:d1:
c6:3c:94:c6
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ5MzdDMzA4QkQ1NzBG
MTRBM0U5MTZFOUM5QkY3ODIwRTc3QTg4MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF6eLuBktsyqDvaOi1mEz1gQBA8gFBfbxRZQY4wyJm2bnUj8Ly
laRkFdVA+76nbzF8OXmulgIV0B7DHiacfBVGcTgmv2DjFaF8S+tpkP6f0rHXM9Wl
v8039UvfL23CyR62v77l7pGw12MLXWLP9DrX201csB6D/4qxpfRvsRFKgSo9Iv+h
Sxae/dRCwDKOS7IG+OVrGLP0/q1e5iGyP38qRTwSa6+ATMILwxr5YFSf/fVTyUwZ
z3iOiGkiI3FLv38IbXIEuY2/5I5krliUxKg/pzM8FiiBzXEkV8SIiWq4ZJuwV1zL
ZauS0ssb4dE/GPeRHpVnG4P1e6fMEmaGYGZ9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU2TfDCL1XDxSj6Rbpyb94IOd6iC8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMlRmRENMMVhEeFNqNlJicHliOTRJ
T2Q2aUM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptTAN
BgkqhkiG9w0BAQsFAAOCAQEAwaBQTDBuZ2BA6jPPRAjpnXj5VurNk9VHHqOChWjL
n1sLLWzCVTg3XRP/oKRRgEAoakpffM5rvXgtUphddvGXIZUzz1inCGIl+AnHs1mN
3A8P4OziSgRI2dvLTBsENHgGSsD9aakQnrDaEg/C0y5mX8fGGTO58tilEni/VQYp
tBhrbCe6yU1q5HOpy3fMDRXMBLiCrGjEIasjaYf3bDpAyMmQTVysEJfcFx+i7yBC
g6W5/0IIOyRaRpMno+1C1J8qQ6kRhf4vOgVOAdTckH9bQmfb9o0RSPkXGSIWnowl
qcyeQ+NHUlS8Zdv34QwNdFaAatQ4S+6qkTunHaDRxjyUxg==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org