Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KA8ZnDro_aj6MgIV5uOX_V5GITw.roa
File: KA8ZnDro_aj6MgIV5uOX_V5GITw.roa (raw, json)
Hash identifier: mzFVo8KWocYVtfpQee7yCKqJg/I50cCMe4B3zx01Tw0=
Subject key identifier: 28:0F:19:9C:3A:E8:FD:A8:FA:32:02:15:E6:E3:97:FD:5E:46:21:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KA8ZnDro_aj6MgIV5uOX_V5GITw.roa
Signing time: Thu 15 Sep 2022 02:43:04 +0000
ROA not before: Thu 15 Sep 2022 02:43:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 122.147.160.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=280F199C3AE8FDA8FA320215E6E397FD5E46213C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:46:86:49:3f:43:d6:db:7a:dc:10:d5:13:4d:
3e:d4:82:ef:d5:d4:79:e0:96:ee:32:54:55:ce:59:
a0:52:c7:17:25:08:15:1c:6b:21:de:f7:82:c2:4b:
1e:17:20:8f:37:77:54:7a:9e:12:19:00:d8:98:98:
77:e7:4b:ab:91:09:4e:db:c6:44:96:7e:14:8b:c2:
d0:f0:d7:52:d5:98:8f:9e:c6:d0:c2:c1:65:b5:5e:
fc:9a:08:ac:9b:8b:1c:37:49:af:22:24:05:66:0c:
10:7f:ea:a5:1e:1d:b6:a9:47:7e:70:81:4e:88:7c:
d0:29:a5:fe:99:d1:6b:6a:20:1e:9c:42:80:1b:be:
0f:4f:2b:75:f3:88:b1:01:b3:f6:74:07:18:f4:ef:
47:bd:77:d2:d4:ce:aa:6e:26:e0:63:b5:a6:a5:81:
f5:a4:fe:b6:01:ad:f7:d1:ab:7f:40:58:f3:41:55:
5d:2e:42:2a:0c:a4:c6:25:1b:a6:2e:6e:71:ca:dd:
e4:cf:57:36:0d:dd:3d:5f:be:52:62:7b:c1:34:b5:
b5:84:ac:81:69:cd:ab:b8:60:c8:fb:72:91:6f:81:
74:11:51:db:15:a9:bb:4a:3a:02:8c:20:18:af:19:
b0:5e:9e:f9:52:ae:f8:b3:04:38:4a:b1:c5:0d:76:
4b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:19:9C:3A:E8:FD:A8:FA:32:02:15:E6:E3:97:FD:5E:46:21:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KA8ZnDro_aj6MgIV5uOX_V5GITw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.160.0/22
Signature Algorithm: sha256WithRSAEncryption
09:41:a2:13:2f:9d:cc:55:59:e9:d2:71:55:1e:94:cb:bc:fe:
d5:39:9b:78:6a:1f:2a:66:c7:d7:10:6c:70:1d:60:71:3e:a2:
76:3d:d7:9e:7f:44:58:f9:b9:de:43:06:4c:cc:1b:b7:18:e8:
b5:80:d5:8b:67:15:c7:fd:a0:ef:63:4d:17:78:9c:dc:18:c0:
20:cf:04:eb:1e:21:ef:aa:48:2a:a6:c2:23:80:1b:38:6a:f3:
c4:be:4b:e4:35:f2:a8:f3:b8:2e:c8:e7:8b:e6:83:2c:0d:20:
d7:00:06:c3:6e:9c:dc:0c:29:26:e9:2e:44:c2:13:ad:80:88:
30:4f:72:83:fc:fe:1b:b4:40:a1:1e:ab:5b:c4:96:8e:60:1b:
87:c1:43:0f:cb:de:25:aa:c8:e3:0f:5a:c4:31:d0:61:a8:0f:
53:d9:c6:37:ed:8b:d3:88:36:10:38:27:0b:f1:91:3d:0f:90:
54:7a:51:ee:b1:00:5b:95:bc:fd:03:ff:91:7c:4a:fb:df:f0:
41:2b:89:26:63:a5:5a:d8:92:ee:df:ae:5d:c0:e4:a2:10:e1:
73:57:05:65:67:1a:6f:f4:0c:a2:11:a4:6d:8a:c0:4c:aa:7b:
b2:93:03:2f:b8:de:87:26:ca:fb:86:b8:8f:72:85:67:92:f6:
82:bd:95:7a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI4MEYxOTlDM0FFOEZE
QThGQTMyMDIxNUU2RTM5N0ZENUU0NjIxM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjRoZJP0PW23rcENUTTT7Ugu/V1Hnglu4yVFXOWaBSxxclCBUc
ayHe94LCSx4XII83d1R6nhIZANiYmHfnS6uRCU7bxkSWfhSLwtDw11LVmI+extDC
wWW1XvyaCKybixw3Sa8iJAVmDBB/6qUeHbapR35wgU6IfNAppf6Z0WtqIB6cQoAb
vg9PK3XziLEBs/Z0Bxj070e9d9LUzqpuJuBjtaalgfWk/rYBrffRq39AWPNBVV0u
QioMpMYlG6YubnHK3eTPVzYN3T1fvlJie8E0tbWErIFpzau4YMj7cpFvgXQRUdsV
qbtKOgKMIBivGbBenvlSrvizBDhKscUNdktZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUKA8ZnDro/aj6MgIV5uOX/V5GITwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS0E4Wm5Ecm9fYWo2TWdJVjV1T1hf
VjVHSVR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnqToDAN
BgkqhkiG9w0BAQsFAAOCAQEACUGiEy+dzFVZ6dJxVR6Uy7z+1TmbeGofKmbH1xBs
cB1gcT6idj3Xnn9EWPm53kMGTMwbtxjotYDVi2cVx/2g72NNF3ic3BjAIM8E6x4h
76pIKqbCI4AbOGrzxL5L5DXyqPO4Lsjni+aDLA0g1wAGw26c3AwpJukuRMITrYCI
ME9yg/z+G7RAoR6rW8SWjmAbh8FDD8veJarI4w9axDHQYagPU9nGN+2L04g2EDgn
C/GRPQ+QVHpR7rEAW5W8/QP/kXxK+9/wQSuJJmOlWtiS7t+uXcDkohDhc1cFZWca
b/QMohGkbYrATKp7spMDL7jehybK+4a4j3KFZ5L2gr2Veg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org