Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GiRaPgejlaVZJpezplcL7FLqtMc.roa
File: GiRaPgejlaVZJpezplcL7FLqtMc.roa (raw, json)
Hash identifier: 4cetrA6ZfFHv7bb2tLhS6osPwaZ081mMXiOqZVElQ3g=
Subject key identifier: 1A:24:5A:3E:07:A3:95:A5:59:26:97:B3:A6:57:0B:EC:52:EA:B4:C7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1173
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GiRaPgejlaVZJpezplcL7FLqtMc.roa
Signing time: Fri 21 Apr 2023 07:58:16 +0000
ROA not before: Fri 21 Apr 2023 07:58:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 123.205.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4467 (0x1173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Apr 21 07:58:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A245A3E07A395A5592697B3A6570BEC52EAB4C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:12:06:ec:8a:93:2f:ad:f2:b6:97:0f:e7:bc:
ea:ce:f3:30:c5:9d:58:a8:16:0e:83:9e:64:92:11:
3a:c5:95:4f:89:3e:ed:3d:80:af:66:13:6d:4f:f0:
40:6a:c8:ee:f3:c5:f7:94:f3:93:8b:62:53:d6:57:
f8:a8:06:89:56:f9:c7:99:53:fd:92:90:62:12:56:
d7:48:ff:88:df:be:01:1e:b7:dd:ff:87:5c:cd:9b:
34:f3:79:10:24:93:4e:db:80:91:a0:d3:f3:76:6a:
33:60:e0:d5:0c:dc:22:92:02:e4:a7:c0:3d:4d:1c:
5d:d9:31:48:2f:3e:d6:d6:eb:ca:a3:a1:25:84:94:
db:63:e6:8c:3c:d9:5c:02:f8:8b:45:3d:cb:60:4a:
1f:e6:71:7a:7c:d8:48:b2:94:e2:09:8d:bc:3d:f3:
a0:d6:b8:fa:75:e7:cc:91:48:de:99:de:be:97:ca:
b0:16:cb:aa:fa:ed:10:30:96:0f:15:ce:77:8d:c5:
95:8e:91:10:b9:f2:e8:4e:f4:be:13:dc:2c:d0:f1:
a0:be:ac:33:e9:b9:18:18:6e:62:ed:53:9e:06:76:
56:dd:39:a8:d9:bb:e4:b7:d3:93:10:d8:2c:fd:74:
46:9d:c7:43:2a:04:cd:67:2b:ab:26:be:1b:60:9c:
e9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:24:5A:3E:07:A3:95:A5:59:26:97:B3:A6:57:0B:EC:52:EA:B4:C7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GiRaPgejlaVZJpezplcL7FLqtMc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.128.0/18
Signature Algorithm: sha256WithRSAEncryption
c8:1c:d1:2e:95:28:60:d9:8c:ad:12:9e:f6:80:b0:10:b3:eb:
53:ce:11:65:86:af:9b:18:48:91:f5:af:a5:9c:26:98:11:22:
19:4d:e2:f6:60:eb:cb:d3:c0:ff:5e:da:6d:33:3d:06:3e:17:
56:92:f2:23:64:15:dc:25:7f:1b:73:91:3d:34:c6:b5:c7:16:
fb:b0:29:81:fe:cf:fd:9e:74:df:91:bb:09:47:83:e7:71:3b:
59:8e:c2:11:de:f2:db:e7:16:38:5c:e9:fb:5f:7f:19:8a:64:
7c:37:30:73:15:de:47:f8:18:0e:87:6f:8d:26:a0:81:88:83:
e3:e0:39:1e:d5:1a:f4:2f:88:e0:4c:27:62:9c:db:33:2c:1b:
fe:4b:bb:f3:2d:a7:55:01:15:2e:0e:cd:80:84:96:b0:66:bf:
e6:73:9b:24:3e:2e:dc:0c:7b:69:bc:b1:8d:d6:c4:8f:8a:35:
91:44:5d:57:46:ba:3e:8a:9b:4a:bf:3b:ac:75:4a:5c:f5:5e:
47:00:d1:3d:03:05:fe:8a:1b:32:84:05:3b:31:67:f1:a3:15:
fe:86:99:65:fd:77:58:51:8f:2c:fa:d5:4b:14:30:86:f6:bd:
e6:22:ac:9d:92:93:8c:fa:d3:6c:72:53:4e:16:4a:b6:92:b0:
cf:71:f4:7a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA0MjEw
NzU4MTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBMjQ1QTNFMDdBMzk1
QTU1OTI2OTdCM0E2NTcwQkVDNTJFQUI0QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOEgbsipMvrfK2lw/nvOrO8zDFnVioFg6DnmSSETrFlU+JPu09
gK9mE21P8EBqyO7zxfeU85OLYlPWV/ioBolW+ceZU/2SkGISVtdI/4jfvgEet93/
h1zNmzTzeRAkk07bgJGg0/N2ajNg4NUM3CKSAuSnwD1NHF3ZMUgvPtbW68qjoSWE
lNtj5ow82VwC+ItFPctgSh/mcXp82EiylOIJjbw986DWuPp158yRSN6Z3r6XyrAW
y6r67RAwlg8VzneNxZWOkRC58uhO9L4T3CzQ8aC+rDPpuRgYbmLtU54GdlbdOajZ
u+S305MQ2Cz9dEadx0MqBM1nK6smvhtgnOkDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUGiRaPgejlaVZJpezplcL7FLqtMcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR2lSYVBnZWpsYVZaSnBlenBsY0w3
RkxxdE1jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnvNgDAN
BgkqhkiG9w0BAQsFAAOCAQEAyBzRLpUoYNmMrRKe9oCwELPrU84RZYavmxhIkfWv
pZwmmBEiGU3i9mDry9PA/17abTM9Bj4XVpLyI2QV3CV/G3ORPTTGtccW+7Apgf7P
/Z5035G7CUeD53E7WY7CEd7y2+cWOFzp+19/GYpkfDcwcxXeR/gYDodvjSaggYiD
4+A5HtUa9C+I4EwnYpzbMywb/ku78y2nVQEVLg7NgISWsGa/5nObJD4u3Ax7abyx
jdbEj4o1kURdV0a6PoqbSr87rHVKXPVeRwDRPQMF/oobMoQFOzFn8aMV/oaZZf13
WFGPLPrVSxQwhva95iKsnZKTjPrTbHJTThZKtpKwz3H0eg==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org