Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/y5B67819zzHC6eTqsUqjib8ADrg.roa
File: y5B67819zzHC6eTqsUqjib8ADrg.roa (raw, json)
Hash identifier: XSLwK0C9RPLYRePnTMk05Ln0nsODIhXfvmpo5Yxwshc=
Subject key identifier: CB:90:7A:EF:CD:7D:CF:31:C2:E9:E4:EA:B1:4A:A3:89:BF:00:0E:B8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10A3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y5B67819zzHC6eTqsUqjib8ADrg.roa
Signing time: Wed 01 Feb 2023 10:28:49 +0000
ROA not before: Wed 01 Feb 2023 10:28:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4259 (0x10a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB907AEFCD7DCF31C2E9E4EAB14AA389BF000EB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:63:4c:4f:74:df:6a:b6:07:55:98:24:1e:39:
ef:8f:04:e1:e0:d9:fb:dc:29:4f:50:13:ed:f3:99:
99:69:86:6c:74:e8:ba:1b:71:ad:ea:d6:0e:ba:98:
54:d6:b9:ec:8e:d0:82:44:86:3e:8f:d8:0b:1e:a6:
27:a2:dc:8e:b7:13:6f:90:ae:57:55:e3:a2:df:cf:
7a:36:b5:ac:a3:d7:b8:bd:d1:32:27:9b:9c:32:d0:
6b:a7:19:ad:09:5c:14:1a:81:6c:21:6d:e7:27:04:
10:77:9f:8d:84:0d:40:d2:eb:cd:c5:39:8c:ec:1a:
a3:6e:30:ed:eb:dd:7c:0c:ef:5c:73:9a:f2:eb:5e:
bb:29:ef:55:d8:59:ca:17:64:cb:01:13:2c:3a:cc:
d4:6d:6e:14:4b:46:93:bb:78:8f:a7:51:b1:81:99:
54:58:26:bf:00:9f:62:17:bd:61:c2:05:3c:49:78:
28:f6:97:25:67:c8:16:ea:40:64:82:20:97:15:be:
35:85:d5:34:31:57:d9:9f:cd:8c:1f:68:ff:b4:30:
81:26:43:bd:45:ac:0b:1f:c8:16:17:c9:8a:fc:5c:
4f:ff:f2:e0:6a:54:88:70:56:45:6d:95:7a:b4:a9:
80:b5:fd:8f:e8:e4:79:d7:51:f3:41:96:91:75:e0:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:90:7A:EF:CD:7D:CF:31:C2:E9:E4:EA:B1:4A:A3:89:BF:00:0E:B8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y5B67819zzHC6eTqsUqjib8ADrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.180.0/24
Signature Algorithm: sha256WithRSAEncryption
89:91:16:c0:b8:c3:57:e7:62:23:47:d1:5a:d3:9c:7b:37:87:
6d:ba:1a:03:de:fb:54:42:78:11:00:98:50:ce:2d:34:6d:2f:
96:77:4c:75:09:0f:d5:3b:92:1e:70:f5:97:43:cd:c7:e0:51:
43:e9:3c:ba:1a:ea:f3:a2:62:b4:88:b3:62:da:55:b6:a1:a5:
9f:73:ea:95:21:b2:0f:75:c0:67:18:91:42:b8:86:da:ab:95:
eb:6f:ab:95:52:a9:10:15:bb:10:23:99:97:b0:66:9d:96:e5:
1a:a4:f2:79:8b:04:d8:f3:78:1e:c1:ee:26:e5:df:16:72:82:
ea:e8:10:41:43:a7:b2:12:a8:10:88:b1:db:f7:c6:9e:76:1f:
80:15:de:d6:c7:f3:8d:de:be:3c:66:b6:21:a8:a7:7c:db:00:
c1:7e:3c:7d:6a:cf:cb:3f:64:9a:04:51:02:76:e7:35:c0:eb:
cf:36:a4:72:35:12:ed:59:c6:d4:6f:30:2f:5f:ef:5f:9c:b3:
d1:60:5d:18:e9:74:e2:75:a9:05:07:08:94:8b:7d:1f:5b:e4:
6a:1e:d5:f1:24:15:db:54:be:a7:7c:d6:68:7e:a5:01:22:50:
7c:12:6a:3a:18:58:d6:d9:f5:08:0f:04:7d:d0:7f:70:d8:1b:
85:84:89:51
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENCOTA3QUVGQ0Q3RENG
MzFDMkU5RTRFQUIxNEFBMzg5QkYwMDBFQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjY0xPdN9qtgdVmCQeOe+PBOHg2fvcKU9QE+3zmZlphmx06Lob
ca3q1g66mFTWueyO0IJEhj6P2Asepiei3I63E2+QrldV46Lfz3o2tayj17i90TIn
m5wy0GunGa0JXBQagWwhbecnBBB3n42EDUDS683FOYzsGqNuMO3r3XwM71xzmvLr
Xrsp71XYWcoXZMsBEyw6zNRtbhRLRpO7eI+nUbGBmVRYJr8An2IXvWHCBTxJeCj2
lyVnyBbqQGSCIJcVvjWF1TQxV9mfzYwfaP+0MIEmQ71FrAsfyBYXyYr8XE//8uBq
VIhwVkVtlXq0qYC1/Y/o5HnXUfNBlpF14JI9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUy5B67819zzHC6eTqsUqjib8ADrgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveTVCNjc4MTl6ekhDNmVUcXNVcWpp
YjhBRHJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptDAN
BgkqhkiG9w0BAQsFAAOCAQEAiZEWwLjDV+diI0fRWtOcezeHbboaA977VEJ4EQCY
UM4tNG0vlndMdQkP1TuSHnD1l0PNx+BRQ+k8uhrq86JitIizYtpVtqGln3PqlSGy
D3XAZxiRQriG2quV62+rlVKpEBW7ECOZl7BmnZblGqTyeYsE2PN4HsHuJuXfFnKC
6ugQQUOnshKoEIix2/fGnnYfgBXe1sfzjd6+PGa2IainfNsAwX48fWrPyz9kmgRR
AnbnNcDrzzakcjUS7VnG1G8wL1/vX5yz0WBdGOl04nWpBQcIlIt9H1vkah7V8SQV
21S+p3zWaH6lASJQfBJqOhhY1tn1CA8EfdB/cNgbhYSJUQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org