Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jSV6WSKX_PeGzTMg4zB9PSjIh1U.roa
File: jSV6WSKX_PeGzTMg4zB9PSjIh1U.roa (raw, json)
Hash identifier: 7NtXV3O3CXAtoh/+1v/wo0b1ewIiYDfAKTphPhuwQmQ=
Subject key identifier: 8D:25:7A:59:22:97:FC:F7:86:CD:33:20:E3:30:7D:3D:28:C8:87:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1029
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jSV6WSKX_PeGzTMg4zB9PSjIh1U.roa
Signing time: Wed 01 Feb 2023 10:28:13 +0000
ROA not before: Wed 01 Feb 2023 10:28:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 106.105.72.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4137 (0x1029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8D257A592297FCF786CD3320E3307D3D28C88755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:c7:22:59:ae:35:6b:ef:6a:c9:c1:5e:70:
bf:85:9f:16:2f:8f:45:cc:58:39:62:4b:e1:e4:82:
23:b9:cd:83:a8:48:d8:c0:82:0f:2c:16:4c:7b:d0:
e7:da:47:fb:6f:9c:ad:dd:bd:61:3e:90:47:67:14:
f0:67:be:c5:d7:06:1f:c1:34:2e:24:4c:51:61:0c:
84:f1:13:93:36:61:06:d8:82:da:ee:3d:30:a2:de:
81:e6:63:2f:80:fe:d1:08:c4:6e:53:bc:ac:ff:ef:
bc:db:ca:20:a3:9c:f1:a5:50:db:2d:f9:76:2c:ec:
ad:2c:fb:78:a5:66:69:49:3d:e9:8e:05:4f:38:50:
34:0e:78:d3:61:87:ee:13:12:a7:dd:8d:b3:e1:29:
22:d0:1f:4c:fb:b8:92:2d:27:2b:fe:8b:03:90:17:
1e:26:bc:3d:3b:29:9b:a0:2e:63:a7:67:9e:a8:e3:
76:a6:a4:a2:6a:e6:5b:7e:4c:c7:11:9a:04:dc:ec:
72:89:df:9b:97:99:56:39:2e:7d:67:36:59:eb:13:
94:7d:b2:8a:16:52:b9:7a:59:4c:9a:5f:2f:ab:ed:
ef:13:ea:d9:ab:f6:e6:5a:c3:90:9a:cb:7c:a6:7d:
9f:73:95:cc:31:41:34:03:44:da:1f:89:37:d4:76:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:25:7A:59:22:97:FC:F7:86:CD:33:20:E3:30:7D:3D:28:C8:87:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jSV6WSKX_PeGzTMg4zB9PSjIh1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.72.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:c5:4c:bb:4e:47:15:f2:d1:6c:07:da:82:d4:b2:14:0c:ff:
18:9d:d8:09:28:4e:6d:79:4e:06:ed:a7:fa:38:46:5e:fa:2e:
37:58:fa:31:4b:b1:8c:be:1a:2c:6e:0b:e1:7e:7a:4b:b4:d9:
e6:77:81:2e:3f:3c:c8:6e:38:17:01:fc:d2:c4:94:a0:d9:b3:
f1:35:b7:86:94:89:65:22:c6:48:7a:2b:fb:88:9b:5c:de:73:
4a:ce:4c:50:e0:1b:f9:0f:3e:e1:55:98:ab:59:d1:34:1d:d6:
3d:d8:ae:82:d8:8b:a0:4b:6b:ae:63:88:43:cf:8a:0d:52:45:
e3:e9:7d:d1:52:07:00:db:d7:0c:e1:52:e1:11:d4:9e:5d:e0:
c3:a6:f0:26:f6:de:f1:fa:f2:60:39:30:90:45:fc:69:96:dd:
37:96:68:09:e8:e8:30:d3:05:9f:d6:08:da:57:49:ea:70:b8:
72:aa:31:98:8e:db:c6:af:0a:44:6c:42:07:47:33:86:e6:82:
ce:f1:40:ad:ca:3e:3f:2a:b5:f7:e1:49:36:2e:01:28:17:ec:
2f:10:f5:d3:3d:2d:8e:42:2f:fa:92:97:0c:22:89:82:95:8b:
69:6f:15:8e:dc:53:d8:dd:2d:5e:65:7a:bd:25:ed:46:d1:13:
89:4f:b6:35
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICECkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhEMjU3QTU5MjI5N0ZD
Rjc4NkNEMzMyMEUzMzA3RDNEMjhDODg3NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3Q8ciWa41a+9qycFecL+FnxYvj0XMWDliS+HkgiO5zYOoSNjA
gg8sFkx70OfaR/tvnK3dvWE+kEdnFPBnvsXXBh/BNC4kTFFhDITxE5M2YQbYgtru
PTCi3oHmYy+A/tEIxG5TvKz/77zbyiCjnPGlUNst+XYs7K0s+3ilZmlJPemOBU84
UDQOeNNhh+4TEqfdjbPhKSLQH0z7uJItJyv+iwOQFx4mvD07KZugLmOnZ56o43am
pKJq5lt+TMcRmgTc7HKJ35uXmVY5Ln1nNlnrE5R9sooWUrl6WUyaXy+r7e8T6tmr
9uZaw5Cay3ymfZ9zlcwxQTQDRNofiTfUdo2LAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUjSV6WSKX/PeGzTMg4zB9PSjIh1UwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvalNWNldTS1hfUGVHelRNZzR6QjlQ
U2pJaDFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppSDAN
BgkqhkiG9w0BAQsFAAOCAQEADsVMu05HFfLRbAfagtSyFAz/GJ3YCShObXlOBu2n
+jhGXvouN1j6MUuxjL4aLG4L4X56S7TZ5neBLj88yG44FwH80sSUoNmz8TW3hpSJ
ZSLGSHor+4ibXN5zSs5MUOAb+Q8+4VWYq1nRNB3WPdiugtiLoEtrrmOIQ8+KDVJF
4+l90VIHANvXDOFS4RHUnl3gw6bwJvbe8fryYDkwkEX8aZbdN5ZoCejoMNMFn9YI
2ldJ6nC4cqoxmI7bxq8KRGxCB0czhuaCzvFArco+Pyq19+FJNi4BKBfsLxD10z0t
jkIv+pKXDCKJgpWLaW8VjtxT2N0tXmV6vSXtRtETiU+2NQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org