Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dyzfPbzFOdQN1Y7Hq70vu5nh_Uo.roa
File: dyzfPbzFOdQN1Y7Hq70vu5nh_Uo.roa (raw, json)
Hash identifier: 3KvZhmgHx1eWYeGaCHaUy5+cUew58q9sGF3zd4AxRQM=
Subject key identifier: 77:2C:DF:3D:BC:C5:39:D4:0D:D5:8E:C7:AB:BD:2F:BB:99:E1:FD:4A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dyzfPbzFOdQN1Y7Hq70vu5nh_Uo.roa
Signing time: Thu 15 Sep 2022 02:42:56 +0000
ROA not before: Thu 15 Sep 2022 02:42:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:42:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=772CDF3DBCC539D40DD58EC7ABBD2FBB99E1FD4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1e:81:1e:66:94:5c:a7:dc:2b:82:c8:2e:fc:
0f:58:55:b5:71:9a:fc:08:ff:75:df:b3:5f:ea:8d:
e8:ce:00:01:d1:58:d7:d7:05:a0:99:e9:07:03:a2:
0c:06:39:d1:75:55:97:0e:24:b4:41:31:c4:72:3c:
36:8c:1b:8c:fe:23:4a:84:23:3c:02:e6:2b:f0:ce:
c0:c4:fd:05:9e:d7:81:57:d6:73:e8:91:f4:db:65:
78:07:0d:9e:94:cf:67:e4:ee:74:ce:4b:74:d2:49:
76:c1:a0:12:15:c0:39:01:9b:2c:11:ef:71:4c:6a:
a6:2a:05:be:64:24:bf:da:42:ea:3c:87:49:df:b2:
cf:67:ef:34:86:35:5b:49:73:a5:00:66:8c:a7:25:
bb:17:63:7a:11:7e:11:b4:9e:4f:22:81:af:f0:2b:
de:24:0c:d0:b4:92:e6:68:18:ae:91:46:46:11:7c:
f1:da:1b:fa:3d:aa:79:2a:58:27:8d:15:c3:6b:03:
e3:c1:da:e6:05:15:6d:47:cf:6a:6d:c6:1a:8a:79:
d8:48:07:87:93:87:ed:b8:1c:63:6d:bc:fe:5f:6b:
63:a8:ae:56:e0:f9:fe:0d:a4:cf:c8:8e:fa:5e:59:
15:d7:3c:8b:bd:1b:c6:96:1f:76:ef:2a:c6:5b:fa:
e6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2C:DF:3D:BC:C5:39:D4:0D:D5:8E:C7:AB:BD:2F:BB:99:E1:FD:4A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dyzfPbzFOdQN1Y7Hq70vu5nh_Uo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
48:75:7e:81:f9:6c:12:a4:e4:98:d3:e8:fc:f4:e1:d1:4a:c6:
df:d6:3d:4b:cb:da:be:7e:51:96:48:3a:73:a7:66:97:12:8a:
bd:bb:6e:86:ce:68:98:74:9e:45:d5:05:65:30:36:58:ba:35:
6f:9c:85:1f:0a:c5:c5:46:d4:a1:53:85:f2:da:1e:ee:91:4b:
00:63:10:bc:d1:9d:d5:15:1c:3c:23:66:f9:7c:12:a3:af:08:
cf:d1:7d:c9:42:aa:31:99:fc:5c:87:5d:32:26:65:35:f8:94:
9c:af:4e:62:67:f4:0b:e4:43:fc:b9:ad:82:51:dc:53:df:3c:
7f:8d:70:ef:2d:0a:c4:30:80:b8:29:75:ab:86:16:a3:7d:d2:
0c:82:02:82:6c:d0:12:fe:28:5f:09:6c:9b:e5:eb:b0:ee:ac:
4f:93:01:50:4e:de:f2:57:1c:41:3e:ee:cb:fe:fe:b0:8f:8a:
a2:19:7d:75:67:b7:68:38:b7:68:1a:b5:19:b7:51:5e:13:23:
70:7a:82:9a:1b:ba:e3:5c:f8:e9:94:2a:5f:58:4c:be:8c:5c:
02:71:63:b9:5e:b6:a2:3b:42:e9:ec:b0:90:09:13:5c:74:e0:
35:92:0a:a1:e2:bf:12:2b:16:15:fc:63:c3:2c:fd:5f:d0:dc:
a3:8b:17:a7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMjA5MTUw
MjQyNTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc3MkNERjNEQkNDNTM5
RDQwREQ1OEVDN0FCQkQyRkJCOTlFMUZENEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmHoEeZpRcp9wrgsgu/A9YVbVxmvwI/3Xfs1/qjejOAAHRWNfX
BaCZ6QcDogwGOdF1VZcOJLRBMcRyPDaMG4z+I0qEIzwC5ivwzsDE/QWe14FX1nPo
kfTbZXgHDZ6Uz2fk7nTOS3TSSXbBoBIVwDkBmywR73FMaqYqBb5kJL/aQuo8h0nf
ss9n7zSGNVtJc6UAZoynJbsXY3oRfhG0nk8iga/wK94kDNC0kuZoGK6RRkYRfPHa
G/o9qnkqWCeNFcNrA+PB2uYFFW1Hz2ptxhqKedhIB4eTh+24HGNtvP5fa2Oorlbg
+f4NpM/IjvpeWRXXPIu9G8aWH3bvKsZb+uYZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdyzfPbzFOdQN1Y7Hq70vu5nh/UowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZHl6ZlBiekZPZFFOMVk3SHE3MHZ1
NW5oX1VvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN
BgkqhkiG9w0BAQsFAAOCAQEASHV+gflsEqTkmNPo/PTh0UrG39Y9S8vavn5Rlkg6
c6dmlxKKvbtuhs5omHSeRdUFZTA2WLo1b5yFHwrFxUbUoVOF8toe7pFLAGMQvNGd
1RUcPCNm+XwSo68Iz9F9yUKqMZn8XIddMiZlNfiUnK9OYmf0C+RD/LmtglHcU988
f41w7y0KxDCAuCl1q4YWo33SDIICgmzQEv4oXwlsm+XrsO6sT5MBUE7e8lccQT7u
y/7+sI+Kohl9dWe3aDi3aBq1GbdRXhMjcHqCmhu641z46ZQqX1hMvoxcAnFjuV62
ojtC6eywkAkTXHTgNZIKoeK/EisWFfxjwyz9X9Dco4sXpw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org