Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KnYQcGFdjcch1Msy2A9yoVxeals.roa
File: KnYQcGFdjcch1Msy2A9yoVxeals.roa (raw, json)
Hash identifier: vPlDqu3l2d/fHelT6N4bGfyUfM79Hv14udUcSYVmpek=
Subject key identifier: 2A:76:10:70:61:5D:8D:C7:21:D4:CB:32:D8:0F:72:A1:5C:5E:6A:5B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KnYQcGFdjcch1Msy2A9yoVxeals.roa
Signing time: Thu 15 Sep 2022 02:43:34 +0000
ROA not before: Thu 15 Sep 2022 02:43:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131586
IP address blocks: 106.106.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2A761070615D8DC721D4CB32D80F72A15C5E6A5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:27:e5:35:28:86:7d:82:3b:06:e1:2e:2a:
8f:9d:de:a9:63:d2:ca:9b:c4:2c:fd:57:e2:16:cf:
d1:be:b8:5d:7a:27:0b:42:c4:ca:8f:40:c7:b8:03:
dc:81:49:15:f3:02:a2:1a:29:09:a4:65:f6:06:4e:
02:9a:42:ba:93:ba:a2:89:6d:e4:ee:d7:f3:48:24:
8d:01:73:aa:12:85:f2:87:b4:25:82:c8:0e:cf:4d:
4a:d1:0d:d0:c4:1b:d3:5e:ac:8e:2e:82:88:6e:f2:
43:9c:77:b9:f0:ea:e2:43:a5:04:3f:04:21:70:29:
7a:9a:3f:55:ca:0f:ab:f2:91:48:e5:c7:66:5b:30:
af:52:e3:04:70:89:85:00:18:1a:d7:fa:88:40:63:
4a:77:78:83:14:96:bb:cc:d3:0b:51:19:3b:1c:21:
64:51:5a:e6:0a:a4:b5:9f:c6:54:9e:95:76:38:7c:
d8:5d:19:6a:95:d2:30:18:0a:21:c0:bf:79:7d:e3:
d6:f2:8d:74:a8:67:59:cd:a0:7b:de:af:5e:26:43:
6b:ab:9d:6c:e6:60:9e:a6:16:5e:c1:4a:f8:7f:a5:
d6:6f:1e:75:3d:ef:eb:a2:1e:22:33:b0:85:f2:3e:
20:01:e9:88:f2:de:51:29:dc:d9:b0:3f:5f:5c:c9:
0f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:76:10:70:61:5D:8D:C7:21:D4:CB:32:D8:0F:72:A1:5C:5E:6A:5B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KnYQcGFdjcch1Msy2A9yoVxeals.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
72:06:23:24:e9:be:81:dd:6b:a9:85:21:82:9d:df:6e:6e:f0:
01:3a:2f:ce:9d:5d:70:c2:a1:12:95:5c:29:0d:09:3d:7b:65:
92:b7:72:a1:ca:99:ed:d1:61:cd:c4:49:49:9a:b1:02:e8:1d:
10:47:d5:ff:7c:af:12:88:4a:c2:13:e2:86:c9:76:43:44:cc:
40:a5:7c:b9:9e:44:ea:c8:53:2e:16:e7:3b:82:97:3e:b9:69:
d0:6c:97:b5:80:30:9d:a9:25:71:96:1e:ca:13:e3:a9:23:7c:
8e:20:ea:8e:73:24:24:60:cc:c4:f8:0d:b6:53:71:9e:26:19:
10:7a:e2:76:4d:a2:9a:86:d6:bc:fd:2e:29:09:ac:cc:89:ee:
e3:c7:8f:34:d1:f1:f3:7f:b9:66:7d:58:34:bf:5e:4a:1d:93:
45:31:a8:85:58:ec:6d:46:29:84:78:cb:1e:7c:ab:36:cf:87:
ee:1d:9d:9d:d0:f5:d6:1e:e5:44:01:e6:c2:d4:2b:64:44:a7:
16:40:4f:0a:23:24:d3:86:8a:5f:f2:13:28:e1:0b:9e:bb:97:
76:d6:77:67:10:f1:e6:c7:6a:5e:a4:30:69:f7:62:13:06:90:
d4:8f:57:8f:d3:94:f6:78:0b:64:b1:5e:ad:ae:bc:13:fc:78:
09:a6:17:76
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJBNzYxMDcwNjE1RDhE
QzcyMUQ0Q0IzMkQ4MEY3MkExNUM1RTZBNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1xyflNSiGfYI7BuEuKo+d3qlj0sqbxCz9V+IWz9G+uF16JwtC
xMqPQMe4A9yBSRXzAqIaKQmkZfYGTgKaQrqTuqKJbeTu1/NIJI0Bc6oShfKHtCWC
yA7PTUrRDdDEG9NerI4ugohu8kOcd7nw6uJDpQQ/BCFwKXqaP1XKD6vykUjlx2Zb
MK9S4wRwiYUAGBrX+ohAY0p3eIMUlrvM0wtRGTscIWRRWuYKpLWfxlSelXY4fNhd
GWqV0jAYCiHAv3l949byjXSoZ1nNoHver14mQ2urnWzmYJ6mFl7BSvh/pdZvHnU9
7+uiHiIzsIXyPiAB6Yjy3lEp3NmwP19cyQ9DAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUKnYQcGFdjcch1Msy2A9yoVxealswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS25ZUWNHRmRqY2NoMU1zeTJBOXlv
VnhlYWxzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAGpqMA0G
CSqGSIb3DQEBCwUAA4IBAQByBiMk6b6B3WuphSGCnd9ubvABOi/OnV1wwqESlVwp
DQk9e2WSt3Khypnt0WHNxElJmrEC6B0QR9X/fK8SiErCE+KGyXZDRMxApXy5nkTq
yFMuFuc7gpc+uWnQbJe1gDCdqSVxlh7KE+OpI3yOIOqOcyQkYMzE+A22U3GeJhkQ
euJ2TaKahta8/S4pCazMie7jx4800fHzf7lmfVg0v15KHZNFMaiFWOxtRimEeMse
fKs2z4fuHZ2d0PXWHuVEAebC1CtkRKcWQE8KIyTThopf8hMo4Queu5d21ndnEPHm
x2pepDBp92ITBpDUj1eP05T2eAtksV6trrwT/HgJphd2
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org