Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBaRf-q_UX4F0_suNuUptv1wT-Q.roa
File: aBaRf-q_UX4F0_suNuUptv1wT-Q.roa (raw, json)
Hash identifier: /+ydxGkSWVRu8qUNWmYgXm6HiPH6mFDpl4TxsejJg0Q=
Subject key identifier: 68:16:91:7F:EA:BF:51:7E:05:D3:FB:2E:36:E5:29:B6:FD:70:4F:E4
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBaRf-q_UX4F0_suNuUptv1wT-Q.roa
Signing time: Thu 15 Sep 2022 02:43:26 +0000
ROA not before: Thu 15 Sep 2022 02:43:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6816917FEABF517E05D3FB2E36E529B6FD704FE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:4d:8d:aa:5d:bd:af:e5:be:94:24:da:57:
3e:9a:24:76:f8:85:d4:ff:36:01:0d:52:05:d7:22:
c4:4b:1b:b2:93:e9:9a:ee:4b:10:80:40:29:8e:bf:
ce:7c:80:1d:7d:c2:9d:e1:ca:ce:df:3c:13:a5:3d:
7b:ce:ec:90:e2:53:78:90:a2:1e:46:b8:30:5b:fc:
f9:cd:5c:e4:75:60:08:c8:e9:69:7f:67:d6:fa:de:
8e:6b:e9:cc:d3:99:30:c2:e0:be:ff:9d:2d:a6:99:
86:38:76:e3:24:07:be:9d:ab:2a:49:52:5e:47:bc:
75:46:b3:3b:ab:7f:6b:9d:ba:d0:38:7d:74:3a:0f:
17:09:f5:cd:69:95:c2:63:4b:d8:85:db:f7:f0:e5:
f5:0c:77:9e:91:4c:2b:b7:58:c2:34:f9:96:50:f0:
cd:83:47:d9:31:72:96:89:7a:17:a7:52:f8:8d:01:
bd:49:64:19:e3:86:59:aa:4a:f5:92:2e:fe:db:e6:
0f:1c:fa:b4:d9:36:1d:85:97:a9:7f:12:1e:3c:7b:
57:40:ea:56:19:80:0f:0a:a3:5f:b2:57:49:6a:23:
76:f4:e3:71:d7:bf:43:75:ad:e8:47:96:2e:8b:bb:
48:86:3e:7a:44:6b:6e:ce:87:99:21:1d:e0:6a:9f:
fe:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:16:91:7F:EA:BF:51:7E:05:D3:FB:2E:36:E5:29:B6:FD:70:4F:E4
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBaRf-q_UX4F0_suNuUptv1wT-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:ac:3f:45:7d:40:99:ec:c9:fc:5a:0c:83:e4:93:e2:a5:76:
5d:67:24:05:94:0b:38:92:a8:50:87:8f:5e:df:1a:3b:93:4c:
b5:78:31:5a:79:1a:13:a8:f6:7a:a4:06:af:db:53:04:4a:d3:
d8:d5:44:95:0e:d8:4b:b2:8f:ed:16:34:9d:a6:6d:14:4f:28:
54:84:70:8d:bf:0e:d4:bb:a0:20:50:f9:51:05:4d:49:8e:4d:
67:cd:64:2d:ac:40:5c:37:e6:76:8d:41:be:92:e1:96:8c:d7:
7b:36:f1:e3:8a:89:9d:f9:28:5c:ec:a1:c1:a6:99:55:95:c4:
94:b3:6f:44:71:8d:c7:25:12:ac:1f:01:5a:4c:ca:a6:c3:9a:
e4:0c:99:98:f3:bc:ee:90:9f:55:0c:0c:28:b4:9e:13:03:2e:
4c:03:2d:23:fe:19:08:8f:b6:6a:94:87:ae:58:96:63:24:88:
e5:69:d4:e0:ca:2f:10:ad:08:01:fc:88:5b:2e:86:95:09:db:
d4:79:2c:b1:9c:33:ea:e1:71:ec:60:6d:76:42:98:de:7a:da:
2a:8c:e1:e2:ef:d0:ff:dc:48:6b:5a:40:8f:90:c6:f4:b1:3d:
20:60:af:a5:e5:ec:ea:48:0a:09:c0:28:a3:81:cc:28:62:85:
c0:35:ea:5b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMjA5MTUw
MjQzMjZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY4MTY5MTdGRUFCRjUx
N0UwNUQzRkIyRTM2RTUyOUI2RkQ3MDRGRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDElU2Nql29r+W+lCTaVz6aJHb4hdT/NgENUgXXIsRLG7KT6Zru
SxCAQCmOv858gB19wp3hys7fPBOlPXvO7JDiU3iQoh5GuDBb/PnNXOR1YAjI6Wl/
Z9b63o5r6czTmTDC4L7/nS2mmYY4duMkB76dqypJUl5HvHVGszurf2udutA4fXQ6
DxcJ9c1plcJjS9iF2/fw5fUMd56RTCu3WMI0+ZZQ8M2DR9kxcpaJehenUviNAb1J
ZBnjhlmqSvWSLv7b5g8c+rTZNh2Fl6l/Eh48e1dA6lYZgA8Ko1+yV0lqI3b043HX
v0N1rehHli6Lu0iGPnpEa27Oh5khHeBqn/7tAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUaBaRf+q/UX4F0/suNuUptv1wT+QwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYUJhUmYtcV9VWDRGMF9zdU51VXB0
djF3VC1RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN
BgkqhkiG9w0BAQsFAAOCAQEAbaw/RX1AmezJ/FoMg+ST4qV2XWckBZQLOJKoUIeP
Xt8aO5NMtXgxWnkaE6j2eqQGr9tTBErT2NVElQ7YS7KP7RY0naZtFE8oVIRwjb8O
1LugIFD5UQVNSY5NZ81kLaxAXDfmdo1BvpLhlozXezbx44qJnfkoXOyhwaaZVZXE
lLNvRHGNxyUSrB8BWkzKpsOa5AyZmPO87pCfVQwMKLSeEwMuTAMtI/4ZCI+2apSH
rliWYySI5WnU4MovEK0IAfyIWy6GlQnb1HkssZwz6uFx7GBtdkKY3nraKozh4u/Q
/9xIa1pAj5DG9LE9IGCvpeXs6kgKCcAoo4HMKGKFwDXqWw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org