Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eoc3NQTSDi-OKDnWGan9eBWorWA.roa
File: eoc3NQTSDi-OKDnWGan9eBWorWA.roa (raw, json)
Hash identifier: Nn2xidsA8PBNQlUAxlY2pxXoqPgX8TsiJ7Fi8SL14QQ=
Subject key identifier: 7A:87:37:35:04:D2:0E:2F:8E:28:39:D6:19:A9:FD:78:15:A8:AD:60
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 108A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eoc3NQTSDi-OKDnWGan9eBWorWA.roa
Signing time: Wed 01 Feb 2023 10:28:41 +0000
ROA not before: Wed 01 Feb 2023 10:28:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4234 (0x108a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:41 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7A87373504D20E2F8E2839D619A9FD7815A8AD60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:00:9d:4b:43:49:bc:1b:0e:92:b6:61:af:ce:
8b:50:38:19:f6:10:d2:b5:2d:58:b3:2b:c3:85:4f:
17:33:2d:62:93:4d:fd:92:57:93:d4:da:b6:bc:f8:
cf:18:7c:27:fb:1e:34:7d:94:84:a5:fc:e8:22:dc:
53:6e:4a:dd:8d:c3:7e:33:84:90:96:cd:56:c4:ee:
31:d5:7b:d0:9b:61:2d:b0:a5:d0:80:da:e6:cc:47:
e0:ae:e8:23:3f:83:36:9f:78:3d:76:b1:24:ea:d7:
71:a9:a5:db:8b:fe:96:d9:c3:30:d0:3c:8a:42:42:
ee:38:57:1b:89:cb:ab:b0:4f:81:1f:f6:86:07:58:
47:f1:30:54:55:0b:2e:87:24:3e:0c:72:03:e9:9b:
9d:04:0b:3e:d2:09:bd:65:23:d0:51:94:5c:95:2a:
51:d4:5e:35:22:4e:95:ad:8c:37:2e:7d:20:24:49:
a1:24:81:f9:0e:b5:77:99:71:ef:1b:de:73:10:ef:
76:a9:7c:1a:2d:99:ea:e2:ae:d3:0b:55:44:1f:ad:
3e:b0:66:4b:73:7e:09:71:01:b5:99:3b:7d:06:a7:
30:9a:33:9e:5c:65:97:a3:a8:d1:3b:6c:12:8c:a1:
56:f3:e4:70:79:df:6e:35:d1:73:31:0c:6b:82:86:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:87:37:35:04:D2:0E:2F:8E:28:39:D6:19:A9:FD:78:15:A8:AD:60
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eoc3NQTSDi-OKDnWGan9eBWorWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
3c:02:ef:86:ef:90:d4:d5:53:4e:c1:4e:dd:a3:e5:17:1d:8b:
40:99:e3:ae:89:ba:69:e6:89:bc:1d:71:db:83:d5:40:38:ca:
e8:4b:db:48:d9:7a:a4:a3:b0:4b:b3:f7:1b:46:5e:e6:ea:33:
41:2a:2f:62:91:d7:6c:d9:d6:81:a6:1a:31:27:52:29:46:83:
08:7b:ed:97:86:77:61:6c:d6:72:8c:8e:32:a3:61:36:13:4a:
b2:8e:16:8b:0e:c1:60:c1:16:4e:93:4e:20:6e:ad:98:bd:f8:
92:a9:14:b5:64:fd:50:a6:0f:5e:c5:9e:df:c5:81:57:e4:be:
15:04:61:7e:ac:0b:b4:7e:55:2d:b2:cc:f8:0c:dd:ed:6b:6e:
ab:69:92:ec:31:c0:34:dc:df:85:89:e0:6f:b3:f3:b0:2a:3f:
64:cc:3c:22:59:f0:2d:04:c4:6d:9f:ce:6e:b1:c8:ae:91:dd:
9c:4b:be:70:ea:10:43:2d:d7:be:35:50:dd:3c:33:e7:b8:3e:
b6:dc:7c:80:92:d4:b1:7f:3f:a2:93:d1:e6:3b:4d:78:59:bb:
9c:76:16:de:1a:20:65:cc:77:5a:d9:75:bb:49:8f:48:93:2a:
94:e0:87:13:b0:af:6b:cf:e6:88:6e:b8:3a:c8:a1:ab:99:f0:
fc:98:ab:1c
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdBODczNzM1MDREMjBF
MkY4RTI4MzlENjE5QTlGRDc4MTVBOEFENjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1AJ1LQ0m8Gw6StmGvzotQOBn2ENK1LVizK8OFTxczLWKTTf2S
V5PU2ra8+M8YfCf7HjR9lISl/Ogi3FNuSt2Nw34zhJCWzVbE7jHVe9CbYS2wpdCA
2ubMR+Cu6CM/gzafeD12sSTq13GppduL/pbZwzDQPIpCQu44VxuJy6uwT4Ef9oYH
WEfxMFRVCy6HJD4McgPpm50ECz7SCb1lI9BRlFyVKlHUXjUiTpWtjDcufSAkSaEk
gfkOtXeZce8b3nMQ73apfBotmerirtMLVUQfrT6wZktzfglxAbWZO30GpzCaM55c
ZZejqNE7bBKMoVbz5HB532410XMxDGuChhr5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUeoc3NQTSDi+OKDnWGan9eBWorWAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZW9jM05RVFNEaS1PS0RuV0dhbjll
QldvcldBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G
CSqGSIb3DQEBCwUAA4IBAQA8Au+G75DU1VNOwU7do+UXHYtAmeOuibpp5om8HXHb
g9VAOMroS9tI2Xqko7BLs/cbRl7m6jNBKi9ikdds2daBphoxJ1IpRoMIe+2Xhndh
bNZyjI4yo2E2E0qyjhaLDsFgwRZOk04gbq2YvfiSqRS1ZP1Qpg9exZ7fxYFX5L4V
BGF+rAu0flUtssz4DN3ta26raZLsMcA03N+FieBvs/OwKj9kzDwiWfAtBMRtn85u
sciukd2cS75w6hBDLde+NVDdPDPnuD623HyAktSxfz+ik9HmO014WbucdhbeGiBl
zHda2XW7SY9IkyqU4IcTsK9rz+aIbrg6yKGrmfD8mKsc
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org