Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zpcu6slfkYjGBrZjAeKQD0E3IOI.roa
File: Zpcu6slfkYjGBrZjAeKQD0E3IOI.roa (raw, json)
Hash identifier: 1EfUwUliTc93NvI4WrJYdH4Lpupyx4EeWCl1S3NzNi8=
Subject key identifier: 66:97:2E:EA:C9:5F:91:88:C6:06:B6:63:01:E2:90:0F:41:37:20:E2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10AA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zpcu6slfkYjGBrZjAeKQD0E3IOI.roa
Signing time: Wed 01 Feb 2023 10:28:51 +0000
ROA not before: Wed 01 Feb 2023 10:28:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4266 (0x10aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=66972EEAC95F9188C606B66301E2900F413720E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b3:be:09:55:bd:2f:f8:bb:cb:76:e6:15:79:
12:23:b3:b0:1a:ee:53:51:e1:3d:98:6a:cc:b8:55:
f2:cc:10:ba:a0:65:ef:57:7a:fa:be:4e:3e:ae:01:
97:bb:5b:ad:16:a5:ee:bf:65:f4:b9:a9:26:af:58:
80:9e:b6:17:79:95:07:72:0e:df:8b:63:df:13:2f:
16:86:c8:50:a1:87:87:6a:8a:ae:f8:35:7b:d9:5a:
73:ca:c4:de:58:d6:0d:0b:96:87:5f:5d:01:89:4b:
69:14:e3:1f:17:11:09:b8:e7:00:c2:24:89:50:44:
9e:b2:fd:7d:51:38:ef:a0:5d:fa:0a:f5:34:b0:8f:
22:31:b0:29:8d:de:3b:ad:7f:47:45:61:83:29:a4:
80:33:e8:d1:6e:3c:01:11:6c:38:b4:ed:27:21:14:
5a:64:57:52:0d:34:f2:b0:34:b9:b5:3a:dd:8c:92:
41:a8:10:3c:27:34:83:8a:e1:07:4b:a7:21:25:07:
a2:ee:14:6b:ad:ac:21:be:d4:56:06:a2:9e:85:05:
22:00:6d:93:f9:9f:71:d7:06:54:c9:10:52:43:5f:
03:40:cb:54:81:ce:92:ae:11:ca:d5:fa:54:de:f7:
7b:62:d1:32:3e:39:48:a4:d0:f4:32:c4:1a:ec:78:
ec:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:97:2E:EA:C9:5F:91:88:C6:06:B6:63:01:E2:90:0F:41:37:20:E2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zpcu6slfkYjGBrZjAeKQD0E3IOI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:95:b2:4d:5e:ba:08:f7:dd:03:f4:2c:26:d6:93:04:c4:7b:
eb:8b:2b:32:28:28:52:45:ac:42:c1:e2:68:d3:9f:91:d9:a5:
5d:b8:8d:dd:e4:5f:2c:e8:14:de:15:1d:48:4e:cc:31:37:f9:
c3:92:06:65:cf:df:c3:45:a5:c3:17:fd:a3:fc:31:06:9d:c6:
85:5b:b8:d6:6c:18:58:60:f0:9c:7b:6d:a0:3a:d6:f3:e3:a8:
4c:62:fe:f0:16:04:cc:6e:91:58:94:ba:b2:1d:2c:b8:af:bd:
ab:cd:79:02:c3:e1:79:a7:68:3c:4f:e1:af:b3:6c:86:ea:c2:
b0:f5:c4:8c:41:7d:7f:83:00:25:42:d0:9b:9b:13:b3:be:4b:
28:dd:7f:5a:0f:e6:00:31:36:cc:b6:c7:7a:6f:fe:88:d2:8d:
fa:61:92:49:fc:b3:df:5a:f7:7a:39:a6:de:1e:87:d5:69:92:
75:19:ec:4a:af:7a:63:51:77:66:c7:1b:97:f9:09:51:02:70:
23:e5:23:b2:4e:72:57:10:8b:7c:97:1b:f9:d8:c8:3a:57:42:
e6:0e:ca:08:fb:b6:6b:26:22:e6:a9:79:e5:0a:cb:76:99:63:
7c:3d:f6:99:1e:94:f5:02:3e:bc:cf:96:9a:71:fc:08:fa:b6:
eb:f8:5e:d9
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY2OTcyRUVBQzk1Rjkx
ODhDNjA2QjY2MzAxRTI5MDBGNDEzNzIwRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXs74JVb0v+LvLduYVeRIjs7Aa7lNR4T2Yasy4VfLMELqgZe9X
evq+Tj6uAZe7W60Wpe6/ZfS5qSavWICethd5lQdyDt+LY98TLxaGyFChh4dqiq74
NXvZWnPKxN5Y1g0LlodfXQGJS2kU4x8XEQm45wDCJIlQRJ6y/X1ROO+gXfoK9TSw
jyIxsCmN3jutf0dFYYMppIAz6NFuPAERbDi07SchFFpkV1INNPKwNLm1Ot2MkkGo
EDwnNIOK4QdLpyElB6LuFGutrCG+1FYGop6FBSIAbZP5n3HXBlTJEFJDXwNAy1SB
zpKuEcrV+lTe93ti0TI+OUik0PQyxBrseOwJAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUZpcu6slfkYjGBrZjAeKQD0E3IOIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWnBjdTZzbGZrWWpHQnJaakFlS1FE
MEUzSU9JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G
CSqGSIb3DQEBCwUAA4IBAQCIlbJNXroI990D9Cwm1pMExHvriysyKChSRaxCweJo
05+R2aVduI3d5F8s6BTeFR1ITswxN/nDkgZlz9/DRaXDF/2j/DEGncaFW7jWbBhY
YPCce22gOtbz46hMYv7wFgTMbpFYlLqyHSy4r72rzXkCw+F5p2g8T+Gvs2yG6sKw
9cSMQX1/gwAlQtCbmxOzvkso3X9aD+YAMTbMtsd6b/6I0o36YZJJ/LPfWvd6Oabe
HofVaZJ1GexKr3pjUXdmxxuX+QlRAnAj5SOyTnJXEIt8lxv52Mg6V0LmDsoI+7Zr
JiLmqXnlCst2mWN8PfaZHpT1Aj68z5aacfwI+rbr+F7Z
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org