Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UZvFaHKu0CbnP3RoK63IizWatfs.roa
File: UZvFaHKu0CbnP3RoK63IizWatfs.roa (raw, json)
Hash identifier: hy5EQc6T5mIDlLwnBuwVTAlvUOp08449rxaQul+XoCk=
Subject key identifier: 51:9B:C5:68:72:AE:D0:26:E7:3F:74:68:2B:AD:C8:8B:35:9A:B5:FB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UZvFaHKu0CbnP3RoK63IizWatfs.roa
Signing time: Thu 15 Sep 2022 02:43:16 +0000
ROA not before: Thu 15 Sep 2022 02:43:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 45.64.228.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=519BC56872AED026E73F74682BADC88B359AB5FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:2a:70:89:1a:a6:34:88:73:26:cd:02:bb:
f4:b8:8f:f6:5f:43:c2:d8:4d:92:4b:ae:9d:18:0a:
43:43:62:42:aa:b3:a1:21:bd:41:d3:63:8e:4b:35:
07:2b:1e:6c:27:1a:a0:8d:0b:38:bb:f5:4d:ce:30:
bb:ba:cb:e1:8e:78:55:9e:ed:71:6a:6b:27:cb:b2:
e2:41:06:fa:23:e3:79:bc:a7:70:a0:8d:62:40:91:
a5:cb:4b:3f:a6:7f:bf:dc:88:82:ca:53:09:1c:db:
e1:5f:82:84:36:76:d0:c3:32:49:7a:9f:86:28:2b:
6b:3a:ea:44:c8:c7:8c:8b:d0:26:a8:4a:35:8f:8c:
dc:d6:d1:18:d6:c4:fb:d7:7a:49:11:50:e3:ac:8c:
19:92:21:01:a6:18:10:2c:af:12:99:1f:d2:0e:5a:
fb:d3:3a:b2:41:64:9c:19:7e:bb:f7:e5:c5:0c:c0:
89:3d:ec:81:22:a9:96:ee:28:5d:8e:68:ff:c2:af:
2a:f6:69:2e:52:21:e3:80:f2:19:67:ab:8b:0e:45:
d3:2d:b3:f8:92:4a:6a:5d:a1:a7:71:93:c8:e4:ef:
79:36:94:d4:2c:cf:67:25:a0:ea:86:c5:bf:59:d2:
a2:31:1b:9c:a6:e8:19:55:39:f1:ae:a9:99:5f:b3:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9B:C5:68:72:AE:D0:26:E7:3F:74:68:2B:AD:C8:8B:35:9A:B5:FB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UZvFaHKu0CbnP3RoK63IizWatfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.228.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:56:b1:6e:bc:e4:28:5a:f1:99:f4:a7:d3:db:ec:84:2c:a1:
24:ad:d1:64:52:55:3c:f1:44:89:6f:88:6b:36:7e:68:aa:0f:
71:4b:bc:e4:34:cb:6f:c6:4f:6e:32:e2:d3:0b:50:24:10:f0:
b3:63:11:4b:b4:e5:e5:ca:f1:80:d9:bb:8a:54:e5:a2:71:9d:
f7:f1:a6:1d:24:09:21:57:57:79:6f:cf:5a:84:54:22:50:a8:
69:3e:58:7c:f4:38:4e:91:da:1f:76:f1:6c:41:e9:41:34:61:
1c:c1:1b:50:e6:62:19:b3:5c:cc:a1:e6:f9:51:11:35:a9:55:
e3:81:c0:d5:df:11:9a:cc:19:27:a5:fa:1e:5c:16:bd:d7:eb:
f6:f8:2c:56:b3:5e:37:b7:10:2b:89:a5:10:74:3d:46:8b:ba:
d4:83:bc:1a:6c:81:33:fe:57:df:4a:d3:ed:c8:9d:c7:14:c3:
a2:96:85:4d:d2:26:26:53:6c:ed:a9:c7:77:32:19:35:41:e3:
bd:bc:89:b4:8f:aa:08:3c:c2:fb:9f:93:8d:f3:f9:cb:82:08:
37:bc:3a:e8:66:d4:05:7d:07:cf:79:c5:da:ec:90:a2:04:fd:
ec:7d:1c:6a:2f:85:1c:b7:f6:56:03:ab:67:52:dd:69:05:3a:
0d:4f:af:d4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUxOUJDNTY4NzJBRUQw
MjZFNzNGNzQ2ODJCQURDODhCMzU5QUI1RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKeipwiRqmNIhzJs0Cu/S4j/ZfQ8LYTZJLrp0YCkNDYkKqs6Eh
vUHTY45LNQcrHmwnGqCNCzi79U3OMLu6y+GOeFWe7XFqayfLsuJBBvoj43m8p3Cg
jWJAkaXLSz+mf7/ciILKUwkc2+FfgoQ2dtDDMkl6n4YoK2s66kTIx4yL0CaoSjWP
jNzW0RjWxPvXekkRUOOsjBmSIQGmGBAsrxKZH9IOWvvTOrJBZJwZfrv35cUMwIk9
7IEiqZbuKF2OaP/Cryr2aS5SIeOA8hlnq4sORdMts/iSSmpdoadxk8jk73k2lNQs
z2cloOqGxb9Z0qIxG5ym6BlVOfGuqZlfs0J3AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUUZvFaHKu0CbnP3RoK63IizWatfswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVVp2RmFIS3UwQ2JuUDNSb0s2M0lp
eldhdGZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1A5DAN
BgkqhkiG9w0BAQsFAAOCAQEAHVaxbrzkKFrxmfSn09vshCyhJK3RZFJVPPFEiW+I
azZ+aKoPcUu85DTLb8ZPbjLi0wtQJBDws2MRS7Tl5crxgNm7ilTlonGd9/GmHSQJ
IVdXeW/PWoRUIlCoaT5YfPQ4TpHaH3bxbEHpQTRhHMEbUOZiGbNczKHm+VERNalV
44HA1d8RmswZJ6X6HlwWvdfr9vgsVrNeN7cQK4mlEHQ9Rou61IO8GmyBM/5X30rT
7cidxxTDopaFTdImJlNs7anHdzIZNUHjvbyJtI+qCDzC+5+TjfP5y4IIN7w66GbU
BX0Hz3nF2uyQogT97H0cai+FHLf2VgOrZ1LdaQU6DU+v1A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org