Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2QlrFCo0ORH9Ybh1astE1j0Q1w.roa
File: M2QlrFCo0ORH9Ybh1astE1j0Q1w.roa (raw, json)
Hash identifier: TfjvZE7bJVzuc8ssucDIBIMBzKGEzAo6KEkI0vdaK+8=
Subject key identifier: 33:64:25:AC:50:A8:D0:E4:47:F5:86:E1:D5:AB:2D:13:58:F4:43:5C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1073
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2QlrFCo0ORH9Ybh1astE1j0Q1w.roa
Signing time: Wed 01 Feb 2023 10:28:34 +0000
ROA not before: Wed 01 Feb 2023 10:28:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131586
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4211 (0x1073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=336425AC50A8D0E447F586E1D5AB2D1358F4435C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6a:f9:e9:60:fc:50:53:0c:e0:97:9b:85:ff:
a0:65:67:9b:f6:63:d0:a3:4f:67:16:ae:f2:86:75:
f7:86:bb:a3:d5:b7:9c:16:e5:62:36:16:45:83:91:
d4:a3:4e:47:cb:2e:0a:5f:58:41:8f:38:cb:0c:17:
01:24:45:ce:5c:81:fb:e8:65:b5:96:b2:ab:eb:6b:
74:0e:72:03:a3:05:8f:ba:e1:73:cb:9d:4f:8a:73:
4b:ac:9e:2c:40:3c:a8:6b:6f:cb:f9:5c:cc:fd:c5:
b1:73:66:6f:42:8b:27:02:35:bb:c3:e9:14:b6:3a:
43:ef:3a:0f:55:40:42:74:4e:63:d4:b9:92:39:ca:
6c:7b:2a:eb:fe:14:ab:d5:7a:10:1e:0c:9c:02:74:
0b:5a:57:10:e8:ee:a0:f7:d6:87:52:0b:8c:c2:90:
a2:e5:1a:15:89:17:c4:b4:34:82:84:ad:d6:8b:35:
b5:a0:9e:db:64:a6:e9:d7:aa:0a:00:07:de:f5:37:
c6:49:86:b6:d2:ac:d4:2c:ba:2d:77:4f:84:f3:0b:
1d:cc:28:ee:89:9c:63:2d:48:74:67:ae:12:82:fc:
29:8a:6a:43:16:ef:44:82:20:55:af:0a:ea:98:fb:
9c:ab:08:21:5e:50:e0:6f:2d:72:b5:18:ad:50:1a:
7d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:64:25:AC:50:A8:D0:E4:47:F5:86:E1:D5:AB:2D:13:58:F4:43:5C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2QlrFCo0ORH9Ybh1astE1j0Q1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
19:d9:e7:ad:88:a9:a2:e3:ce:7c:88:40:b2:82:0c:f0:b5:1c:
30:11:c6:77:62:de:22:fa:d1:b4:00:bb:9d:a1:16:fc:94:2c:
9b:e5:19:6d:ad:87:3f:cd:6f:b6:b8:e0:54:1f:a3:a3:f6:9b:
db:15:1b:00:49:1d:22:44:9e:d7:05:2c:af:f7:cc:da:74:48:
ae:11:96:1f:b8:2c:4d:ab:87:7a:7e:28:e5:1b:2f:b3:76:cc:
f9:b4:64:e5:af:f7:95:52:ee:89:8b:d1:fe:1b:4e:62:ae:cd:
82:49:90:4f:10:ca:44:61:af:13:55:1c:fe:10:fb:ab:63:6b:
dd:30:50:1f:fe:68:43:2d:fa:8d:f9:9b:54:e0:78:91:72:82:
95:ce:1b:01:15:39:48:a5:a0:41:6b:f7:ab:f9:f3:dc:23:a1:
7a:78:25:61:28:96:d1:66:34:d3:95:34:38:42:ec:62:a3:c4:
9f:f1:b8:a1:80:5a:63:d4:74:16:5d:1e:98:be:ab:de:02:10:
08:41:f3:b4:31:9d:d0:5f:4e:a8:95:c0:e9:98:65:30:a9:93:
66:86:63:82:a7:46:eb:bf:94:fe:7e:10:fb:d2:4d:25:fa:73:
ee:c2:37:9e:6a:ff:0e:5a:5a:62:49:12:bd:ea:d7:36:2d:82:
ed:df:5c:75
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICEHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDMzNjQyNUFDNTBBOEQw
RTQ0N0Y1ODZFMUQ1QUIyRDEzNThGNDQzNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFavnpYPxQUwzgl5uF/6BlZ5v2Y9CjT2cWrvKGdfeGu6PVt5wW
5WI2FkWDkdSjTkfLLgpfWEGPOMsMFwEkRc5cgfvoZbWWsqvra3QOcgOjBY+64XPL
nU+Kc0usnixAPKhrb8v5XMz9xbFzZm9CiycCNbvD6RS2OkPvOg9VQEJ0TmPUuZI5
ymx7Kuv+FKvVehAeDJwCdAtaVxDo7qD31odSC4zCkKLlGhWJF8S0NIKErdaLNbWg
nttkpunXqgoAB971N8ZJhrbSrNQsui13T4TzCx3MKO6JnGMtSHRnrhKC/CmKakMW
70SCIFWvCuqY+5yrCCFeUOBvLXK1GK1QGn1jAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUM2QlrFCo0ORH9Ybh1astE1j0Q1wwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTTJRbHJGQ28wT1JIOVliaDFhc3RF
MWowUTF3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBoEAw
DQYJKoZIhvcNAQELBQADggEBABnZ562IqaLjznyIQLKCDPC1HDARxndi3iL60bQA
u52hFvyULJvlGW2thz/Nb7a44FQfo6P2m9sVGwBJHSJEntcFLK/3zNp0SK4Rlh+4
LE2rh3p+KOUbL7N2zPm0ZOWv95VS7omL0f4bTmKuzYJJkE8QykRhrxNVHP4Q+6tj
a90wUB/+aEMt+o35m1TgeJFygpXOGwEVOUiloEFr96v589wjoXp4JWEoltFmNNOV
NDhC7GKjxJ/xuKGAWmPUdBZdHpi+q94CEAhB87QxndBfTqiVwOmYZTCpk2aGY4Kn
Ruu/lP5+EPvSTSX6c+7CN55q/w5aWmJJEr3q1zYtgu3fXHU=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org