Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ldjxvUBeJZJN_PhMDQ7fYhu_3wE.roa
File: ldjxvUBeJZJN_PhMDQ7fYhu_3wE.roa (raw, json)
Hash identifier: 27ff9e7uN3wsksttE7o6zu129u6WxRmj3hnVUZOIj+U=
Subject key identifier: 95:D8:F1:BD:40:5E:25:92:4D:FC:F8:4C:0D:0E:DF:62:1B:BF:DF:01
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1095
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ldjxvUBeJZJN_PhMDQ7fYhu_3wE.roa
Signing time: Wed 01 Feb 2023 10:28:45 +0000
ROA not before: Wed 01 Feb 2023 10:28:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4245 (0x1095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:45 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95D8F1BD405E25924DFCF84C0D0EDF621BBFDF01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:78:0c:d3:e2:4c:ce:1a:be:be:2f:ee:36:3b:
2a:3d:2b:b2:80:da:9a:e8:c7:fd:43:72:f5:85:4c:
ca:da:af:7c:a4:3c:18:19:02:4c:60:7e:44:3a:f6:
bf:84:5f:c9:80:3d:47:a0:4c:1c:f3:82:5b:d1:6c:
81:b5:99:12:0d:43:27:b3:41:f0:6d:b5:a1:af:66:
46:77:e7:61:53:85:aa:f5:a7:57:88:1d:b1:c8:4b:
cc:a1:c7:1b:1e:9e:f4:b3:b6:7d:2c:6b:f9:d7:5a:
70:cb:a5:27:e3:e1:5e:aa:bc:16:50:c0:fc:dc:bd:
6c:d1:53:15:bf:ee:c6:98:4c:4a:fb:f9:ca:b8:2a:
57:ad:5d:db:56:ea:e4:98:a6:47:37:e0:56:f5:c1:
7b:9e:98:cc:c6:09:01:c6:0e:32:ce:3b:ce:ab:2f:
e2:50:c2:bf:62:5f:39:d0:74:36:58:39:cf:2a:ef:
56:21:5c:a6:3f:cd:91:fd:79:9f:ab:c6:a3:7a:64:
44:af:ed:ef:89:a2:0e:b4:31:f7:05:ae:a5:28:c8:
1e:bb:66:8e:e1:df:f9:f6:d6:18:15:6d:1f:2e:42:
f6:5d:34:01:76:3b:f9:07:4e:9c:9a:b3:fb:aa:4a:
ba:01:f6:2d:0c:69:0d:5f:3f:e9:38:87:cb:4b:b9:
2f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D8:F1:BD:40:5E:25:92:4D:FC:F8:4C:0D:0E:DF:62:1B:BF:DF:01
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ldjxvUBeJZJN_PhMDQ7fYhu_3wE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
0a:d1:ac:47:c7:01:3d:2e:92:cf:fc:61:b8:0c:e5:a3:e2:e5:
21:2b:4f:81:47:3b:45:d8:47:0f:74:4f:b6:58:16:9e:3d:a4:
07:b9:74:60:2c:68:62:1d:a1:5e:43:6b:74:71:57:f9:4a:6e:
f6:55:72:e2:7f:a4:4f:f6:c9:e1:8e:2b:84:51:52:a4:03:32:
03:10:c5:6d:64:e8:e9:e7:fc:7a:cd:fd:4b:8f:6f:d2:e2:b4:
fc:99:bd:97:d5:78:74:4d:9c:46:d3:e2:69:e0:2e:0a:68:25:
30:5b:7b:59:38:50:65:4c:b3:6d:14:f3:26:65:4d:37:99:b0:
19:1b:3e:50:1e:f3:b6:3e:fb:61:1e:c7:0d:d1:93:ad:a9:dd:
11:0a:a1:e3:cd:4e:3c:3e:28:48:10:82:6f:56:83:ae:68:3c:
5d:24:11:ec:7d:41:80:0e:13:12:35:71:03:5a:66:5f:53:a3:
a9:2f:24:e0:9e:5c:3f:66:1f:0f:60:a8:b4:1c:8b:bd:9e:59:
c4:a7:e8:5e:fa:ab:58:d4:83:72:a9:f8:84:28:f8:bf:15:f7:
f1:da:68:7c:cd:dd:09:07:42:7d:23:2e:d6:1f:83:3f:a5:a4:
02:12:b9:59:bf:3d:53:e3:f7:79:54:65:2a:a5:59:31:3d:8d:
a1:a1:d0:69
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk1RDhGMUJENDA1RTI1
OTI0REZDRjg0QzBEMEVERjYyMUJCRkRGMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXeAzT4kzOGr6+L+42Oyo9K7KA2prox/1DcvWFTMrar3ykPBgZ
AkxgfkQ69r+EX8mAPUegTBzzglvRbIG1mRINQyezQfBttaGvZkZ352FThar1p1eI
HbHIS8yhxxsenvSztn0sa/nXWnDLpSfj4V6qvBZQwPzcvWzRUxW/7saYTEr7+cq4
KletXdtW6uSYpkc34Fb1wXuemMzGCQHGDjLOO86rL+JQwr9iXznQdDZYOc8q71Yh
XKY/zZH9eZ+rxqN6ZESv7e+Jog60MfcFrqUoyB67Zo7h3/n21hgVbR8uQvZdNAF2
O/kHTpyas/uqSroB9i0MaQ1fP+k4h8tLuS9RAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUldjxvUBeJZJN/PhMDQ7fYhu/3wEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbGRqeHZVQmVKWkpOX1BoTURRN2ZZ
aHVfM3dFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT044DAN
BgkqhkiG9w0BAQsFAAOCAQEACtGsR8cBPS6Sz/xhuAzlo+LlIStPgUc7RdhHD3RP
tlgWnj2kB7l0YCxoYh2hXkNrdHFX+Upu9lVy4n+kT/bJ4Y4rhFFSpAMyAxDFbWTo
6ef8es39S49v0uK0/Jm9l9V4dE2cRtPiaeAuCmglMFt7WThQZUyzbRTzJmVNN5mw
GRs+UB7ztj77YR7HDdGTrandEQqh481OPD4oSBCCb1aDrmg8XSQR7H1BgA4TEjVx
A1pmX1OjqS8k4J5cP2YfD2CotByLvZ5ZxKfoXvqrWNSDcqn4hCj4vxX38dpofM3d
CQdCfSMu1h+DP6WkAhK5Wb89U+P3eVRlKqVZMT2NoaHQaQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org