Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HKvHKuUK_NAiBfcBuyKqfJOuLWA.roa
File: HKvHKuUK_NAiBfcBuyKqfJOuLWA.roa (raw, json)
Hash identifier: 94apLBIRfkWJTnu60nav4M5Is0qsjouFWv36eR4WN1Q=
Subject key identifier: 1C:AB:C7:2A:E5:0A:FC:D0:22:05:F7:01:BB:22:AA:7C:93:AE:2D:60
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HKvHKuUK_NAiBfcBuyKqfJOuLWA.roa
Signing time: Thu 15 Sep 2022 02:43:01 +0000
ROA not before: Thu 15 Sep 2022 02:43:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1CABC72AE50AFCD02205F701BB22AA7C93AE2D60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4c:b0:d2:07:60:d2:8d:e9:9a:30:a2:91:3f:
e9:bc:77:ba:72:28:cf:a2:a7:24:d6:6f:ef:de:9a:
8d:5c:95:c0:a2:db:79:0f:15:33:3e:2f:b4:99:af:
5a:91:b6:14:4d:0c:2d:b9:ba:2b:fe:bb:40:f6:81:
36:1f:14:e8:07:a5:5e:cb:1e:83:6d:bf:7e:53:86:
e3:23:6b:a1:03:de:5d:25:5c:9c:f2:a5:53:3f:bf:
ff:49:7f:d4:cb:f9:e6:f2:53:84:e7:67:1c:59:12:
16:6f:76:c2:f9:ac:89:94:0c:ed:e7:9b:8a:61:19:
90:13:9d:74:df:19:d3:d2:02:96:3c:60:b7:3e:48:
24:f9:45:6a:56:df:0c:90:c9:0f:1e:7f:38:a9:b6:
f0:9c:4f:de:13:8a:94:0e:b5:0a:ba:26:5b:a4:d1:
04:50:27:4d:41:76:0c:ce:17:e2:01:dc:e6:f8:dc:
3d:0e:68:21:a5:e4:bd:78:93:bd:84:46:92:df:b1:
70:40:21:c0:c9:a4:f9:35:5b:fe:e8:57:bc:2d:06:
35:f9:60:2d:83:a2:e8:cf:f7:e8:72:73:e3:a4:cc:
02:86:2e:95:2f:eb:e1:6e:70:df:f9:75:3f:d2:69:
71:d4:da:bb:91:90:74:c3:ce:f6:c4:54:8d:1b:f9:
e6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AB:C7:2A:E5:0A:FC:D0:22:05:F7:01:BB:22:AA:7C:93:AE:2D:60
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HKvHKuUK_NAiBfcBuyKqfJOuLWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:af:18:97:3c:73:2b:62:5d:b7:25:65:e8:b9:79:f6:04:5d:
93:16:43:75:04:f4:da:2b:38:3e:72:58:d1:db:a3:be:60:fb:
86:a3:f7:22:8d:80:fb:72:a2:e0:b2:ee:25:71:5e:15:3f:ce:
e5:48:b1:8b:d3:31:6f:2e:a7:ac:ef:a3:29:1a:93:6a:7a:0d:
20:f7:7b:72:0e:fb:7d:fd:5f:d8:36:eb:14:28:ad:7c:e4:55:
f0:2f:08:f2:b1:91:ed:37:4c:35:c2:0d:28:ef:13:b5:a5:45:
85:8d:6e:ed:12:60:1b:e8:69:c3:47:1e:44:02:45:b7:a4:b7:
a3:78:ef:cd:7a:fa:9a:90:b3:90:f5:f8:03:44:83:c7:8f:24:
ee:f1:2f:58:73:0b:cf:88:b6:26:c7:70:41:77:6b:fc:f8:8b:
1b:00:10:38:34:9f:2e:2f:1f:63:29:39:c8:e1:ea:e1:5d:e7:
af:07:4f:76:f4:47:44:db:13:ed:a0:57:15:ef:68:28:39:8c:
aa:79:8b:12:7e:fb:58:d6:eb:c9:ab:f9:4b:74:90:a9:1f:e9:
d8:5a:a2:75:a5:4c:1c:28:fa:34:6c:62:a7:2c:63:43:76:0d:
07:73:31:a6:22:44:69:e4:5b:67:76:4b:79:71:f8:85:56:fc:
23:ce:fa:9b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMjA5MTUw
MjQzMDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFDQUJDNzJBRTUwQUZD
RDAyMjA1RjcwMUJCMjJBQTdDOTNBRTJENjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjTLDSB2DSjemaMKKRP+m8d7pyKM+ipyTWb+/emo1clcCi23kP
FTM+L7SZr1qRthRNDC25uiv+u0D2gTYfFOgHpV7LHoNtv35ThuMja6ED3l0lXJzy
pVM/v/9Jf9TL+ebyU4TnZxxZEhZvdsL5rImUDO3nm4phGZATnXTfGdPSApY8YLc+
SCT5RWpW3wyQyQ8efziptvCcT94TipQOtQq6Jluk0QRQJ01BdgzOF+IB3Ob43D0O
aCGl5L14k72ERpLfsXBAIcDJpPk1W/7oV7wtBjX5YC2DoujP9+hyc+OkzAKGLpUv
6+FucN/5dT/SaXHU2ruRkHTDzvbEVI0b+eaXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUHKvHKuUK/NAiBfcBuyKqfJOuLWAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSEt2SEt1VUtfTkFpQmZjQnV5S3Fm
Sk91TFdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN
BgkqhkiG9w0BAQsFAAOCAQEALq8YlzxzK2JdtyVl6Ll59gRdkxZDdQT02is4PnJY
0dujvmD7hqP3Io2A+3Ki4LLuJXFeFT/O5Uixi9Mxby6nrO+jKRqTanoNIPd7cg77
ff1f2DbrFCitfORV8C8I8rGR7TdMNcINKO8TtaVFhY1u7RJgG+hpw0ceRAJFt6S3
o3jvzXr6mpCzkPX4A0SDx48k7vEvWHMLz4i2JsdwQXdr/PiLGwAQODSfLi8fYyk5
yOHq4V3nrwdPdvRHRNsT7aBXFe9oKDmMqnmLEn77WNbryav5S3SQqR/p2FqidaVM
HCj6NGxipyxjQ3YNB3MxpiJEaeRbZ3ZLeXH4hVb8I876mw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org