Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BEMUPIeTCmqafSVI6wBhEc4sHbY.roa
File: BEMUPIeTCmqafSVI6wBhEc4sHbY.roa (raw, json)
Hash identifier: q7YBqTaXtz1hQZSU+/clBkHwP1bfV7/pAMDn0eeSrCg=
Subject key identifier: 04:43:14:3C:87:93:0A:6A:9A:7D:25:48:EB:00:61:11:CE:2C:1D:B6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1046
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BEMUPIeTCmqafSVI6wBhEc4sHbY.roa
Signing time: Wed 01 Feb 2023 10:28:21 +0000
ROA not before: Wed 01 Feb 2023 10:28:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4166 (0x1046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0443143C87930A6A9A7D2548EB006111CE2C1DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1a:5f:a7:e3:3f:27:56:f9:76:43:15:56:2f:
8f:dd:8b:23:a7:e6:1f:54:f6:82:0e:9c:9c:ef:ad:
f3:39:d5:99:70:3e:54:9a:70:20:b8:3a:a4:2f:b4:
d2:a0:de:cf:00:d6:c3:a7:23:46:20:dd:fe:b1:b1:
05:b3:57:ec:34:d2:e0:a5:ec:56:92:85:66:c2:a1:
f1:8c:39:85:06:11:cf:82:2b:ff:e9:6c:ab:08:5a:
9d:8c:e0:d8:d5:3e:27:e8:83:cd:19:8e:d8:20:da:
04:b7:6e:7a:31:ba:1f:ec:df:e4:e1:d6:ac:09:5a:
7e:3e:0e:ff:80:bf:4b:aa:37:6e:c1:f1:f4:d7:6d:
3c:03:88:2a:e2:02:e2:4d:b2:fa:48:b1:f5:47:95:
58:46:b2:da:c8:d6:db:65:38:2c:1f:e6:61:10:71:
68:3f:35:7c:7a:52:16:ef:84:eb:2c:e0:02:a6:7b:
c6:63:2b:66:7b:2e:d1:fd:60:19:80:9a:fb:b4:f3:
b1:58:56:02:79:a4:3b:4f:87:36:6f:32:04:c2:ec:
cb:16:e4:c6:7d:df:57:1e:b6:e6:ca:91:85:b4:ab:
45:1b:44:9d:f4:5b:a4:8a:63:87:1c:61:48:b1:7c:
b6:d1:71:54:c0:a4:1c:b4:b5:23:ee:38:c6:5d:95:
0a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:43:14:3C:87:93:0A:6A:9A:7D:25:48:EB:00:61:11:CE:2C:1D:B6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BEMUPIeTCmqafSVI6wBhEc4sHbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
be:e0:c5:ed:bc:08:91:76:78:19:5b:33:5b:b7:f2:da:a9:5e:
49:62:cc:be:ae:a9:dc:7d:ba:46:55:91:6b:4e:b3:3b:b0:da:
99:58:f1:b0:f0:eb:b2:04:8b:08:5f:43:39:46:61:4b:41:d0:
31:1b:00:27:02:72:8b:62:82:7d:68:30:d5:03:6b:94:b0:0a:
52:c7:68:d4:66:b5:07:07:0f:8e:38:ef:60:b3:18:22:fd:8d:
2f:83:3b:41:7b:b1:8d:d1:a0:91:93:5d:c8:46:79:17:3c:7f:
00:3d:74:6e:ab:6d:4b:ce:1f:01:fd:a0:39:11:fd:09:57:6c:
d8:a0:8f:37:6e:d0:91:9c:88:9d:9b:d2:5f:75:3c:72:1d:ac:
23:ee:a9:1a:5b:82:04:9c:b7:23:56:cb:7f:33:5b:37:25:ad:
1a:df:2c:1d:27:98:b4:dd:c3:52:29:d3:c7:81:4f:14:36:7c:
6c:09:0e:36:91:f7:e2:5a:8a:79:6e:ea:65:08:fc:83:dc:0b:
26:c7:8e:ea:d4:24:59:1d:2c:ae:b7:5b:b1:17:ce:54:e2:6b:
1a:ea:bd:63:a1:3f:c7:da:4a:61:3a:8e:6b:e9:f3:d1:11:12:
bf:77:b5:40:7d:55:17:36:aa:ff:ba:c2:19:25:b9:b2:50:db:
2b:a5:91:b4
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDA0NDMxNDNDODc5MzBB
NkE5QTdEMjU0OEVCMDA2MTExQ0UyQzFEQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLGl+n4z8nVvl2QxVWL4/diyOn5h9U9oIOnJzvrfM51ZlwPlSa
cCC4OqQvtNKg3s8A1sOnI0Yg3f6xsQWzV+w00uCl7FaShWbCofGMOYUGEc+CK//p
bKsIWp2M4NjVPifog80Zjtgg2gS3bnoxuh/s3+Th1qwJWn4+Dv+Av0uqN27B8fTX
bTwDiCriAuJNsvpIsfVHlVhGstrI1ttlOCwf5mEQcWg/NXx6UhbvhOss4AKme8Zj
K2Z7LtH9YBmAmvu087FYVgJ5pDtPhzZvMgTC7MsW5MZ931cetubKkYW0q0UbRJ30
W6SKY4ccYUixfLbRcVTApBy0tSPuOMZdlQqlAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUBEMUPIeTCmqafSVI6wBhEc4sHbYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQkVNVVBJZVRDbXFhZlNWSTZ3QmhF
YzRzSGJZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzlMA0G
CSqGSIb3DQEBCwUAA4IBAQC+4MXtvAiRdngZWzNbt/LaqV5JYsy+rqncfbpGVZFr
TrM7sNqZWPGw8OuyBIsIX0M5RmFLQdAxGwAnAnKLYoJ9aDDVA2uUsApSx2jUZrUH
Bw+OOO9gsxgi/Y0vgztBe7GN0aCRk13IRnkXPH8APXRuq21Lzh8B/aA5Ef0JV2zY
oI83btCRnIidm9JfdTxyHawj7qkaW4IEnLcjVst/M1s3Ja0a3ywdJ5i03cNSKdPH
gU8UNnxsCQ42kffiWop5buplCPyD3Asmx47q1CRZHSyut1uxF85U4msa6r1joT/H
2kphOo5r6fPRERK/d7VAfVUXNqr/usIZJbmyUNsrpZG0
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org