Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/49EPxnleauN9G4rtMa3hmy2kUao.roa
File: 49EPxnleauN9G4rtMa3hmy2kUao.roa (raw, json)
Hash identifier: ToJwid46ChVHxSsvzSJTGvok1eEOdPbxzLc5WorCQwc=
Subject key identifier: E3:D1:0F:C6:79:5E:6A:E3:7D:1B:8A:ED:31:AD:E1:9B:2D:A4:51:AA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/49EPxnleauN9G4rtMa3hmy2kUao.roa
Signing time: Thu 15 Sep 2022 02:43:02 +0000
ROA not before: Thu 15 Sep 2022 02:43:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E3D10FC6795E6AE37D1B8AED31ADE19B2DA451AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:68:4d:fd:4a:ef:6b:8b:f9:32:d5:f9:3e:9f:
9b:9f:ba:74:ec:74:a7:18:5e:38:e3:6b:80:16:fa:
ce:46:76:94:bb:9a:cf:38:3a:a3:fa:fd:22:f2:e9:
eb:a4:c0:e7:6b:81:d0:4c:a6:1f:0a:6f:ee:70:0c:
58:c7:73:7c:87:42:fc:bb:bc:4a:7d:5f:17:76:73:
e6:4d:f8:b1:bd:a2:18:49:8e:d4:98:30:81:c4:82:
64:d8:22:b3:f4:8b:40:bf:bb:f3:02:81:36:07:9c:
b6:d4:4a:ae:25:ec:38:a1:14:1d:57:ce:8b:ae:c3:
da:06:77:93:5f:79:cb:37:55:5a:44:93:24:50:0c:
19:fb:33:8f:65:f4:9d:36:73:ab:f2:45:52:6e:b0:
ca:d8:f9:3f:65:c4:fa:25:bc:d9:9d:c4:2e:83:ed:
5e:88:5f:e6:64:3c:55:57:60:cf:44:fe:99:b8:2a:
19:44:f1:26:9e:b5:57:72:83:7d:f2:e2:22:61:96:
e5:a0:27:71:d7:ca:5c:da:14:95:48:e6:36:5c:ce:
a8:7d:29:1f:b6:15:3c:2e:e4:cc:a1:18:7f:bb:7f:
7d:12:9d:61:5e:2c:e0:27:21:f8:bb:ac:3c:a3:d4:
16:ab:a7:b3:1f:19:46:f5:27:ad:a4:75:57:0d:31:
42:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D1:0F:C6:79:5E:6A:E3:7D:1B:8A:ED:31:AD:E1:9B:2D:A4:51:AA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/49EPxnleauN9G4rtMa3hmy2kUao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
75:cb:97:b7:53:65:ec:ce:e9:ef:a4:dc:47:1e:a8:3b:e3:54:
29:81:cb:60:e2:0a:6d:21:3f:f4:88:36:9e:6a:88:4d:4c:66:
76:c3:df:ee:fc:55:54:3c:22:1e:aa:c6:ee:0c:65:d4:10:31:
fb:51:01:92:de:d4:cb:f9:d8:a8:5d:bf:8d:61:21:7c:ed:57:
0c:1e:e6:34:3c:31:74:47:55:7f:2a:90:23:98:6e:0f:c4:fa:
c1:0d:90:f7:9f:78:71:29:de:10:3e:e9:e4:c6:fc:09:ff:4f:
bd:c1:8b:af:4d:eb:ce:e1:b3:bb:f1:3c:24:8d:c0:35:3b:0d:
6c:7e:bc:5d:9b:eb:5b:12:cd:f9:98:6e:41:64:d4:ec:69:19:
04:bb:4e:8a:25:cb:8d:b6:fc:5f:15:66:83:13:9b:4d:54:c1:
8d:d4:41:ca:8d:27:02:b2:01:1a:67:87:18:af:66:63:80:15:
5a:d9:88:d6:39:66:1c:2e:d7:34:b8:43:32:de:59:a2:fa:c8:
79:48:9a:b8:a2:0b:4d:c6:19:8b:36:82:6d:fd:9e:44:67:c3:
69:f2:c7:90:86:ad:82:7e:0f:40:3e:5b:be:06:54:cb:ac:e0:
37:ec:5c:db:c9:2c:8f:f3:74:27:e4:39:cf:83:54:3e:78:fd:
36:0b:a0:62
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUzRDEwRkM2Nzk1RTZB
RTM3RDFCOEFFRDMxQURFMTlCMkRBNDUxQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcaE39Su9ri/ky1fk+n5ufunTsdKcYXjjja4AW+s5GdpS7ms84
OqP6/SLy6eukwOdrgdBMph8Kb+5wDFjHc3yHQvy7vEp9Xxd2c+ZN+LG9ohhJjtSY
MIHEgmTYIrP0i0C/u/MCgTYHnLbUSq4l7DihFB1Xzouuw9oGd5Nfecs3VVpEkyRQ
DBn7M49l9J02c6vyRVJusMrY+T9lxPolvNmdxC6D7V6IX+ZkPFVXYM9E/pm4KhlE
8SaetVdyg33y4iJhluWgJ3HXylzaFJVI5jZczqh9KR+2FTwu5MyhGH+7f30SnWFe
LOAnIfi7rDyj1Barp7MfGUb1J62kdVcNMULjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU49EPxnleauN9G4rtMa3hmy2kUaowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNDlFUHhubGVhdU45RzRydE1hM2ht
eTJrVWFvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9NKgDAN
BgkqhkiG9w0BAQsFAAOCAQEAdcuXt1Nl7M7p76TcRx6oO+NUKYHLYOIKbSE/9Ig2
nmqITUxmdsPf7vxVVDwiHqrG7gxl1BAx+1EBkt7Uy/nYqF2/jWEhfO1XDB7mNDwx
dEdVfyqQI5huD8T6wQ2Q9594cSneED7p5Mb8Cf9PvcGLr03rzuGzu/E8JI3ANTsN
bH68XZvrWxLN+ZhuQWTU7GkZBLtOiiXLjbb8XxVmgxObTVTBjdRByo0nArIBGmeH
GK9mY4AVWtmI1jlmHC7XNLhDMt5ZovrIeUiauKILTcYZizaCbf2eRGfDafLHkIat
gn4PQD5bvgZUy6zgN+xc28ksj/N0J+Q5z4NUPnj9NgugYg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org