Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OwBEevYOtr-S4kTTKSV0TwzSS4E.roa
File: OwBEevYOtr-S4kTTKSV0TwzSS4E.roa (raw, json)
Hash identifier: snX/vcxoYzJXZG/juzjDyDq4zR4xyFi64fuQroq3Xfs=
Subject key identifier: 3B:00:44:7A:F6:0E:B6:BF:92:E2:44:D3:29:25:74:4F:0C:D2:4B:81
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 109B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OwBEevYOtr-S4kTTKSV0TwzSS4E.roa
Signing time: Wed 01 Feb 2023 10:28:46 +0000
ROA not before: Wed 01 Feb 2023 10:28:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4251 (0x109b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B00447AF60EB6BF92E244D32925744F0CD24B81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:7d:14:23:ea:36:fe:2a:37:c4:08:73:ae:
1d:88:85:69:7f:be:7b:8e:f7:46:65:60:4d:1e:0a:
6e:ea:76:5a:30:77:b5:e5:f3:c2:9b:c8:c5:1e:54:
32:c4:fd:30:3c:b5:65:15:93:86:69:32:73:20:74:
79:72:06:43:24:51:41:9d:a6:78:f3:20:fd:07:74:
b7:35:40:02:2a:65:ed:9e:f4:a2:2a:3c:88:a8:0f:
b7:32:92:71:5b:26:c7:47:a9:03:fb:b7:07:42:f3:
ba:87:e4:9f:f5:34:a8:7f:25:6b:5f:fa:8d:2a:8c:
24:a5:84:b8:05:7e:99:3c:6c:28:f5:49:3c:8f:7d:
9e:0d:17:6b:b8:a2:9f:0b:69:0c:da:f8:5e:3e:e5:
8f:5d:bb:0b:83:c1:0d:ba:a4:29:dc:fe:18:06:8c:
0c:97:01:07:33:c8:25:df:4f:86:6b:dd:87:a3:04:
c7:0f:bb:ec:04:86:b5:b3:d0:54:b9:29:75:5f:ae:
15:8b:01:77:37:6e:dd:29:c1:c8:bb:41:8e:0d:47:
fb:8f:00:f8:d2:61:4d:cc:e1:74:c1:84:bb:ed:d2:
4a:fd:59:09:47:09:94:d8:db:67:b8:19:c6:b1:88:
f4:f2:e0:74:d5:09:d5:b5:c9:ed:e6:45:5c:dd:6a:
10:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:00:44:7A:F6:0E:B6:BF:92:E2:44:D3:29:25:74:4F:0C:D2:4B:81
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OwBEevYOtr-S4kTTKSV0TwzSS4E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:52:19:d6:03:16:71:0b:f1:13:74:b9:65:8e:cf:90:9c:63:
cc:a6:37:7b:e3:a3:1e:fd:a0:19:0a:01:90:42:15:a3:4c:53:
87:6b:29:9f:cf:32:dc:a1:2e:4e:9c:d7:67:f1:0f:64:df:2b:
0b:a3:c1:c6:ad:0f:aa:f5:28:1e:f1:a6:5a:f2:aa:fb:00:aa:
ee:23:38:12:b7:64:21:1f:00:79:c0:ec:af:df:40:60:ae:69:
ba:7c:a3:fc:e1:25:8a:9c:27:bf:7b:25:89:b5:34:a4:05:f7:
70:9b:50:62:cd:2a:7c:03:ef:39:e3:a1:f1:5f:dc:bf:25:eb:
59:f6:1c:ec:1d:40:de:b5:4b:bf:a5:31:81:69:b6:8c:94:3b:
34:30:49:e1:71:a8:4b:0a:26:92:fa:07:0e:2d:2e:9d:e7:f8:
2b:e9:c4:94:f8:5c:54:ca:11:36:3b:bf:69:95:4b:09:92:57:
85:69:6f:1c:96:59:89:c2:d2:9b:05:e9:1e:4f:4d:9e:fe:02:
7b:99:72:ba:91:f9:db:b1:24:8b:ee:c8:5d:b5:fa:9e:1f:6a:
d7:14:c5:92:57:a2:94:cc:4b:5a:f3:17:25:64:82:d4:55:47:
10:78:28:17:63:85:2c:bd:c9:59:2a:e8:ff:65:88:9d:24:10:
b3:55:4b:df
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNCMDA0NDdBRjYwRUI2
QkY5MkUyNDREMzI5MjU3NDRGMENEMjRCODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0Xn0UI+o2/io3xAhzrh2IhWl/vnuO90ZlYE0eCm7qdlowd7Xl
88KbyMUeVDLE/TA8tWUVk4ZpMnMgdHlyBkMkUUGdpnjzIP0HdLc1QAIqZe2e9KIq
PIioD7cyknFbJsdHqQP7twdC87qH5J/1NKh/JWtf+o0qjCSlhLgFfpk8bCj1STyP
fZ4NF2u4op8LaQza+F4+5Y9duwuDwQ26pCnc/hgGjAyXAQczyCXfT4Zr3YejBMcP
u+wEhrWz0FS5KXVfrhWLAXc3bt0pwci7QY4NR/uPAPjSYU3M4XTBhLvt0kr9WQlH
CZTY22e4GcaxiPTy4HTVCdW1ye3mRVzdahB/AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUOwBEevYOtr+S4kTTKSV0TwzSS4EwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvT3dCRWV2WU90ci1TNGtUVEtTVjBU
d3pTUzRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJAMA0G
CSqGSIb3DQEBCwUAA4IBAQCIUhnWAxZxC/ETdLlljs+QnGPMpjd746Me/aAZCgGQ
QhWjTFOHaymfzzLcoS5OnNdn8Q9k3ysLo8HGrQ+q9Sge8aZa8qr7AKruIzgSt2Qh
HwB5wOyv30Bgrmm6fKP84SWKnCe/eyWJtTSkBfdwm1BizSp8A+8546HxX9y/JetZ
9hzsHUDetUu/pTGBabaMlDs0MEnhcahLCiaS+gcOLS6d5/gr6cSU+FxUyhE2O79p
lUsJkleFaW8cllmJwtKbBekeT02e/gJ7mXK6kfnbsSSL7shdtfqeH2rXFMWSV6KU
zEta8xclZILUVUcQeCgXY4UsvclZKuj/ZYidJBCzVUvf
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org