Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/I-3wVuV5XNIAjCUTou8DfMY6Yog.roa
File: I-3wVuV5XNIAjCUTou8DfMY6Yog.roa (raw, json)
Hash identifier: PMCXhHE1V566SSCkMrQ09qMcFUt/g91Sr3slDvg7pzQ=
Subject key identifier: 23:ED:F0:56:E5:79:5C:D2:00:8C:25:13:A2:EF:03:7C:C6:3A:62:88
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1056
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I-3wVuV5XNIAjCUTou8DfMY6Yog.roa
Signing time: Wed 01 Feb 2023 10:28:25 +0000
ROA not before: Wed 01 Feb 2023 10:28:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 113.196.152.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4182 (0x1056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=23EDF056E5795CD2008C2513A2EF037CC63A6288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:64:f6:a6:5e:fe:10:f4:b7:e8:45:10:78:f2:
9e:91:47:29:56:fd:65:79:e4:e3:35:86:44:9b:39:
fc:45:e5:f9:e1:de:03:a4:6b:58:5d:a6:d2:5a:38:
f9:c2:10:fe:bf:7b:5a:aa:10:5e:c0:d7:76:29:d4:
75:12:6f:a2:a9:68:5d:dd:1f:8e:ea:75:73:44:23:
f4:4f:ab:dd:e9:53:ce:b6:3f:4e:0d:af:24:87:07:
1a:32:63:03:29:35:76:a4:3a:83:4b:99:43:1f:d6:
7b:60:6e:43:e3:1a:5c:24:2c:c6:cd:fc:3b:ed:93:
fb:7b:da:3b:c7:68:25:af:5b:86:42:8a:4b:32:45:
21:10:bb:78:58:ba:aa:83:e2:18:98:c6:d2:51:f1:
a0:7b:31:6b:cb:5c:d8:53:bc:2b:cc:de:f1:c0:88:
0b:d6:6d:4b:e1:44:cc:2e:52:57:19:fe:5e:eb:02:
84:9e:c7:2f:7d:94:43:e3:e7:34:b8:64:e1:f6:49:
1d:2d:82:21:c0:b5:a4:32:02:93:b5:38:39:3d:45:
bc:ab:1a:81:96:5e:c8:61:e5:b5:5d:f2:2b:23:bb:
eb:66:60:ad:e2:79:48:a1:33:78:f6:28:06:61:b5:
12:7a:5c:22:97:ce:e6:6b:7a:5f:6e:a5:4e:b8:38:
32:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:ED:F0:56:E5:79:5C:D2:00:8C:25:13:A2:EF:03:7C:C6:3A:62:88
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I-3wVuV5XNIAjCUTou8DfMY6Yog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.152.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:9d:ee:eb:35:5d:e5:d7:12:4f:82:67:49:6c:ee:69:8b:d4:
72:d3:a6:ad:4b:20:c8:bb:4f:82:f0:bb:e4:c5:a2:8e:ad:48:
10:3f:b2:6a:0f:f3:94:06:52:10:fe:98:aa:9a:a7:93:3a:3b:
a6:58:f7:94:0b:67:7f:ad:cd:79:80:82:58:00:4c:6a:1e:de:
48:19:55:68:6b:d1:45:63:0c:ad:b5:21:f8:fe:e5:d3:8b:e9:
a1:de:db:52:7b:0d:3e:22:09:84:5a:a1:f4:6e:d3:81:ae:6e:
ff:bd:34:d4:6a:4b:45:de:78:48:38:aa:e4:7a:a8:fd:65:84:
7c:03:7a:45:93:51:b3:78:c6:14:d9:ba:20:f1:45:0c:7b:09:
56:13:85:93:c8:ab:b9:f4:c9:34:ad:0b:48:7e:d9:54:d5:a3:
e7:ca:ac:20:ec:c9:14:17:41:e8:14:aa:b0:3d:18:a0:d8:64:
b6:e3:b7:19:b9:10:1f:c2:8f:c5:3c:5e:77:c9:3c:7e:6c:70:
99:6f:8c:d7:d7:f4:44:57:cf:a7:96:5e:80:1b:9f:9b:01:87:
ce:a5:fe:f8:c6:b0:96:84:ff:d8:25:76:ea:13:f7:7e:e7:03:
32:7f:95:ab:a3:db:d7:88:73:7d:cf:9c:13:86:f3:97:a4:83:
e3:08:7f:d7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDIzRURGMDU2RTU3OTVD
RDIwMDhDMjUxM0EyRUYwMzdDQzYzQTYyODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1ZPamXv4Q9LfoRRB48p6RRylW/WV55OM1hkSbOfxF5fnh3gOk
a1hdptJaOPnCEP6/e1qqEF7A13Yp1HUSb6KpaF3dH47qdXNEI/RPq93pU862P04N
rySHBxoyYwMpNXakOoNLmUMf1ntgbkPjGlwkLMbN/Dvtk/t72jvHaCWvW4ZCiksy
RSEQu3hYuqqD4hiYxtJR8aB7MWvLXNhTvCvM3vHAiAvWbUvhRMwuUlcZ/l7rAoSe
xy99lEPj5zS4ZOH2SR0tgiHAtaQyApO1ODk9RbyrGoGWXshh5bVd8isju+tmYK3i
eUihM3j2KAZhtRJ6XCKXzuZrel9upU64ODJPAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUI+3wVuV5XNIAjCUTou8DfMY6YogwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSS0zd1Z1VjVYTklBakNVVG91OERm
TVk2WW9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN
BgkqhkiG9w0BAQsFAAOCAQEAbZ3u6zVd5dcST4JnSWzuaYvUctOmrUsgyLtPgvC7
5MWijq1IED+yag/zlAZSEP6Yqpqnkzo7plj3lAtnf63NeYCCWABMah7eSBlVaGvR
RWMMrbUh+P7l04vpod7bUnsNPiIJhFqh9G7Tga5u/7001GpLRd54SDiq5Hqo/WWE
fAN6RZNRs3jGFNm6IPFFDHsJVhOFk8irufTJNK0LSH7ZVNWj58qsIOzJFBdB6BSq
sD0YoNhktuO3GbkQH8KPxTxed8k8fmxwmW+M19f0RFfPp5ZegBufmwGHzqX++Maw
loT/2CV26hP3fucDMn+Vq6Pb14hzfc+cE4bzl6SD4wh/1w==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org