Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/r_AI4liZQUxul-_otJZSjERy-HA.roa
File: r_AI4liZQUxul-_otJZSjERy-HA.roa (raw, json)
Hash identifier: 8I2IIZAupk5yZd7yjM51UMD0zAARheBbFjRi+FieLeA=
Subject key identifier: AF:F0:08:E2:58:99:41:4C:6E:97:EF:E8:B4:96:52:8C:44:72:F8:70
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10C6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r_AI4liZQUxul-_otJZSjERy-HA.roa
Signing time: Wed 01 Feb 2023 10:29:02 +0000
ROA not before: Wed 01 Feb 2023 10:29:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4294 (0x10c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:02 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFF008E25899414C6E97EFE8B496528C4472F870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a6:dc:5f:e9:29:57:20:4e:ef:b3:61:fc:f1:
d6:b1:ed:7c:00:e3:a4:2a:aa:d5:22:d8:41:22:14:
85:04:d9:f6:c2:a4:03:c1:e1:aa:f7:02:9c:ed:6e:
65:61:fc:67:c1:7e:ba:e4:14:8d:c1:f4:5a:2b:8d:
63:2b:9a:0d:2d:59:25:1c:59:0c:c7:8a:4e:fd:b4:
9a:63:4f:74:b4:26:e4:f8:d0:85:60:2b:82:b4:9a:
6b:a6:47:9b:f8:d6:0e:d4:53:a2:73:cc:c5:6a:b4:
de:3e:1e:7b:c4:0d:23:38:a9:29:94:6b:a4:15:6a:
e1:7a:9a:d3:0f:d1:4a:35:eb:cf:bb:f5:90:41:49:
c9:32:25:38:d4:c4:0c:d9:a6:e8:a0:bd:f7:a8:a0:
2d:18:70:03:82:0b:c5:f4:77:3d:93:c9:bd:a8:02:
d1:20:df:1e:37:43:74:de:f8:7c:12:c3:97:0a:0c:
08:bf:c8:af:ed:c6:75:99:e7:e3:ee:94:14:f9:b8:
89:ae:9e:ae:a0:a8:4c:4c:f2:4d:72:0a:ea:00:29:
90:e2:1e:83:13:81:c7:b9:f2:69:9c:db:0f:0b:47:
f1:a6:25:bd:b5:48:12:2d:d7:f3:4e:8f:eb:56:99:
aa:6a:c1:52:f1:a1:67:5f:a9:08:f3:d1:55:8e:56:
c3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F0:08:E2:58:99:41:4C:6E:97:EF:E8:B4:96:52:8C:44:72:F8:70
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/r_AI4liZQUxul-_otJZSjERy-HA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.182.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:9f:09:9e:14:c0:44:f5:42:49:29:63:7f:16:02:72:f2:d2:
0a:24:39:1d:0f:29:84:a7:25:83:98:cd:3f:21:ae:0a:dd:33:
17:53:38:95:53:17:f6:a6:6c:0e:51:77:42:f9:04:fd:cb:0c:
4f:90:a4:f4:54:a4:0b:eb:b8:91:d8:92:b7:2f:b0:35:6e:98:
5a:c5:b9:b2:2e:9b:76:63:73:69:9a:18:8b:ff:14:70:ae:ef:
f0:be:d7:e7:95:21:bf:be:93:0c:04:b0:e1:b2:f8:3f:38:0c:
03:9d:cd:a6:e1:8e:e7:a3:44:2a:7e:06:09:d9:8e:0b:9c:7b:
95:8d:5f:84:18:c1:aa:e6:e7:d9:88:9f:a6:89:60:4b:07:b9:
36:71:09:35:33:20:d2:09:16:49:43:d5:30:fb:b7:55:38:cf:
48:53:c3:8d:ed:ce:06:3c:b5:d8:4c:5c:3f:d7:a3:00:b2:8f:
2a:43:1c:fd:50:c0:96:ac:45:0f:fe:2d:ee:06:b9:42:52:f7:
d3:2d:ee:4e:b8:19:3e:39:c2:d1:87:64:c8:5e:64:06:77:ff:
18:b5:6c:6d:13:bb:d2:ea:c4:fa:f4:45:bf:7c:04:3c:65:a1:
cf:e0:7c:d2:ed:b0:d2:ae:57:1f:a9:df:ed:17:22:a0:8b:9f:
18:c4:4d:67
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI5MDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGRjAwOEUyNTg5OTQx
NEM2RTk3RUZFOEI0OTY1MjhDNDQ3MkY4NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVptxf6SlXIE7vs2H88dax7XwA46QqqtUi2EEiFIUE2fbCpAPB
4ar3ApztbmVh/GfBfrrkFI3B9ForjWMrmg0tWSUcWQzHik79tJpjT3S0JuT40IVg
K4K0mmumR5v41g7UU6JzzMVqtN4+HnvEDSM4qSmUa6QVauF6mtMP0Uo168+79ZBB
SckyJTjUxAzZpuigvfeooC0YcAOCC8X0dz2Tyb2oAtEg3x43Q3Te+HwSw5cKDAi/
yK/txnWZ5+PulBT5uImunq6gqExM8k1yCuoAKZDiHoMTgce58mmc2w8LR/GmJb21
SBIt1/NOj+tWmapqwVLxoWdfqQjz0VWOVsNlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUr/AI4liZQUxul+/otJZSjERy+HAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcl9BSTRsaVpRVXh1bC1fb3RKWlNq
RVJ5LUhBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptjAN
BgkqhkiG9w0BAQsFAAOCAQEAPZ8JnhTARPVCSSljfxYCcvLSCiQ5HQ8phKclg5jN
PyGuCt0zF1M4lVMX9qZsDlF3QvkE/csMT5Ck9FSkC+u4kdiSty+wNW6YWsW5si6b
dmNzaZoYi/8UcK7v8L7X55Uhv76TDASw4bL4PzgMA53NpuGO56NEKn4GCdmOC5x7
lY1fhBjBqubn2YifpolgSwe5NnEJNTMg0gkWSUPVMPu3VTjPSFPDje3OBjy12Exc
P9ejALKPKkMc/VDAlqxFD/4t7ga5QlL30y3uTrgZPjnC0YdkyF5kBnf/GLVsbRO7
0urE+vRFv3wEPGWhz+B80u2w0q5XH6nf7RcioIufGMRNZw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org