Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yDhuaqXmZQhJW-Uc95Bv4sbbH30.roa
File: yDhuaqXmZQhJW-Uc95Bv4sbbH30.roa (raw, json)
Hash identifier: T1uOuPbRO3JEZEkvKM07/4ZXf3cIX1onYTIkxTdOFn4=
Subject key identifier: C8:38:6E:6A:A5:E6:65:08:49:5B:E5:1C:F7:90:6F:E2:C6:DB:1F:7D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yDhuaqXmZQhJW-Uc95Bv4sbbH30.roa
Signing time: Thu 15 Sep 2022 02:43:02 +0000
ROA not before: Thu 15 Sep 2022 02:43:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.68.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C8386E6AA5E66508495BE51CF7906FE2C6DB1F7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a7:98:0a:9e:3c:20:6e:33:26:8e:a6:01:0f:
44:4e:e8:34:ea:b1:4c:d4:ec:c9:c6:6d:c5:47:b8:
6b:b5:e3:eb:35:c7:eb:d3:95:88:89:47:b0:59:27:
29:de:dd:13:a1:f4:02:e0:89:88:57:4b:32:91:99:
9c:0e:e3:e2:79:b9:0d:89:5a:57:9c:05:52:46:e5:
1c:29:82:d8:3f:b3:83:cd:ba:41:e7:65:e6:13:6d:
ce:e0:2f:71:fc:73:e3:7c:09:f1:9b:9c:a1:15:19:
50:39:9d:66:4d:66:27:75:cc:5c:07:7c:0b:8d:a2:
b1:5e:ee:1c:7e:92:32:24:5d:aa:9f:f0:b0:e9:a1:
c9:b7:9b:ad:3c:27:1b:f4:c1:52:52:9d:e1:bb:03:
62:fd:46:0b:d9:79:23:72:81:6d:96:12:a8:43:72:
a0:b3:1a:e0:31:cb:e6:ca:62:d5:80:2e:05:30:1e:
c9:ba:27:bc:3b:c9:c0:1e:21:18:50:74:f8:bc:16:
e7:fd:74:a3:bc:73:bc:bf:5b:5f:63:e3:e6:d2:d8:
97:41:31:c0:95:83:49:04:de:6e:25:68:9d:38:85:
07:fc:dd:1e:67:61:8c:ce:a2:99:f4:7f:35:e7:46:
e4:db:93:15:8c:b8:ef:5b:5e:fc:5b:39:a9:cf:bf:
0b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:38:6E:6A:A5:E6:65:08:49:5B:E5:1C:F7:90:6F:E2:C6:DB:1F:7D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yDhuaqXmZQhJW-Uc95Bv4sbbH30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:28:41:d9:e1:05:58:7f:81:bb:39:41:b7:53:de:af:6e:cb:
f1:2f:76:d3:3a:57:df:84:15:59:38:f6:cc:da:45:03:fa:07:
e5:bc:b0:45:7d:78:72:0a:72:48:7e:b1:fa:82:36:4a:70:5b:
ca:f0:dd:88:80:c2:85:40:42:b6:fc:a2:01:cd:67:17:3b:51:
31:cf:74:14:ef:27:0c:91:46:3a:eb:15:a6:9a:e3:63:c7:ec:
ab:e5:79:06:6d:b5:3c:d7:1a:fb:36:f9:93:bc:4a:65:be:24:
2f:10:12:05:29:d4:f0:73:c9:91:db:3f:32:2a:6d:32:3c:89:
c5:54:4d:0d:f2:08:5f:60:c3:d6:6f:c0:c3:fa:3f:ba:9e:50:
df:63:b8:cc:d5:ea:88:8a:d2:a4:bd:21:2e:cb:d4:2c:22:15:
43:f5:b1:82:c4:37:5e:1f:7a:33:03:70:08:2b:22:dd:2c:c8:
47:03:93:f4:da:d7:0d:21:54:23:93:9c:12:60:01:3f:14:4a:
f5:21:10:c6:95:2c:df:dd:0a:90:af:45:19:b2:79:e3:60:c9:
c0:47:4f:3d:e0:54:3c:c2:2f:96:90:b1:9d:6b:c5:80:e6:30:
fc:75:e7:c8:e3:f1:ea:a2:3b:4d:c8:0b:2b:d7:2d:8c:6a:4b:
74:63:91:09
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM4Mzg2RTZBQTVFNjY1
MDg0OTVCRTUxQ0Y3OTA2RkUyQzZEQjFGN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1p5gKnjwgbjMmjqYBD0RO6DTqsUzU7MnGbcVHuGu14+s1x+vT
lYiJR7BZJyne3ROh9ALgiYhXSzKRmZwO4+J5uQ2JWlecBVJG5Rwpgtg/s4PNukHn
ZeYTbc7gL3H8c+N8CfGbnKEVGVA5nWZNZid1zFwHfAuNorFe7hx+kjIkXaqf8LDp
ocm3m608Jxv0wVJSneG7A2L9RgvZeSNygW2WEqhDcqCzGuAxy+bKYtWALgUwHsm6
J7w7ycAeIRhQdPi8Fuf9dKO8c7y/W19j4+bS2JdBMcCVg0kE3m4laJ04hQf83R5n
YYzOopn0fzXnRuTbkxWMuO9bXvxbOanPvwtNAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUyDhuaqXmZQhJW+Uc95Bv4sbbH30wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveURodWFxWG1aUWhKVy1VYzk1QnY0
c2JiSDMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJEMA0G
CSqGSIb3DQEBCwUAA4IBAQCwKEHZ4QVYf4G7OUG3U96vbsvxL3bTOlffhBVZOPbM
2kUD+gflvLBFfXhyCnJIfrH6gjZKcFvK8N2IgMKFQEK2/KIBzWcXO1Exz3QU7ycM
kUY66xWmmuNjx+yr5XkGbbU81xr7NvmTvEplviQvEBIFKdTwc8mR2z8yKm0yPInF
VE0N8ghfYMPWb8DD+j+6nlDfY7jM1eqIitKkvSEuy9QsIhVD9bGCxDdeH3ozA3AI
KyLdLMhHA5P02tcNIVQjk5wSYAE/FEr1IRDGlSzf3QqQr0UZsnnjYMnAR0894FQ8
wi+WkLGda8WA5jD8defI4/HqojtNyAsr1y2Makt0Y5EJ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org