Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RhRPKmDlF8MgxMr6YojoQ42Yu-s.roa
File: RhRPKmDlF8MgxMr6YojoQ42Yu-s.roa (raw, json)
Hash identifier: KSlMPGZs7+eHIXVP45urL+FY9vMgRmoxWSzTMCMg9gc=
Subject key identifier: 46:14:4F:2A:60:E5:17:C3:20:C4:CA:FA:62:88:E8:43:8D:98:BB:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 103B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RhRPKmDlF8MgxMr6YojoQ42Yu-s.roa
Signing time: Wed 01 Feb 2023 10:28:18 +0000
ROA not before: Wed 01 Feb 2023 10:28:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 122.146.112.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4155 (0x103b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46144F2A60E517C320C4CAFA6288E8438D98BBEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8c:c3:00:0f:89:70:66:01:40:5d:32:58:40:
75:bb:c0:2a:61:04:ba:49:07:b9:0d:f9:66:68:1b:
56:e1:09:aa:12:f2:8c:34:1a:28:f1:6f:76:ff:78:
43:36:35:c0:f9:f5:a3:6a:cb:4a:1c:e4:59:6b:69:
1e:c0:ea:fe:1b:37:36:d8:6f:eb:e9:48:ee:a2:f1:
74:35:00:ab:90:1d:db:80:60:78:b7:2c:f4:4b:1e:
af:0f:f4:8c:bd:96:5d:d1:37:b3:00:3b:5b:20:4b:
ea:21:f8:ab:31:21:5b:be:db:3b:8a:f3:21:5d:d3:
ef:9f:34:a5:5d:45:22:1c:7a:5f:72:6c:b0:bf:d5:
d8:eb:a7:d5:41:a3:53:c6:65:75:46:d8:22:cb:a3:
9d:7b:de:54:88:ed:1d:0d:c5:22:0a:51:cc:b1:e9:
bb:41:f5:ab:1c:5e:a0:30:9f:3b:7a:b3:53:26:a2:
82:e0:c5:d4:c1:04:6c:cd:cc:f5:37:9a:a6:5f:bf:
53:d1:33:0d:fd:87:d7:bb:26:d9:0b:4d:ed:15:63:
bd:06:b6:ed:d7:18:5d:41:17:a6:6d:9a:c9:3a:39:
53:b0:b8:9c:77:58:bb:43:52:0c:06:f0:dc:9f:87:
73:77:a0:56:8e:3c:37:2f:08:09:43:d5:c7:be:80:
46:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:14:4F:2A:60:E5:17:C3:20:C4:CA:FA:62:88:E8:43:8D:98:BB:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RhRPKmDlF8MgxMr6YojoQ42Yu-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.112.0/20
Signature Algorithm: sha256WithRSAEncryption
67:fc:bd:a8:9d:0c:9f:e8:d1:db:b6:2e:43:1e:aa:25:43:9b:
42:d5:1d:67:93:0d:80:7c:53:31:b0:f6:f0:ec:d8:08:8c:a0:
d5:5c:68:66:63:41:aa:53:3a:4c:bf:d1:d9:a8:05:ca:6c:c2:
56:17:f6:ff:02:49:06:48:80:3a:09:ec:26:75:f0:97:95:eb:
a8:af:4d:76:f9:7e:6d:71:3a:e9:0f:8a:78:e7:8d:5b:be:ca:
ff:0f:df:77:f0:03:f9:fc:dd:b0:1e:c6:ed:45:23:e1:d4:9a:
ff:44:a0:25:7f:90:ca:7c:b2:bd:d7:30:08:9e:0d:fa:51:9b:
ce:11:dd:07:06:fa:d5:0f:59:1b:c2:44:fc:a8:8b:41:9f:b3:
a0:7e:72:69:c1:16:39:75:2b:e6:87:5c:05:47:b1:e4:a1:ed:
39:f5:f0:6a:a7:df:30:3a:ef:af:f5:e3:00:be:34:a6:70:48:
ff:9b:63:23:3d:f8:0e:c5:30:12:11:4a:cb:66:84:00:78:22:
5a:f0:d5:f9:c6:c4:69:b4:14:90:a8:6a:47:7c:df:07:ab:18:
52:de:6e:35:09:79:1c:56:39:72:a1:b5:54:83:b4:16:eb:68:
69:48:f0:98:31:9f:df:f2:09:ba:41:81:f5:30:75:79:9a:8d:
e6:cb:32:cf
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ2MTQ0RjJBNjBFNTE3
QzMyMEM0Q0FGQTYyODhFODQzOEQ5OEJCRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjjMMAD4lwZgFAXTJYQHW7wCphBLpJB7kN+WZoG1bhCaoS8ow0
Gijxb3b/eEM2NcD59aNqy0oc5FlraR7A6v4bNzbYb+vpSO6i8XQ1AKuQHduAYHi3
LPRLHq8P9Iy9ll3RN7MAO1sgS+oh+KsxIVu+2zuK8yFd0++fNKVdRSIcel9ybLC/
1djrp9VBo1PGZXVG2CLLo5173lSI7R0NxSIKUcyx6btB9ascXqAwnzt6s1MmooLg
xdTBBGzNzPU3mqZfv1PRMw39h9e7JtkLTe0VY70Gtu3XGF1BF6Ztmsk6OVOwuJx3
WLtDUgwG8Nyfh3N3oFaOPDcvCAlD1ce+gEZHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQURhRPKmDlF8MgxMr6YojoQ42Yu+swHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUmhSUEttRGxGOE1neE1yNllvam9R
NDJZdS1zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHqScDAN
BgkqhkiG9w0BAQsFAAOCAQEAZ/y9qJ0Mn+jR27YuQx6qJUObQtUdZ5MNgHxTMbD2
8OzYCIyg1VxoZmNBqlM6TL/R2agFymzCVhf2/wJJBkiAOgnsJnXwl5XrqK9Ndvl+
bXE66Q+KeOeNW77K/w/fd/AD+fzdsB7G7UUj4dSa/0SgJX+QynyyvdcwCJ4N+lGb
zhHdBwb61Q9ZG8JE/KiLQZ+zoH5yacEWOXUr5odcBUex5KHtOfXwaqffMDrvr/Xj
AL40pnBI/5tjIz34DsUwEhFKy2aEAHgiWvDV+cbEabQUkKhqR3zfB6sYUt5uNQl5
HFY5cqG1VIO0FutoaUjwmDGf3/IJukGB9TB1eZqN5ssyzw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:50 2023 by rpki-client on console-ams.rpki-client.org