Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xop38FOx7SJBvUz4KszRX3DWd7U.roa
File: xop38FOx7SJBvUz4KszRX3DWd7U.roa (raw, json)
Hash identifier: iFdBz/BtM3Glcxa9uwb4x9OlVz/6RxNPzyfMlROFC1o=
Subject key identifier: C6:8A:77:F0:53:B1:ED:22:41:BD:4C:F8:2A:CC:D1:5F:70:D6:77:B5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xop38FOx7SJBvUz4KszRX3DWd7U.roa
Signing time: Thu 15 Sep 2022 02:42:54 +0000
ROA not before: Thu 15 Sep 2022 02:42:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 113.196.152.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:42:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C68A77F053B1ED2241BD4CF82ACCD15F70D677B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bd:6f:48:d5:b7:54:ce:ec:30:cc:de:a7:bd:
73:d9:30:0c:e3:9b:b6:f5:1b:eb:7f:c1:82:92:a3:
59:cb:53:ef:49:8d:6e:5d:a5:ec:42:69:cc:59:9a:
d4:b2:df:42:af:29:a2:69:21:8e:f1:f7:72:2d:3c:
72:1e:d2:7e:b7:7b:77:cc:6a:66:d3:ca:7d:2e:25:
77:f4:fe:27:77:95:7c:a7:26:28:90:7d:b0:f0:ed:
db:d2:6d:28:59:23:61:45:60:9a:4b:48:70:88:89:
74:9b:94:f9:e0:01:bf:28:47:0b:08:36:19:68:2f:
56:36:81:6c:bc:c7:fa:b8:84:26:03:79:55:b4:b7:
e5:80:92:aa:60:a6:6e:f2:5e:15:2d:4b:ba:1c:1d:
60:22:c1:ce:ab:17:7a:8e:f2:cf:14:88:9d:d4:7a:
5c:27:30:d9:64:73:b3:11:62:63:96:dc:b1:4c:e2:
af:23:97:34:c9:00:7c:a9:7c:49:75:39:5d:d8:db:
39:41:dd:73:53:3d:17:5e:d3:70:f6:51:72:c6:7c:
09:7f:60:ea:1f:b0:da:66:1f:c6:3b:ae:ad:ca:a2:
73:68:21:8b:9c:58:1f:39:c3:5b:4b:32:53:45:df:
96:d8:a2:8c:ef:32:76:17:4b:72:a7:1a:80:c7:7f:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8A:77:F0:53:B1:ED:22:41:BD:4C:F8:2A:CC:D1:5F:70:D6:77:B5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xop38FOx7SJBvUz4KszRX3DWd7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.152.0/21
Signature Algorithm: sha256WithRSAEncryption
39:4e:d7:6c:c3:32:e6:c6:6a:fd:93:63:54:67:9a:b3:1d:fb:
e6:f5:ba:5e:c5:44:a8:ab:77:09:d0:b6:3a:b4:73:c7:43:e4:
c9:23:75:2a:a0:ca:d2:94:2d:a6:e0:b3:bc:12:bf:a1:ed:23:
ee:64:3a:58:b3:60:eb:e0:b4:b2:f9:d6:96:1f:13:57:94:af:
6f:8f:b0:c2:65:98:fb:72:79:43:fb:4d:c9:47:43:2a:34:69:
43:d6:4b:2c:6f:11:bb:28:f5:02:a8:fe:7a:98:80:d4:b1:1e:
59:54:4d:9f:57:18:de:29:25:55:85:4b:64:51:88:87:81:f3:
1a:d7:4f:99:db:e3:f7:8f:5e:e2:fc:d0:1d:8d:d0:8b:3b:8d:
54:84:83:dc:39:81:79:2c:a5:c6:98:3d:c1:a1:ab:ca:c9:2a:
c5:63:78:f5:b7:61:80:5b:2c:30:32:9e:43:a9:7a:02:c9:df:
14:8f:49:2f:08:3b:69:17:76:ee:90:88:45:56:68:42:3c:90:
95:4d:12:86:45:02:52:51:95:db:01:1b:0c:58:f7:46:8d:11:
55:87:6a:94:0c:fd:e9:44:97:97:f0:01:29:3f:eb:50:54:8c:
f8:96:5f:99:9f:3a:c2:2e:3a:86:45:c2:66:b0:28:2a:b7:19:
b8:f1:f6:4d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQyNTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM2OEE3N0YwNTNCMUVE
MjI0MUJENENGODJBQ0NEMTVGNzBENjc3QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPvW9I1bdUzuwwzN6nvXPZMAzjm7b1G+t/wYKSo1nLU+9JjW5d
pexCacxZmtSy30KvKaJpIY7x93ItPHIe0n63e3fMambTyn0uJXf0/id3lXynJiiQ
fbDw7dvSbShZI2FFYJpLSHCIiXSblPngAb8oRwsINhloL1Y2gWy8x/q4hCYDeVW0
t+WAkqpgpm7yXhUtS7ocHWAiwc6rF3qO8s8UiJ3UelwnMNlkc7MRYmOW3LFM4q8j
lzTJAHypfEl1OV3Y2zlB3XNTPRde03D2UXLGfAl/YOofsNpmH8Y7rq3KonNoIYuc
WB85w1tLMlNF35bYoozvMnYXS3KnGoDHf7B/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxop38FOx7SJBvUz4KszRX3DWd7UwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveG9wMzhGT3g3U0pCdlV6NEtzelJY
M0RXZDdVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN
BgkqhkiG9w0BAQsFAAOCAQEAOU7XbMMy5sZq/ZNjVGeasx375vW6XsVEqKt3CdC2
OrRzx0PkySN1KqDK0pQtpuCzvBK/oe0j7mQ6WLNg6+C0svnWlh8TV5Svb4+wwmWY
+3J5Q/tNyUdDKjRpQ9ZLLG8Ruyj1Aqj+epiA1LEeWVRNn1cY3iklVYVLZFGIh4Hz
GtdPmdvj949e4vzQHY3QizuNVISD3DmBeSylxpg9waGryskqxWN49bdhgFssMDKe
Q6l6AsnfFI9JLwg7aRd27pCIRVZoQjyQlU0ShkUCUlGV2wEbDFj3Ro0RVYdqlAz9
6USXl/ABKT/rUFSM+JZfmZ86wi46hkXCZrAoKrcZuPH2TQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org