Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/l4nNhp6r6cl-5vldllbL8EAW76E.roa
File: l4nNhp6r6cl-5vldllbL8EAW76E.roa (raw, json)
Hash identifier: WpSqoQo2eEkNJEnMMcqZWaJ5ozWHNT529HVxnNjTdCE=
Subject key identifier: 97:89:CD:86:9E:AB:E9:C9:7E:E6:F9:5D:96:56:CB:F0:40:16:EF:A1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 108E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l4nNhp6r6cl-5vldllbL8EAW76E.roa
Signing time: Wed 01 Feb 2023 10:28:42 +0000
ROA not before: Wed 01 Feb 2023 10:28:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 106.105.232.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4238 (0x108e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9789CD869EABE9C97EE6F95D9656CBF04016EFA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:7c:be:0d:71:f6:a4:17:98:f6:8a:25:78:
63:80:0e:c4:48:17:d0:0c:25:df:ad:48:e3:95:17:
a0:17:b0:fb:c7:2e:6b:61:0c:b9:3b:5a:e0:6f:c6:
4e:af:78:72:28:68:3a:01:40:12:7b:0f:f9:ee:04:
a9:0d:1e:88:5a:78:68:3c:ab:c5:7e:50:37:35:04:
91:1d:f2:8c:f4:9b:da:40:ea:11:da:fb:7a:6b:ad:
13:14:92:28:ec:f2:18:39:4a:f2:9c:79:98:9a:a0:
bc:22:c3:4b:6d:58:50:3a:44:3e:f3:2d:86:19:ff:
5e:c8:12:1d:f3:cd:9d:55:93:f3:c6:70:7a:5c:6a:
b0:73:40:be:1b:d0:ab:3d:e9:29:67:ff:9c:7b:fc:
cf:55:b3:80:79:a4:b5:87:e7:f0:f9:e9:b6:ad:2e:
19:3b:53:bd:3d:45:82:0b:d5:b3:03:70:10:7e:65:
3e:d4:29:b7:07:c4:e2:11:c4:6e:6e:e5:ab:33:fd:
f3:bf:12:ed:a3:fe:3d:28:6e:8d:7a:81:1d:dc:af:
2c:fb:de:f6:33:6d:00:60:38:a1:48:ab:0d:54:da:
04:00:a1:fb:46:21:52:b3:b5:33:fc:8f:4e:49:33:
25:62:42:83:c7:4c:87:fd:5c:f1:18:13:8e:c0:95:
ab:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:89:CD:86:9E:AB:E9:C9:7E:E6:F9:5D:96:56:CB:F0:40:16:EF:A1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l4nNhp6r6cl-5vldllbL8EAW76E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.232.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:b5:f1:16:ea:70:60:26:f9:a5:b2:91:e3:f4:51:e3:15:6f:
3f:ee:23:c9:74:6e:d7:8b:6e:79:81:73:a4:0f:98:04:94:02:
82:a7:36:ce:1f:3a:63:40:c0:5c:aa:8e:d5:e9:db:c3:d0:d0:
56:cf:c2:8b:3b:a1:38:5f:9c:d6:e4:37:aa:e3:29:b4:19:f4:
0d:e2:80:0a:9b:af:ea:ff:91:6d:ec:91:72:7b:4e:39:a3:df:
ac:8e:0f:c6:26:5b:67:1a:c8:a6:53:31:81:6d:bd:a9:21:19:
0e:d7:82:74:2e:e9:da:cf:13:c0:2c:b7:b5:c9:95:01:eb:a2:
6e:6d:f5:20:9f:77:d9:0d:85:8f:d5:c1:76:c2:b7:68:66:2d:
06:97:cc:d4:67:48:1c:a4:a4:a7:02:b0:22:bd:13:79:b8:b1:
bd:e7:81:82:c9:a5:88:b2:23:8f:8b:53:d5:92:3c:64:ec:61:
36:de:2d:ed:10:5b:6c:b9:67:75:40:d1:a6:62:94:ed:a3:6b:
51:f4:a6:84:b2:8a:c2:42:85:f2:ab:b4:b9:e6:67:11:ab:3a:
7d:50:e5:5e:e0:43:0f:0b:3b:7a:65:7e:64:0b:24:d6:0f:a7:
58:9c:ea:5f:8d:6d:fd:30:d3:78:a4:ac:2b:ae:f3:af:38:d8:
23:f0:9a:3b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk3ODlDRDg2OUVBQkU5
Qzk3RUU2Rjk1RDk2NTZDQkYwNDAxNkVGQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpMny+DXH2pBeY9ooleGOADsRIF9AMJd+tSOOVF6AXsPvHLmth
DLk7WuBvxk6veHIoaDoBQBJ7D/nuBKkNHohaeGg8q8V+UDc1BJEd8oz0m9pA6hHa
+3prrRMUkijs8hg5SvKceZiaoLwiw0ttWFA6RD7zLYYZ/17IEh3zzZ1Vk/PGcHpc
arBzQL4b0Ks96Sln/5x7/M9Vs4B5pLWH5/D56batLhk7U709RYIL1bMDcBB+ZT7U
KbcHxOIRxG5u5asz/fO/Eu2j/j0obo16gR3cryz73vYzbQBgOKFIqw1U2gQAoftG
IVKztTP8j05JMyViQoPHTIf9XPEYE47AlashAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUl4nNhp6r6cl+5vldllbL8EAW76EwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbDRuTmhwNnI2Y2wtNXZsZGxsYkw4
RUFXNzZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp6DAN
BgkqhkiG9w0BAQsFAAOCAQEAa7XxFupwYCb5pbKR4/RR4xVvP+4jyXRu14tueYFz
pA+YBJQCgqc2zh86Y0DAXKqO1enbw9DQVs/CizuhOF+c1uQ3quMptBn0DeKACpuv
6v+RbeyRcntOOaPfrI4PxiZbZxrIplMxgW29qSEZDteCdC7p2s8TwCy3tcmVAeui
bm31IJ932Q2Fj9XBdsK3aGYtBpfM1GdIHKSkpwKwIr0TebixveeBgsmliLIjj4tT
1ZI8ZOxhNt4t7RBbbLlndUDRpmKU7aNrUfSmhLKKwkKF8qu0ueZnEas6fVDlXuBD
Dws7emV+ZAsk1g+nWJzqX41t/TDTeKSsK67zrzjYI/CaOw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org