Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SUQhPUSnJZ1QlOMyGsv_JEKXXjU.roa
File: SUQhPUSnJZ1QlOMyGsv_JEKXXjU.roa (raw, json)
Hash identifier: YgEx3lOZgv8zrHrbsQRfwKBVZ2Cfgpx9GfamqmBlrKo=
Subject key identifier: 49:44:21:3D:44:A7:25:9D:50:94:E3:32:1A:CB:FF:24:42:97:5E:35
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10D9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SUQhPUSnJZ1QlOMyGsv_JEKXXjU.roa
Signing time: Wed 01 Feb 2023 10:29:07 +0000
ROA not before: Wed 01 Feb 2023 10:29:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4313 (0x10d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:07 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4944213D44A7259D5094E3321ACBFF2442975E35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:83:04:99:83:98:ad:f8:c6:fb:33:b6:a5:
d2:45:f8:da:1f:23:e9:03:d7:10:45:d5:ca:7e:d0:
39:f2:ed:61:c0:33:6d:0d:2f:39:cb:5b:95:57:8b:
e4:47:0d:7c:08:d1:99:ca:ab:8d:29:0f:07:9a:c2:
b6:20:74:01:6e:9a:41:ea:a6:b7:af:cf:40:05:51:
44:ac:f4:ab:1c:d8:50:ed:24:2d:3f:0c:a1:31:27:
92:c5:4f:9f:31:8b:fa:9d:4d:5a:2b:03:e2:b2:f1:
89:85:e6:5a:73:64:42:59:68:5e:8f:bf:b5:dc:95:
2f:0a:33:e4:d8:09:ac:57:c3:0d:9e:5d:6f:fa:10:
00:c1:8e:45:fa:55:80:4f:c9:f9:d0:08:fc:8b:e6:
c4:55:02:1f:94:39:d3:f5:41:b4:49:b3:aa:9e:9f:
de:28:47:77:22:33:bf:83:ed:eb:d3:24:40:65:df:
46:29:03:0d:1d:8b:4e:53:e9:d4:f3:cd:5a:af:7a:
8d:6a:fb:e0:c1:1e:55:9f:03:df:a4:ce:3b:d2:ce:
15:5f:dd:64:e1:7a:29:f4:9f:4f:31:20:ae:34:0b:
63:58:8c:85:e1:76:2f:3e:08:2a:e8:69:08:75:d2:
43:12:98:7f:ed:40:a5:ed:c8:41:20:5b:c8:4c:31:
3a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:44:21:3D:44:A7:25:9D:50:94:E3:32:1A:CB:FF:24:42:97:5E:35
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SUQhPUSnJZ1QlOMyGsv_JEKXXjU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ed:7a:03:d3:38:7c:a5:c5:ef:e9:6f:3b:fc:e4:db:77:34:
62:39:ce:89:db:76:62:4f:ab:a4:9e:ed:3e:57:d0:32:d2:34:
74:a6:56:58:cd:44:b0:c7:a3:e3:4b:a3:a4:56:fd:e0:9a:e9:
09:a1:c6:df:8a:ad:05:1b:7b:e9:81:25:5e:a8:b5:db:e2:26:
ea:61:ec:9e:06:8b:fd:21:55:c2:77:df:19:a7:f5:77:47:d5:
aa:c1:23:2e:b4:65:ac:13:2b:90:32:82:a9:09:98:82:16:b9:
4f:31:7c:56:04:ad:95:32:6b:d6:1b:9d:c0:4e:4c:a2:fe:25:
5f:42:2c:10:67:48:e8:0e:c8:e4:e7:0e:bb:b6:64:38:83:61:
7e:2e:60:a1:ea:d0:cb:5c:c4:d4:8d:46:aa:f5:82:36:e0:67:
a8:3f:52:20:94:24:a5:24:9f:c4:b7:cd:42:90:b9:2f:a9:17:
d4:14:9c:35:30:69:fb:19:fb:2b:0c:ea:e3:ff:d3:68:4e:dd:
c6:26:91:fb:0d:a5:72:ef:16:e4:e0:cd:2c:fe:0b:3c:e6:6d:
94:ac:69:46:85:d3:2b:5b:3b:f8:11:15:7a:56:a6:a4:38:b5:
11:d8:98:0b:da:a3:f0:1a:c9:00:0e:e9:c9:b4:f8:ab:f8:15:
41:bb:1a:d5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICENkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI5MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ5NDQyMTNENDRBNzI1
OUQ1MDk0RTMzMjFBQ0JGRjI0NDI5NzVFMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtiYMEmYOYrfjG+zO2pdJF+NofI+kD1xBF1cp+0Dny7WHAM20N
LznLW5VXi+RHDXwI0ZnKq40pDweawrYgdAFumkHqprevz0AFUUSs9Ksc2FDtJC0/
DKExJ5LFT58xi/qdTVorA+Ky8YmF5lpzZEJZaF6Pv7XclS8KM+TYCaxXww2eXW/6
EADBjkX6VYBPyfnQCPyL5sRVAh+UOdP1QbRJs6qen94oR3ciM7+D7evTJEBl30Yp
Aw0di05T6dTzzVqveo1q++DBHlWfA9+kzjvSzhVf3WThein0n08xIK40C2NYjIXh
di8+CCroaQh10kMSmH/tQKXtyEEgW8hMMTqhAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUSUQhPUSnJZ1QlOMyGsv/JEKXXjUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU1VRaFBVU25KWjFRbE9NeUdzdl9K
RUtYWGpVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAK+3iTAN
BgkqhkiG9w0BAQsFAAOCAQEAQ+16A9M4fKXF7+lvO/zk23c0YjnOidt2Yk+rpJ7t
PlfQMtI0dKZWWM1EsMej40ujpFb94JrpCaHG34qtBRt76YElXqi12+Im6mHsngaL
/SFVwnffGaf1d0fVqsEjLrRlrBMrkDKCqQmYgha5TzF8VgStlTJr1hudwE5Mov4l
X0IsEGdI6A7I5OcOu7ZkOINhfi5goerQy1zE1I1GqvWCNuBnqD9SIJQkpSSfxLfN
QpC5L6kX1BScNTBp+xn7Kwzq4//TaE7dxiaR+w2lcu8W5ODNLP4LPOZtlKxpRoXT
K1s7+BEVelampDi1EdiYC9qj8BrJAA7pybT4q/gVQbsa1Q==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org