Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vDJqTKTlNFp1MVoYeysk2Vc4Qis.roa
File: vDJqTKTlNFp1MVoYeysk2Vc4Qis.roa (raw, json)
Hash identifier: sFKEozGVA7Nnld1ajD6tfQkRvvM5UVbfKUKtLmJehOw=
Subject key identifier: BC:32:6A:4C:A4:E5:34:5A:75:31:5A:18:7B:2B:24:D9:57:38:42:2B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vDJqTKTlNFp1MVoYeysk2Vc4Qis.roa
Signing time: Thu 15 Sep 2022 02:43:25 +0000
ROA not before: Thu 15 Sep 2022 02:43:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC326A4CA4E5345A75315A187B2B24D95738422B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7d:a5:3a:56:75:50:58:3e:52:76:b1:ce:cd:
9a:23:8b:c8:b0:b2:bc:57:16:ff:e2:c0:7b:ad:48:
b6:c6:a1:2e:44:a1:59:6e:53:d8:dd:ec:79:16:34:
2e:52:b5:9c:14:81:3d:07:41:30:f4:19:45:e5:a0:
bb:8a:56:a3:ee:28:e5:cb:eb:99:f3:dc:de:de:14:
ff:32:dc:25:23:09:a1:3a:9a:3c:8d:54:70:8f:bd:
b6:43:28:1b:fa:e2:56:89:62:2f:1f:db:99:e6:72:
d4:8c:85:8d:5e:5d:28:3c:bd:3d:2d:a7:be:18:8e:
c7:92:f4:15:d2:86:44:32:e6:13:ef:23:36:5f:76:
60:fc:b9:f8:28:4b:83:a2:74:81:d7:d0:dc:86:54:
3c:3e:42:71:65:5c:25:ae:c1:c1:57:24:4a:1b:86:
23:f2:53:45:f0:a9:8c:56:03:d9:e4:69:d3:10:82:
83:eb:07:a4:9f:be:e8:d3:46:f6:b6:bd:04:a8:fa:
77:e9:f2:ed:80:41:7b:35:72:91:23:c0:c7:42:82:
34:3a:8a:bc:09:95:87:f4:e8:bf:08:88:f3:6f:1d:
00:b9:58:2b:8f:1c:b3:65:17:5d:5d:57:dd:9c:28:
dc:30:6c:cc:bc:68:04:14:be:25:7f:ff:af:02:39:
68:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:32:6A:4C:A4:E5:34:5A:75:31:5A:18:7B:2B:24:D9:57:38:42:2B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vDJqTKTlNFp1MVoYeysk2Vc4Qis.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:84:d1:66:7a:4b:66:3f:0d:a6:66:f1:c2:d9:c4:95:b3:ad:
41:4c:37:66:37:d2:6b:a3:57:7c:aa:3d:f2:97:4e:d7:84:19:
84:fc:73:ea:4b:dd:e3:68:1a:09:fc:01:ae:fb:5b:2f:e5:7f:
f5:ac:44:f6:14:1b:57:41:8a:d1:3e:07:b6:90:e9:d9:4c:17:
a4:2f:36:c2:56:c7:55:ed:e0:f7:89:72:9f:e7:5a:87:80:b2:
92:80:db:c4:dd:b2:d6:66:83:c7:72:9d:ee:de:e7:77:c5:47:
71:01:51:29:1d:c4:ae:91:59:39:81:69:e2:df:4b:5f:30:93:
b6:0f:22:d8:b2:ad:8f:66:58:77:ed:ee:d2:0a:fa:be:8e:6e:
66:c3:a0:70:29:75:57:98:3a:5b:bc:7d:c8:0f:d5:9c:ad:7b:
f8:ea:f4:12:d9:02:8f:81:0c:de:af:86:3f:81:8f:41:59:e3:
be:23:67:1e:2f:7e:fb:3e:e1:3b:00:54:1f:8e:40:8c:a6:82:
66:90:43:b9:c3:b1:f3:c3:9d:9c:27:c2:84:4b:f2:f4:ae:90:
5f:c6:84:1a:41:02:c7:f6:da:a6:f7:d3:44:59:5b:3f:96:a2:
6a:be:18:9f:7a:e1:2d:e7:ed:89:ba:7d:2e:1a:01:9f:23:93:
95:19:ff:03
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJDMzI2QTRDQTRFNTM0
NUE3NTMxNUExODdCMkIyNEQ5NTczODQyMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnfaU6VnVQWD5SdrHOzZoji8iwsrxXFv/iwHutSLbGoS5EoVlu
U9jd7HkWNC5StZwUgT0HQTD0GUXloLuKVqPuKOXL65nz3N7eFP8y3CUjCaE6mjyN
VHCPvbZDKBv64laJYi8f25nmctSMhY1eXSg8vT0tp74YjseS9BXShkQy5hPvIzZf
dmD8ufgoS4OidIHX0NyGVDw+QnFlXCWuwcFXJEobhiPyU0XwqYxWA9nkadMQgoPr
B6SfvujTRva2vQSo+nfp8u2AQXs1cpEjwMdCgjQ6irwJlYf06L8IiPNvHQC5WCuP
HLNlF11dV92cKNwwbMy8aAQUviV//68COWg5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUvDJqTKTlNFp1MVoYeysk2Vc4QiswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdkRKcVRLVGxORnAxTVZvWWV5c2sy
VmM0UWlzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtDMA0G
CSqGSIb3DQEBCwUAA4IBAQANhNFmektmPw2mZvHC2cSVs61BTDdmN9Jro1d8qj3y
l07XhBmE/HPqS93jaBoJ/AGu+1sv5X/1rET2FBtXQYrRPge2kOnZTBekLzbCVsdV
7eD3iXKf51qHgLKSgNvE3bLWZoPHcp3u3ud3xUdxAVEpHcSukVk5gWni30tfMJO2
DyLYsq2PZlh37e7SCvq+jm5mw6BwKXVXmDpbvH3ID9WcrXv46vQS2QKPgQzer4Y/
gY9BWeO+I2ceL377PuE7AFQfjkCMpoJmkEO5w7Hzw52cJ8KES/L0rpBfxoQaQQLH
9tqm99NEWVs/lqJqvhifeuEt5+2Jun0uGgGfI5OVGf8D
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org