Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TJpDaEA4U4AmFIQhkiaD5n6R020.roa
File: TJpDaEA4U4AmFIQhkiaD5n6R020.roa (raw, json)
Hash identifier: iTdAhGzMhvsfaEEUvQEK6TYM11mWdLvsMAbEqKyF8Lw=
Subject key identifier: 4C:9A:43:68:40:38:53:80:26:14:84:21:92:26:83:E6:7E:91:D3:6D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10B4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TJpDaEA4U4AmFIQhkiaD5n6R020.roa
Signing time: Wed 01 Feb 2023 10:28:55 +0000
ROA not before: Wed 01 Feb 2023 10:28:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4276 (0x10b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:55 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4C9A43684038538026148421922683E67E91D36D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ae:60:40:c0:5c:24:42:b8:0a:c8:43:70:33:
03:9e:b7:d2:85:89:3a:5b:ca:cd:44:69:c1:68:76:
a0:ea:63:58:ef:30:f3:42:d6:62:43:88:a4:fa:6d:
04:79:59:bd:4f:65:1d:48:2d:e2:a3:08:e3:8c:a7:
d4:40:93:dd:bf:c4:e9:11:fd:e3:12:b5:b6:1c:b2:
a2:ab:6b:57:24:6a:65:5a:e5:78:27:8e:7d:f2:80:
2d:38:95:44:1d:7a:60:e7:56:12:b6:48:8c:0f:58:
58:45:b1:b4:88:0a:a5:39:ab:8c:d5:41:89:8b:48:
90:b6:69:ed:a2:2e:5f:ad:7d:d9:c1:94:4a:ea:71:
7e:d5:1a:b9:cd:83:be:8f:6a:bf:3e:25:3d:14:f9:
0d:96:2b:d5:9d:e8:02:7b:52:c2:bd:1e:dd:e2:00:
fe:ed:91:7a:20:01:14:6b:4d:ef:43:2d:b4:18:bb:
ca:50:e5:0d:15:17:76:d0:9a:49:d3:24:36:81:e8:
bb:c4:a0:1c:93:f0:44:c2:77:80:b7:2f:ac:58:cb:
2d:db:ac:81:e9:df:37:21:1a:8b:16:d8:92:27:44:
68:86:f9:93:d1:e6:ae:84:7a:33:72:e5:91:49:5d:
00:f0:14:82:c4:ce:d0:33:9d:da:b5:3f:77:36:7a:
ff:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9A:43:68:40:38:53:80:26:14:84:21:92:26:83:E6:7E:91:D3:6D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TJpDaEA4U4AmFIQhkiaD5n6R020.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:65:8c:7f:f8:62:20:bb:28:fd:e4:21:7e:2b:c8:03:13:8b:
7d:5e:72:23:3a:67:6c:d0:e1:30:9e:f6:38:46:3e:8a:0e:65:
4a:4e:e6:ac:5e:ce:cd:44:f4:1f:cd:07:44:8f:97:04:9d:5a:
e1:e2:da:15:53:37:f4:39:84:a6:95:71:95:6a:2b:88:5b:b0:
7c:8a:db:07:a6:3e:17:68:9f:fa:c8:34:fa:00:fb:e2:15:43:
34:4d:93:2d:1c:1e:fd:c5:5f:21:c5:fa:7d:f7:75:b4:4d:ed:
65:75:37:0e:81:b1:18:a5:24:39:64:57:97:30:35:c4:fd:3a:
43:a2:12:6a:b8:66:63:cb:0a:03:7b:18:e7:3b:4f:6f:9e:84:
7f:07:b4:08:f5:80:60:d1:d5:f6:8b:39:87:8d:27:ba:95:8c:
57:5e:c1:fc:1e:02:a5:0e:bd:90:cb:c6:5a:51:28:be:59:80:
1b:a0:d6:86:63:03:2e:aa:13:a8:d7:54:31:4c:3e:c4:ae:74:
b4:1c:74:cf:64:0c:bc:e3:c5:96:f0:fe:24:9b:d1:3c:82:0c:
68:e8:11:30:37:ba:c6:6b:33:95:9e:2d:5f:96:ff:ce:9e:91:
e4:26:50:1c:d5:7c:ac:31:2b:ea:0a:b0:96:26:a6:4b:8c:6d:
8a:a9:02:04
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICELQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDRDOUE0MzY4NDAzODUz
ODAyNjE0ODQyMTkyMjY4M0U2N0U5MUQzNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCarmBAwFwkQrgKyENwMwOet9KFiTpbys1EacFodqDqY1jvMPNC
1mJDiKT6bQR5Wb1PZR1ILeKjCOOMp9RAk92/xOkR/eMStbYcsqKra1ckamVa5Xgn
jn3ygC04lUQdemDnVhK2SIwPWFhFsbSICqU5q4zVQYmLSJC2ae2iLl+tfdnBlErq
cX7VGrnNg76Par8+JT0U+Q2WK9Wd6AJ7UsK9Ht3iAP7tkXogARRrTe9DLbQYu8pQ
5Q0VF3bQmknTJDaB6LvEoByT8ETCd4C3L6xYyy3brIHp3zchGosW2JInRGiG+ZPR
5q6EejNy5ZFJXQDwFILEztAzndq1P3c2ev9fAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUTJpDaEA4U4AmFIQhkiaD5n6R020wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVEpwRGFFQTRVNEFtRklRaGtpYUQ1
bjZSMDIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHHEMA0G
CSqGSIb3DQEBCwUAA4IBAQCdZYx/+GIguyj95CF+K8gDE4t9XnIjOmds0OEwnvY4
Rj6KDmVKTuasXs7NRPQfzQdEj5cEnVrh4toVUzf0OYSmlXGVaiuIW7B8itsHpj4X
aJ/6yDT6APviFUM0TZMtHB79xV8hxfp993W0Te1ldTcOgbEYpSQ5ZFeXMDXE/TpD
ohJquGZjywoDexjnO09vnoR/B7QI9YBg0dX2izmHjSe6lYxXXsH8HgKlDr2Qy8Za
USi+WYAboNaGYwMuqhOo11QxTD7ErnS0HHTPZAy848WW8P4km9E8ggxo6BEwN7rG
azOVni1flv/OnpHkJlAc1XysMSvqCrCWJqZLjG2KqQIE
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org