Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5M7aZjviVps_S3Tb1mlN4-xYsSw.roa
File: 5M7aZjviVps_S3Tb1mlN4-xYsSw.roa (raw, json)
Hash identifier: +AN89BOch6a9S1pXi7pduSEdcCAoytBl/2ccJ6CJCKI=
Subject key identifier: E4:CE:DA:66:3B:E2:56:9B:3F:4B:74:DB:D6:69:4D:E3:EC:58:B1:2C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5M7aZjviVps_S3Tb1mlN4-xYsSw.roa
Signing time: Thu 15 Sep 2022 02:43:02 +0000
ROA not before: Thu 15 Sep 2022 02:43:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E4CEDA663BE2569B3F4B74DBD6694DE3EC58B12C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:66:1b:1b:e6:50:13:22:b4:5b:49:b9:4f:48:
fd:5a:1c:71:12:06:07:ea:0b:66:1b:1c:ac:cc:a7:
f2:a7:4c:bf:e0:69:2d:32:68:26:aa:aa:7d:72:65:
f2:34:6b:9c:16:40:ce:e4:a2:fb:31:06:50:5a:55:
bf:b1:0e:df:6d:75:63:04:5f:10:f6:7c:3d:d4:df:
22:b3:b6:80:11:de:55:ec:58:2a:b3:cc:7e:3b:09:
04:d7:9e:7d:fb:6f:31:a9:e6:4b:59:b7:1a:0f:c4:
f0:e2:6f:b9:59:f6:a2:64:71:a8:c9:0a:31:3b:a3:
7c:ee:f0:27:80:10:b6:3b:40:bf:8d:d0:fd:f0:16:
5b:ad:d9:9f:15:2d:93:77:eb:0c:8e:d9:54:d8:26:
b3:05:06:dc:68:bb:f7:79:5b:9c:10:a2:a5:5e:27:
3a:49:d5:9b:e0:cc:e0:aa:42:e1:49:27:04:b2:0b:
96:52:a1:72:fb:ed:31:5d:08:28:fa:cb:c6:34:cd:
79:de:92:52:a6:e3:df:64:2c:ff:44:d9:66:fd:b3:
19:5b:0b:d2:95:46:42:19:a3:4d:8d:e4:ba:0d:42:
8d:f6:6d:f3:dd:7e:2c:2d:23:ce:70:d6:ea:6b:34:
05:da:72:92:b7:30:08:74:84:21:a4:d8:21:a5:84:
11:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:CE:DA:66:3B:E2:56:9B:3F:4B:74:DB:D6:69:4D:E3:EC:58:B1:2C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5M7aZjviVps_S3Tb1mlN4-xYsSw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
22:5b:f6:3f:ac:c2:dc:ee:15:ba:d5:fb:f0:2e:40:82:57:e2:
67:b2:3f:dc:c9:93:3a:08:e0:ac:83:ff:ff:20:81:6c:78:d0:
97:83:58:03:5e:80:7d:e6:db:88:5c:1f:63:5d:13:8b:8c:76:
cc:39:63:68:26:24:42:b0:7c:12:6a:20:eb:45:c6:9b:78:b5:
11:76:bf:71:6d:6e:5d:ae:f3:05:4b:18:82:00:48:a4:ca:20:
57:fa:b5:c2:77:69:b7:ec:12:35:8d:d8:14:27:8e:97:71:b1:
aa:35:41:ad:86:1e:5c:13:4b:c6:ae:b3:0c:09:fb:34:36:e2:
d0:e0:cf:ec:26:0a:13:de:e5:7a:bc:df:cc:ef:e6:06:c9:26:
10:5b:cf:b6:bd:d3:fd:62:a5:52:75:76:9d:54:bd:c6:1f:f7:
cd:4a:da:d1:0d:f7:3a:f7:53:c1:84:13:75:c6:03:92:d1:d3:
e3:b0:30:6b:10:70:a8:0c:12:e1:f4:85:2b:f9:6f:b1:df:74:
3f:61:c7:04:a8:8d:75:82:61:0a:8f:91:e1:c6:a0:cd:cc:89:
de:3f:5a:90:09:dc:8d:05:dc:77:49:64:4f:9e:32:69:49:53:
36:ae:1e:3f:71:23:a1:9c:1f:18:c6:3c:da:b1:2f:bf:04:af:
c2:25:01:ae
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU0Q0VEQTY2M0JFMjU2
OUIzRjRCNzREQkQ2Njk0REUzRUM1OEIxMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoZhsb5lATIrRbSblPSP1aHHESBgfqC2YbHKzMp/KnTL/gaS0y
aCaqqn1yZfI0a5wWQM7kovsxBlBaVb+xDt9tdWMEXxD2fD3U3yKztoAR3lXsWCqz
zH47CQTXnn37bzGp5ktZtxoPxPDib7lZ9qJkcajJCjE7o3zu8CeAELY7QL+N0P3w
Flut2Z8VLZN36wyO2VTYJrMFBtxou/d5W5wQoqVeJzpJ1ZvgzOCqQuFJJwSyC5ZS
oXL77TFdCCj6y8Y0zXneklKm499kLP9E2Wb9sxlbC9KVRkIZo02N5LoNQo32bfPd
fiwtI85w1uprNAXacpK3MAh0hCGk2CGlhBHNAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU5M7aZjviVps/S3Tb1mlN4+xYsSwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNU03YVpqdmlWcHNfUzNUYjFtbE40
LXhZc1N3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G
CSqGSIb3DQEBCwUAA4IBAQAiW/Y/rMLc7hW61fvwLkCCV+Jnsj/cyZM6COCsg///
IIFseNCXg1gDXoB95tuIXB9jXROLjHbMOWNoJiRCsHwSaiDrRcabeLURdr9xbW5d
rvMFSxiCAEikyiBX+rXCd2m37BI1jdgUJ46XcbGqNUGthh5cE0vGrrMMCfs0NuLQ
4M/sJgoT3uV6vN/M7+YGySYQW8+2vdP9YqVSdXadVL3GH/fNStrRDfc691PBhBN1
xgOS0dPjsDBrEHCoDBLh9IUr+W+x33Q/YccEqI11gmEKj5HhxqDNzIneP1qQCdyN
Bdx3SWRPnjJpSVM2rh4/cSOhnB8YxjzasS+/BK/CJQGu
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org