Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/luRGHcal4362-w5H6SZ0I3XRvTc.roa
File: luRGHcal4362-w5H6SZ0I3XRvTc.roa (raw, json)
Hash identifier: lqSU44D2aIj12KzcY+YMTyX5Y8g9/NZBIPYVfTJOg3o=
Subject key identifier: 96:E4:46:1D:C6:A5:E3:7E:B6:FB:0E:47:E9:26:74:23:75:D1:BD:37
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1049
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/luRGHcal4362-w5H6SZ0I3XRvTc.roa
Signing time: Wed 01 Feb 2023 10:28:22 +0000
ROA not before: Wed 01 Feb 2023 10:28:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 175.183.80.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4169 (0x1049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96E4461DC6A5E37EB6FB0E47E926742375D1BD37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8c:d8:63:c3:22:dd:00:c2:44:5b:48:2c:15:
f3:ac:15:ac:eb:63:3a:5b:a8:43:e2:6f:2b:04:9f:
28:5c:42:c1:03:5f:18:1d:5b:c7:ee:8f:9b:f6:fe:
95:f1:2d:43:9d:4c:f9:31:28:40:b0:03:6d:78:1b:
4d:f1:ae:7f:c1:18:ed:2d:f7:a9:2d:32:64:17:ce:
72:fa:bd:06:f1:4e:84:c1:1c:8c:b7:04:4c:e3:58:
4d:b7:01:be:7e:e5:f0:a3:d6:f3:3b:c4:f3:f5:32:
3d:b5:ee:63:fe:df:43:9b:45:52:aa:8a:ce:0b:60:
ae:85:cf:15:ea:9c:24:d7:52:47:31:90:92:7a:80:
0d:84:00:f5:dd:95:22:f6:d2:69:25:25:42:15:57:
99:52:2c:af:ab:b1:9a:95:75:51:39:c8:95:6c:26:
1e:fc:c5:83:b8:8d:d3:44:69:a1:8f:87:c0:67:90:
41:d7:71:e3:5a:c2:b8:ab:1e:c9:30:b6:fe:30:d0:
66:f9:b7:2c:83:39:b9:63:5e:af:51:9d:7b:8f:c1:
65:5f:25:af:e8:75:e5:fa:ed:43:de:66:59:d1:c3:
56:38:9e:41:25:b0:9c:7d:33:f0:3e:dd:70:2c:b2:
d1:6e:37:e8:9a:c8:2e:6b:f1:fb:40:c2:d9:57:2f:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E4:46:1D:C6:A5:E3:7E:B6:FB:0E:47:E9:26:74:23:75:D1:BD:37
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/luRGHcal4362-w5H6SZ0I3XRvTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.80.0/20
Signature Algorithm: sha256WithRSAEncryption
96:bb:03:57:24:0c:7e:06:cb:f3:03:28:12:f1:1f:39:b9:98:
5e:ac:0e:b9:e7:51:ad:f0:fe:df:5f:6d:47:9e:6f:39:5d:cd:
9f:9e:31:03:fd:89:4a:54:b0:db:d7:50:7e:c9:39:df:0a:d2:
94:f9:8c:eb:2d:95:2b:d4:7a:76:b5:14:74:c4:e9:8e:76:d3:
9b:18:84:84:e5:06:cc:c0:27:13:e0:67:72:86:86:7c:49:1f:
af:dc:46:bd:f6:27:8c:63:0b:6b:c6:94:72:73:24:6e:23:44:
d1:cf:ed:b9:70:f1:87:d9:d8:63:8e:03:5b:f8:70:88:6c:f3:
a1:45:7c:dc:bd:a5:7b:ab:8c:0d:bb:72:a4:f5:03:da:40:ca:
d8:c3:6d:a2:76:eb:d6:60:17:16:72:18:52:48:72:01:66:69:
e8:ea:31:f8:d1:58:00:68:14:e6:d5:b2:6a:db:b3:98:4d:f5:
5a:63:cb:ba:e2:52:97:c4:cb:3c:99:6e:88:e3:a8:b5:e6:65:
00:eb:08:5f:2d:c8:f0:26:6d:e6:a3:50:8e:45:31:4f:67:42:
7f:1b:79:8f:1a:8b:d1:a8:a6:48:81:4d:80:e6:c0:64:0d:5d:
ad:1e:e5:ae:76:41:de:1e:59:c4:41:70:c3:0b:fb:15:4b:36:
cf:7e:6b:ed
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk2RTQ0NjFEQzZBNUUz
N0VCNkZCMEU0N0U5MjY3NDIzNzVEMUJEMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtjNhjwyLdAMJEW0gsFfOsFazrYzpbqEPibysEnyhcQsEDXxgd
W8fuj5v2/pXxLUOdTPkxKECwA214G03xrn/BGO0t96ktMmQXznL6vQbxToTBHIy3
BEzjWE23Ab5+5fCj1vM7xPP1Mj217mP+30ObRVKqis4LYK6FzxXqnCTXUkcxkJJ6
gA2EAPXdlSL20mklJUIVV5lSLK+rsZqVdVE5yJVsJh78xYO4jdNEaaGPh8BnkEHX
ceNawrirHskwtv4w0Gb5tyyDObljXq9RnXuPwWVfJa/odeX67UPeZlnRw1Y4nkEl
sJx9M/A+3XAsstFuN+iayC5r8ftAwtlXLwoXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUluRGHcal4362+w5H6SZ0I3XRvTcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbHVSR0hjYWw0MzYyLXc1SDZTWjBJ
M1hSdlRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBK+3UDAN
BgkqhkiG9w0BAQsFAAOCAQEAlrsDVyQMfgbL8wMoEvEfObmYXqwOuedRrfD+319t
R55vOV3Nn54xA/2JSlSw29dQfsk53wrSlPmM6y2VK9R6drUUdMTpjnbTmxiEhOUG
zMAnE+BncoaGfEkfr9xGvfYnjGMLa8aUcnMkbiNE0c/tuXDxh9nYY44DW/hwiGzz
oUV83L2le6uMDbtypPUD2kDK2MNtonbr1mAXFnIYUkhyAWZp6Oox+NFYAGgU5tWy
atuzmE31WmPLuuJSl8TLPJluiOOoteZlAOsIXy3I8CZt5qNQjkUxT2dCfxt5jxqL
0aimSIFNgObAZA1drR7lrnZB3h5ZxEFwwwv7FUs2z35r7Q==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org