Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kxAj_tMvJ1FLahb0dcyDw8Z8yyU.roa
File: kxAj_tMvJ1FLahb0dcyDw8Z8yyU.roa (raw, json)
Hash identifier: 57CIu5v74eNnCaaLY6wgRuOjlJIyPpGtyH62RtLPGHs=
Subject key identifier: 93:10:23:FE:D3:2F:27:51:4B:6A:16:F4:75:CC:83:C3:C6:7C:CB:25
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kxAj_tMvJ1FLahb0dcyDw8Z8yyU.roa
Signing time: Thu 15 Sep 2022 02:43:33 +0000
ROA not before: Thu 15 Sep 2022 02:43:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=931023FED32F27514B6A16F475CC83C3C67CCB25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:87:6c:7a:4a:ae:8c:21:66:a7:3e:97:2f:d6:
89:e6:bb:f9:8a:ff:12:7c:09:be:48:a8:dc:5a:a9:
6c:0d:4c:0d:f3:a1:d7:fb:83:c4:40:08:65:ca:b8:
9d:16:40:b9:22:81:58:4a:40:aa:13:f0:c4:48:a0:
91:77:2a:42:f2:fc:12:83:11:a2:6b:00:8d:8f:d9:
56:ba:b7:b0:59:03:ec:76:8e:99:d2:8d:46:07:9e:
81:24:39:d8:43:a3:ad:a5:f9:3a:11:02:bc:ca:b4:
5c:63:c5:4e:8e:31:21:71:22:e8:8f:5a:99:61:d2:
bb:ad:61:1e:91:ad:43:ba:dc:6d:13:07:2e:97:d2:
e0:ec:08:96:ff:58:d1:cd:17:7c:8a:89:2b:e5:b2:
58:29:b6:4e:b3:3b:15:b8:7d:07:38:d6:db:4a:28:
6b:c2:18:f6:36:bd:12:22:b9:83:d8:d7:70:c1:f5:
3c:51:08:42:b5:6d:47:a6:a6:37:5f:07:e8:ff:c1:
61:c6:82:e1:0e:96:84:85:ef:00:89:db:85:d5:3c:
94:10:c0:d5:ba:ac:6e:4e:91:24:4b:1e:a5:e4:06:
d9:c4:dc:47:2e:14:53:2e:01:36:d0:c8:a2:2a:79:
3e:54:08:64:57:4b:27:6a:2d:62:03:5a:9a:77:63:
88:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:10:23:FE:D3:2F:27:51:4B:6A:16:F4:75:CC:83:C3:C6:7C:CB:25
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kxAj_tMvJ1FLahb0dcyDw8Z8yyU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
03:27:6c:79:47:07:81:e4:df:e3:c3:2c:c6:13:32:65:77:bb:
e3:7a:38:72:52:ae:f4:45:b5:85:21:7d:c3:13:58:97:ce:57:
53:d1:84:d6:a0:00:44:2d:8e:91:10:cf:5a:86:17:79:3f:33:
a6:93:fd:52:ae:4d:3b:a8:22:a4:22:b9:88:65:42:f3:77:95:
55:6a:d9:10:5b:fc:e3:4b:0c:c9:04:9c:86:4c:59:d4:45:b2:
f1:44:8f:78:56:e9:e7:c8:c3:2c:92:e8:10:e4:aa:9e:97:a0:
b7:1e:4f:75:56:4a:90:07:cf:8f:54:26:31:3f:23:3c:59:35:
95:0f:de:0b:1a:57:d5:b5:40:3a:17:7d:e9:94:ef:4f:b8:ea:
b4:79:4c:ec:ea:97:c2:dd:a3:b5:36:33:f5:91:ce:b0:9b:c3:
91:d4:27:6e:6b:57:94:47:ec:c0:87:ba:e6:15:26:4b:57:d5:
aa:6c:21:79:ba:3d:d8:a5:46:ca:1e:9d:47:18:b4:f3:93:97:
4f:a6:b5:f9:9c:b6:e8:48:ac:83:5f:5d:dd:f5:75:73:e5:3f:
6c:4a:48:e1:34:4a:24:14:4d:b6:d3:ae:a2:29:38:34:95:50:
64:e9:99:88:13:a4:0a:34:54:88:c3:b5:e6:a3:6f:27:00:9a:
b4:31:35:b4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDkzMTAyM0ZFRDMyRjI3
NTE0QjZBMTZGNDc1Q0M4M0MzQzY3Q0NCMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEh2x6Sq6MIWanPpcv1onmu/mK/xJ8Cb5IqNxaqWwNTA3zodf7
g8RACGXKuJ0WQLkigVhKQKoT8MRIoJF3KkLy/BKDEaJrAI2P2Va6t7BZA+x2jpnS
jUYHnoEkOdhDo62l+ToRArzKtFxjxU6OMSFxIuiPWplh0rutYR6RrUO63G0TBy6X
0uDsCJb/WNHNF3yKiSvlslgptk6zOxW4fQc41ttKKGvCGPY2vRIiuYPY13DB9TxR
CEK1bUempjdfB+j/wWHGguEOloSF7wCJ24XVPJQQwNW6rG5OkSRLHqXkBtnE3Ecu
FFMuATbQyKIqeT5UCGRXSydqLWIDWpp3Y4gtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUkxAj/tMvJ1FLahb0dcyDw8Z8yyUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva3hBal90TXZKMUZMYWhiMGRjeUR3
OFo4eXlVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9NKADAN
BgkqhkiG9w0BAQsFAAOCAQEAAydseUcHgeTf48MsxhMyZXe743o4clKu9EW1hSF9
wxNYl85XU9GE1qAARC2OkRDPWoYXeT8zppP9Uq5NO6gipCK5iGVC83eVVWrZEFv8
40sMyQSchkxZ1EWy8USPeFbp58jDLJLoEOSqnpegtx5PdVZKkAfPj1QmMT8jPFk1
lQ/eCxpX1bVAOhd96ZTvT7jqtHlM7OqXwt2jtTYz9ZHOsJvDkdQnbmtXlEfswIe6
5hUmS1fVqmwhebo92KVGyh6dRxi085OXT6a1+Zy26Eisg19d3fV1c+U/bEpI4TRK
JBRNttOuoik4NJVQZOmZiBOkCjRUiMO15qNvJwCatDE1tA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org