Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QhRYWrArsTeImU0_f2uVjbfHpvs.roa
File: QhRYWrArsTeImU0_f2uVjbfHpvs.roa (raw, json)
Hash identifier: mF+uI9eQXOSfMkKDK/iv/2lm+KrYlMLmTR4/Ga+prvM=
Subject key identifier: 42:14:58:5A:B0:2B:B1:37:88:99:4D:3F:7F:6B:95:8D:B7:C7:A6:FB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1062
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QhRYWrArsTeImU0_f2uVjbfHpvs.roa
Signing time: Wed 01 Feb 2023 10:28:29 +0000
ROA not before: Wed 01 Feb 2023 10:28:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 112.104.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4194 (0x1062)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4214585AB02BB13788994D3F7F6B958DB7C7A6FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8c:13:91:22:65:46:05:ec:29:3f:d2:96:72:
44:d0:5b:6b:2e:9f:59:8b:2a:aa:05:44:7b:6b:0f:
e5:e8:8d:3c:60:54:ae:d4:4d:b3:46:53:a0:98:44:
a8:4a:89:d8:79:84:fd:f2:7e:6b:24:56:f7:ab:ca:
aa:de:c1:b2:d7:b4:48:8b:cb:fa:ed:be:c2:77:6e:
13:75:21:5d:5f:02:7c:e1:67:f6:43:58:fb:cf:73:
cc:55:de:6b:39:46:cd:2e:e1:5c:df:ad:dd:98:e6:
cc:7b:b4:5e:d6:84:dd:76:5d:f9:78:5e:f4:be:6e:
0e:f0:b8:5b:74:ad:db:e0:02:cb:f3:c5:e7:5a:db:
81:92:bc:a6:a4:96:4e:b7:cc:e8:6b:85:67:2a:e5:
c7:30:5f:10:61:53:05:c1:19:ce:a3:7a:7c:0b:32:
f9:ec:56:d2:47:e9:4a:78:ee:bf:05:b5:6c:ac:5d:
45:72:82:f5:0e:d6:01:db:9a:d6:0e:1e:34:83:a6:
1b:18:4c:57:89:0e:38:ec:01:44:2e:17:df:c9:36:
b8:c3:1f:2d:d4:d0:39:e4:42:23:c9:bc:c5:1b:ee:
6e:6d:cc:d4:3e:53:e0:82:6f:1e:92:31:d6:ee:d0:
e9:df:a1:10:21:d1:33:01:cf:71:73:20:48:ca:e8:
d4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:14:58:5A:B0:2B:B1:37:88:99:4D:3F:7F:6B:95:8D:B7:C7:A6:FB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QhRYWrArsTeImU0_f2uVjbfHpvs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
76:a2:47:af:8a:6c:39:f6:06:75:2e:d0:64:dc:96:ab:cb:44:
cf:b8:a4:b9:b6:ae:e2:7c:6d:a9:d7:0b:ed:ae:f0:ca:f8:00:
38:31:89:23:73:a0:ec:41:f0:e3:13:ad:db:63:74:e0:18:52:
b1:db:c3:01:54:5e:c1:a4:f6:29:df:7b:d4:b0:63:cc:bb:52:
8b:57:d8:d5:3d:45:a1:a6:53:88:aa:d6:58:85:dc:69:2f:e6:
0a:d0:80:59:96:d6:c7:b5:a1:0e:69:aa:58:c0:ff:d8:d7:25:
a1:6e:c1:11:ff:e0:d5:43:05:74:8f:cd:de:78:d8:9f:bd:87:
99:13:bf:43:cc:48:7b:00:15:b3:56:92:24:80:87:2f:28:be:
3d:6f:d1:75:d0:74:c1:3b:7b:7d:55:62:a1:82:2f:12:7d:dc:
cf:88:0f:52:0e:f6:51:a9:e6:b5:55:dd:eb:11:9f:18:50:cf:
63:7c:65:24:02:55:b2:a1:0a:ec:59:2f:7d:a2:fb:b8:ec:04:
2f:a5:08:47:31:2c:91:09:92:33:66:78:bb:25:7a:61:00:da:
35:4a:a1:0c:2f:5c:68:b2:45:de:a4:14:cc:37:20:a9:f7:0e:
90:64:bb:f7:d7:5e:bc:03:78:93:a6:c4:81:07:68:f4:ee:25:
78:a6:5e:43
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQyMTQ1ODVBQjAyQkIx
Mzc4ODk5NEQzRjdGNkI5NThEQjdDN0E2RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKjBORImVGBewpP9KWckTQW2sun1mLKqoFRHtrD+XojTxgVK7U
TbNGU6CYRKhKidh5hP3yfmskVveryqrewbLXtEiLy/rtvsJ3bhN1IV1fAnzhZ/ZD
WPvPc8xV3ms5Rs0u4Vzfrd2Y5sx7tF7WhN12Xfl4XvS+bg7wuFt0rdvgAsvzxeda
24GSvKaklk63zOhrhWcq5ccwXxBhUwXBGc6jenwLMvnsVtJH6Up47r8FtWysXUVy
gvUO1gHbmtYOHjSDphsYTFeJDjjsAUQuF9/JNrjDHy3U0DnkQiPJvMUb7m5tzNQ+
U+CCbx6SMdbu0OnfoRAh0TMBz3FzIEjK6NRFAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUQhRYWrArsTeImU0/f2uVjbfHpvswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUWhSWVdyQXJzVGVJbVUwX2YydVZq
YmZIcHZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXBoMA0G
CSqGSIb3DQEBCwUAA4IBAQB2okevimw59gZ1LtBk3Jary0TPuKS5tq7ifG2p1wvt
rvDK+AA4MYkjc6DsQfDjE63bY3TgGFKx28MBVF7BpPYp33vUsGPMu1KLV9jVPUWh
plOIqtZYhdxpL+YK0IBZltbHtaEOaapYwP/Y1yWhbsER/+DVQwV0j83eeNifvYeZ
E79DzEh7ABWzVpIkgIcvKL49b9F10HTBO3t9VWKhgi8SfdzPiA9SDvZRqea1Vd3r
EZ8YUM9jfGUkAlWyoQrsWS99ovu47AQvpQhHMSyRCZIzZni7JXphANo1SqEML1xo
skXepBTMNyCp9w6QZLv31168A3iTpsSBB2j07iV4pl5D
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org