Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4IfTtLGy8FzJLScNyvBNTv7KKas.roa
File: 4IfTtLGy8FzJLScNyvBNTv7KKas.roa (raw, json)
Hash identifier: RGieISEtsd+ldKQNRfBLnO8wEhlLxFjNiyCZ+31o7rI=
Subject key identifier: E0:87:D3:B4:B1:B2:F0:5C:C9:2D:27:0D:CA:F0:4D:4E:FE:CA:29:AB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4IfTtLGy8FzJLScNyvBNTv7KKas.roa
Signing time: Thu 15 Sep 2022 02:43:13 +0000
ROA not before: Thu 15 Sep 2022 02:43:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.205.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E087D3B4B1B2F05CC92D270DCAF04D4EFECA29AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f4:75:74:14:d1:54:d0:cf:44:ac:34:67:06:
d3:06:e6:c6:bb:ee:9b:4b:1c:fe:5e:5f:76:ee:c5:
86:90:2c:27:ba:04:3e:75:b2:62:a1:41:37:4d:25:
66:2e:bb:fc:51:89:03:9f:d3:54:2c:25:63:5d:31:
d9:a4:9d:42:0d:68:bf:73:93:38:77:63:a8:cf:bf:
86:34:f3:0a:07:95:db:85:63:d6:82:bc:18:5b:3f:
19:bf:6d:fd:61:a7:4b:4d:5b:4b:8d:4f:a5:16:73:
ba:ff:17:1d:42:7c:7b:ee:0a:cb:aa:a3:67:5f:07:
d2:39:fc:f9:93:0a:b9:2e:e9:99:1c:13:cc:ac:ca:
94:f3:ea:fd:e3:f9:da:bd:4d:12:95:07:e5:d6:f6:
de:34:a0:11:e9:0b:49:ab:f1:f3:88:bc:f8:b4:08:
91:d3:43:64:33:a1:84:ca:a8:70:75:e0:db:1b:0b:
dc:79:9d:0b:14:26:ba:71:17:d7:17:ff:8c:aa:c7:
dc:9c:49:3b:57:c2:d0:7d:34:a9:d9:6f:fd:8e:d0:
8a:c1:97:66:64:e3:8c:5f:b5:66:ff:e6:51:aa:26:
1c:19:8c:c0:61:49:48:42:71:38:4c:d8:76:1a:b6:
6a:c2:3e:37:fd:bf:1d:ef:b1:45:16:c3:87:7c:15:
78:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:87:D3:B4:B1:B2:F0:5C:C9:2D:27:0D:CA:F0:4D:4E:FE:CA:29:AB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4IfTtLGy8FzJLScNyvBNTv7KKas.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b7:72:d1:c9:5a:39:fe:4c:b1:53:f2:2d:ef:a9:4f:87:26:f5:
ef:53:c7:1d:6c:67:4c:5b:ea:b8:5e:74:0a:b3:59:a7:5f:10:
8c:5f:d4:0a:57:0c:75:1f:86:f3:12:78:36:14:79:bf:45:56:
22:7d:4d:eb:2d:8e:ae:24:1a:ec:ae:5f:ae:63:aa:3b:39:22:
2b:78:1b:5a:4f:66:39:bb:98:c4:3a:a4:bc:9e:74:de:bc:a8:
e8:3e:d8:01:3c:63:e0:ed:d4:e8:e1:20:ec:7f:13:3a:05:a7:
ea:57:7c:8a:e1:b2:ac:ed:d2:69:f4:29:21:b7:23:4b:6b:4e:
9d:e1:60:df:98:51:73:ab:fa:6f:dc:b7:57:cb:d0:4f:9d:07:
89:30:c4:3d:97:f0:40:36:d0:dd:cc:c0:66:89:60:ab:7b:79:
a5:88:96:a2:a1:bd:2a:05:5c:7d:d4:e0:d6:18:db:59:33:59:
27:b9:c2:16:d1:95:58:29:52:75:bc:c1:4a:2a:71:e6:5a:f0:
bd:96:01:52:f4:59:96:19:1b:46:f4:59:d1:10:bd:83:cf:0e:
59:33:2c:23:1a:d7:34:9d:98:ed:af:97:d4:6d:a2:84:72:98:
a0:38:7d:a0:84:e0:92:a2:ff:8f:f3:23:de:c0:ff:40:84:ef:
c0:23:a4:6d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUwODdEM0I0QjFCMkYw
NUNDOTJEMjcwRENBRjA0RDRFRkVDQTI5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDm9HV0FNFU0M9ErDRnBtMG5sa77ptLHP5eX3buxYaQLCe6BD51
smKhQTdNJWYuu/xRiQOf01QsJWNdMdmknUINaL9zkzh3Y6jPv4Y08woHlduFY9aC
vBhbPxm/bf1hp0tNW0uNT6UWc7r/Fx1CfHvuCsuqo2dfB9I5/PmTCrku6ZkcE8ys
ypTz6v3j+dq9TRKVB+XW9t40oBHpC0mr8fOIvPi0CJHTQ2QzoYTKqHB14NsbC9x5
nQsUJrpxF9cX/4yqx9ycSTtXwtB9NKnZb/2O0IrBl2Zk44xftWb/5lGqJhwZjMBh
SUhCcThM2HYatmrCPjf9vx3vsUUWw4d8FXi/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU4IfTtLGy8FzJLScNyvBNTv7KKaswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNElmVHRMR3k4RnpKTFNjTnl2Qk5U
djdLS2FzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3vNgDAN
BgkqhkiG9w0BAQsFAAOCAQEAt3LRyVo5/kyxU/It76lPhyb171PHHWxnTFvquF50
CrNZp18QjF/UClcMdR+G8xJ4NhR5v0VWIn1N6y2OriQa7K5frmOqOzkiK3gbWk9m
ObuYxDqkvJ503ryo6D7YATxj4O3U6OEg7H8TOgWn6ld8iuGyrO3SafQpIbcjS2tO
neFg35hRc6v6b9y3V8vQT50HiTDEPZfwQDbQ3czAZolgq3t5pYiWoqG9KgVcfdTg
1hjbWTNZJ7nCFtGVWClSdbzBSipx5lrwvZYBUvRZlhkbRvRZ0RC9g88OWTMsIxrX
NJ2Y7a+X1G2ihHKYoDh9oITgkqL/j/Mj3sD/QITvwCOkbQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org