Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xe7vfCVPDEnpaEK5PsUHOO3ALAc.roa
File: Xe7vfCVPDEnpaEK5PsUHOO3ALAc.roa (raw, json)
Hash identifier: tL0NwUUjYXzNI45CvakNXpXoz9MAwnSEkG2xwb0fx9M=
Subject key identifier: 5D:EE:EF:7C:25:4F:0C:49:E9:68:42:B9:3E:C5:07:38:ED:C0:2C:07
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 107E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xe7vfCVPDEnpaEK5PsUHOO3ALAc.roa
Signing time: Wed 01 Feb 2023 10:28:37 +0000
ROA not before: Wed 01 Feb 2023 10:28:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.104.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4222 (0x107e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:37 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5DEEEF7C254F0C49E96842B93EC50738EDC02C07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:95:20:2e:c8:3d:d2:21:c8:49:e2:46:01:
f7:bc:c1:4b:13:0b:97:3c:6b:ee:20:45:9e:12:8e:
ba:82:1a:82:43:bb:af:03:88:d5:2a:8f:c9:6d:ea:
6b:ff:24:13:2e:bb:75:61:6e:82:8c:8f:44:6a:66:
ad:89:43:65:e2:a6:46:92:7d:4e:57:0b:c8:61:9f:
3d:a6:13:46:fa:16:c7:ea:fa:d5:8a:34:bf:13:81:
44:e1:16:12:f4:9b:c7:45:98:ae:43:23:f6:44:9a:
ae:8d:cd:9e:69:29:89:af:0b:12:ef:a7:ae:97:fc:
d9:ab:1e:8b:74:c6:56:81:b1:19:ef:91:c0:6b:80:
58:43:96:9a:50:68:d4:30:5d:fc:77:a1:77:3b:b9:
d3:5c:39:f4:bf:14:a4:04:93:42:3e:a9:2f:a8:9a:
2c:b1:94:69:8c:0a:85:13:6b:f8:f0:3b:23:ca:cc:
5b:46:c0:4e:87:39:2d:6d:4f:70:6c:b2:c8:0b:98:
b4:a2:27:d9:f3:c4:78:60:59:a0:e2:fe:e2:99:82:
46:fb:9c:bb:89:bf:af:40:82:64:7c:6f:8b:fb:d9:
61:28:b0:6e:46:ca:f7:b9:96:11:d1:f8:5a:7f:90:
71:b0:46:09:d2:e5:ae:6a:0f:ec:25:03:21:dc:66:
85:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EE:EF:7C:25:4F:0C:49:E9:68:42:B9:3E:C5:07:38:ED:C0:2C:07
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xe7vfCVPDEnpaEK5PsUHOO3ALAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.104.0/22
Signature Algorithm: sha256WithRSAEncryption
43:34:ef:7e:a7:a4:8b:a9:6f:18:98:6a:3f:b3:8e:94:5d:73:
8f:b0:c3:1b:95:58:22:1e:61:e4:e7:0c:94:20:76:6e:27:31:
84:37:43:8d:66:44:0a:e6:b3:7d:a7:04:5d:4d:03:9a:a7:61:
ff:4d:e0:02:25:98:6b:74:27:ff:45:fe:1b:38:0e:2d:f6:24:
62:f2:18:9c:50:79:45:ea:81:03:4c:21:31:20:0d:ba:5d:97:
24:2b:83:6b:1a:54:74:fd:27:fb:e8:81:a4:36:7e:23:41:1a:
6f:06:ab:f4:d0:3c:c7:e1:4d:84:38:7b:d7:22:10:de:99:8a:
bd:9f:9d:a8:a7:31:74:38:a6:66:2c:10:0e:6c:11:0a:59:62:
7f:f5:b2:7a:bd:5f:09:e5:a6:81:2c:f1:59:87:3e:19:7a:81:
fd:87:79:4a:3e:92:c4:cc:d9:6b:e1:ff:cd:0d:95:d9:99:43:
9a:3e:aa:05:33:86:8c:65:f2:df:5b:b0:46:95:73:d7:3a:5b:
bb:62:a1:c3:9f:ba:70:e0:3a:40:16:ac:7d:ad:61:7c:7b:75:
40:c2:fe:5c:2f:59:2d:a6:d2:73:53:4b:aa:10:84:5c:0e:80:
36:cf:8b:a9:f7:13:3d:01:f1:6c:b1:2d:d8:a0:eb:ef:72:12:
a7:2c:3e:2c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MzdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVERUVFRjdDMjU0RjBD
NDlFOTY4NDJCOTNFQzUwNzM4RURDMDJDMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsd5UgLsg90iHISeJGAfe8wUsTC5c8a+4gRZ4SjrqCGoJDu68D
iNUqj8lt6mv/JBMuu3VhboKMj0RqZq2JQ2XipkaSfU5XC8hhnz2mE0b6Fsfq+tWK
NL8TgUThFhL0m8dFmK5DI/ZEmq6NzZ5pKYmvCxLvp66X/NmrHot0xlaBsRnvkcBr
gFhDlppQaNQwXfx3oXc7udNcOfS/FKQEk0I+qS+omiyxlGmMCoUTa/jwOyPKzFtG
wE6HOS1tT3BsssgLmLSiJ9nzxHhgWaDi/uKZgkb7nLuJv69AgmR8b4v72WEosG5G
yve5lhHR+Fp/kHGwRgnS5a5qD+wlAyHcZoWnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXe7vfCVPDEnpaEK5PsUHOO3ALAcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGU3dmZDVlBERW5wYUVLNVBzVUhP
TzNBTEFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmppaDAN
BgkqhkiG9w0BAQsFAAOCAQEAQzTvfqeki6lvGJhqP7OOlF1zj7DDG5VYIh5h5OcM
lCB2bicxhDdDjWZECuazfacEXU0Dmqdh/03gAiWYa3Qn/0X+GzgOLfYkYvIYnFB5
ReqBA0whMSANul2XJCuDaxpUdP0n++iBpDZ+I0Eabwar9NA8x+FNhDh71yIQ3pmK
vZ+dqKcxdDimZiwQDmwRCllif/Wyer1fCeWmgSzxWYc+GXqB/Yd5Sj6SxMzZa+H/
zQ2V2ZlDmj6qBTOGjGXy31uwRpVz1zpbu2Khw5+6cOA6QBasfa1hfHt1QML+XC9Z
LabSc1NLqhCEXA6ANs+LqfcTPQHxbLEt2KDr73ISpyw+LA==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:51 2023 by rpki-client on console-ams.rpki-client.org