Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5hiaejhKKFyslTXXC4E_MooV2Ug.roa
File: 5hiaejhKKFyslTXXC4E_MooV2Ug.roa (raw, json)
Hash identifier: 13C+yrxsadIA8o7EmxWIzqRmfd1SM/a8daNpRR5FUAw=
Subject key identifier: E6:18:9A:7A:38:4A:28:5C:AC:95:35:D7:0B:81:3F:32:8A:15:D9:48
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE7
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5hiaejhKKFyslTXXC4E_MooV2Ug.roa
Signing time: Wed 01 Feb 2023 10:29:18 +0000
ROA not before: Wed 01 Feb 2023 10:29:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3303 (0xce7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E6189A7A384A285CAC9535D70B813F328A15D948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:29:5b:9e:a0:08:d8:ad:6d:b1:de:00:71:ac:
c0:81:a1:b0:ba:52:1b:f9:73:bd:37:38:e1:ae:85:
5c:13:0e:19:b8:3c:48:e0:7e:27:88:76:30:98:90:
93:e8:5b:07:82:23:59:f9:18:d0:46:98:9d:2c:f6:
1e:79:13:c9:b8:30:c9:41:24:59:f1:ba:6e:80:10:
2b:c5:e5:0e:f9:98:66:19:5c:ef:dc:84:20:dc:fd:
cd:f4:17:f5:2b:14:c7:d3:34:e1:74:bc:a7:6d:94:
f8:33:d1:78:97:32:2a:db:0d:5d:79:4c:e6:af:3d:
f1:bd:3f:55:82:21:64:b3:55:42:9f:32:86:1c:d2:
43:12:44:e4:a5:3f:f1:5a:30:d9:11:e6:11:6f:e6:
67:73:e5:a1:37:f4:3a:67:be:a6:a5:b7:18:37:4e:
56:f8:f5:cc:51:c6:8a:0a:e5:98:3d:4d:28:9f:86:
a2:cf:cd:0f:7f:2c:59:27:74:91:a7:cc:f7:41:75:
3d:1f:c1:95:08:a6:9b:07:73:a7:19:7a:e4:cd:3d:
bb:81:a8:da:d0:ea:56:b1:98:31:a4:bc:aa:b5:37:
01:ea:2e:eb:f8:7a:b5:67:60:d2:cb:85:d8:63:c2:
b4:bb:1c:0e:63:1d:a6:de:a0:4d:0e:70:a3:83:5a:
cd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:18:9A:7A:38:4A:28:5C:AC:95:35:D7:0B:81:3F:32:8A:15:D9:48
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5hiaejhKKFyslTXXC4E_MooV2Ug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
35:65:98:5f:c8:72:a9:37:2d:33:45:22:a5:aa:89:2e:7d:8e:
70:32:ce:2a:e1:60:a7:a8:00:bb:79:67:16:34:f8:61:1d:bd:
62:07:d8:b6:6f:94:b0:a8:ed:82:89:09:f6:e7:1f:21:91:06:
cb:9c:8c:1d:ce:49:86:d7:f6:ef:a7:a3:29:8f:16:46:45:07:
d0:9c:7f:f6:ac:4e:87:c6:63:fb:bd:9e:41:96:93:bd:11:73:
43:34:ef:f6:13:5a:38:50:05:d6:05:4a:70:63:db:b3:b4:c1:
22:d9:57:b8:65:e7:e1:08:10:d8:85:89:1a:41:3b:6c:f2:2e:
87:56:fc:7f:6a:4d:5b:af:d9:c5:7d:a9:c7:36:8c:51:ff:7d:
f0:a3:39:53:68:89:99:56:61:71:f1:2c:19:43:f9:85:df:81:
44:1b:d4:91:80:bc:25:87:f4:6a:25:69:0e:3e:00:04:3b:cc:
3f:c9:54:32:7c:a6:90:6f:0c:34:b7:72:3e:a6:b8:f4:5f:3d:
0b:6f:68:e3:c0:e9:78:17:6e:83:b2:12:08:23:34:bb:c7:bd:
a5:b4:c0:f4:65:3a:60:89:41:e3:5c:32:0a:46:48:6f:af:ec:
ee:04:22:da:0d:a7:a9:b5:81:05:36:30:7f:98:da:79:68:49:
9b:22:df:8a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzAyMDEx
MDI5MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU2MTg5QTdBMzg0QTI4
NUNBQzk1MzVENzBCODEzRjMyOEExNUQ5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+KVueoAjYrW2x3gBxrMCBobC6Uhv5c703OOGuhVwTDhm4PEjg
fieIdjCYkJPoWweCI1n5GNBGmJ0s9h55E8m4MMlBJFnxum6AECvF5Q75mGYZXO/c
hCDc/c30F/UrFMfTNOF0vKdtlPgz0XiXMirbDV15TOavPfG9P1WCIWSzVUKfMoYc
0kMSROSlP/FaMNkR5hFv5mdz5aE39Dpnvqaltxg3Tlb49cxRxooK5Zg9TSifhqLP
zQ9/LFkndJGnzPdBdT0fwZUIppsHc6cZeuTNPbuBqNrQ6laxmDGkvKq1NwHqLuv4
erVnYNLLhdhjwrS7HA5jHabeoE0OcKODWs3HAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5hiaejhKKFyslTXXC4E/MooV2UgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNWhpYWVqaEtLRnlzbFRYWEM0RV9N
b29WMlVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN
BgkqhkiG9w0BAQsFAAOCAQEANWWYX8hyqTctM0UipaqJLn2OcDLOKuFgp6gAu3ln
FjT4YR29YgfYtm+UsKjtgokJ9ucfIZEGy5yMHc5Jhtf276ejKY8WRkUH0Jx/9qxO
h8Zj+72eQZaTvRFzQzTv9hNaOFAF1gVKcGPbs7TBItlXuGXn4QgQ2IWJGkE7bPIu
h1b8f2pNW6/ZxX2pxzaMUf998KM5U2iJmVZhcfEsGUP5hd+BRBvUkYC8JYf0aiVp
Dj4ABDvMP8lUMnymkG8MNLdyPqa49F89C29o48DpeBdug7ISCCM0u8e9pbTA9GU6
YIlB41wyCkZIb6/s7gQi2g2nqbWBBTYwf5jaeWhJmyLfig==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org