Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/K8ELkNiMlADKvslYuX7SpeeqaVE.roa
File: K8ELkNiMlADKvslYuX7SpeeqaVE.roa (raw, json)
Hash identifier: OvNvdvf1XsrdGUgblZgpF6IN13ucJVX4tcND01InTyQ=
Subject key identifier: 2B:C1:0B:90:D8:8C:94:00:CA:BE:C9:58:B9:7E:D2:A5:E7:AA:69:51
Certificate issuer: /CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB
Certificate serial: 05
Authority key identifier: 93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/K8ELkNiMlADKvslYuX7SpeeqaVE.roa
Signing time: Thu 07 Dec 2023 07:38:27 +0000
ROA not before: Thu 07 Dec 2023 07:38:27 +0000
ROA not after: Thu 05 Dec 2024 15:30:20 +0000
asID: 150758
IP address blocks: 2401:57a0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Nov 2024 15:54:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB
Validity
Not Before: Dec 7 07:38:27 2023 GMT
Not After : Dec 5 15:30:20 2024 GMT
Subject: CN=2BC10B90D88C9400CABEC958B97ED2A5E7AA6951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:22:c9:32:42:04:cc:9f:a1:de:57:3d:0a:85:
30:e4:ba:a9:6a:b6:23:93:c3:c6:6e:d7:e0:49:2a:
6d:90:06:05:65:27:d7:61:35:47:fb:43:5e:3f:02:
45:70:28:02:3a:bb:8f:35:bc:8b:0b:6d:e8:ff:8b:
28:5e:28:a9:de:2d:c6:1a:8a:63:f4:16:66:12:4c:
4c:50:b6:71:e8:79:09:6a:00:91:70:b6:4d:4a:39:
b0:20:cc:e9:74:19:08:0c:cd:31:91:df:27:03:4b:
f6:5f:e5:90:34:39:01:5d:72:5b:c4:25:96:a4:e9:
36:8b:d5:1f:40:c9:99:f4:cf:32:14:f7:4c:18:67:
d2:a8:39:49:46:00:76:87:53:b8:83:fe:14:de:48:
2f:54:4f:2c:e5:08:ec:2f:36:05:a2:ab:fa:e1:38:
52:d7:5a:02:66:67:66:6d:fa:57:db:04:18:f3:85:
87:1c:5d:c6:41:b0:2d:20:5f:fb:ba:f2:5f:77:c4:
30:d5:67:99:7d:08:c0:51:fc:a4:9e:7c:df:16:ba:
8d:5d:c0:84:c2:57:19:f0:fb:ee:2e:86:ed:d5:26:
41:46:5f:95:cb:1c:b6:0b:d6:0a:ec:41:08:3b:0b:
92:4c:8c:72:a9:55:3a:26:5a:05:f1:43:21:68:8a:
8a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C1:0B:90:D8:8C:94:00:CA:BE:C9:58:B9:7E:D2:A5:E7:AA:69:51
X509v3 Authority Key Identifier:
keyid:93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/K8ELkNiMlADKvslYuX7SpeeqaVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:57a0::/32
Signature Algorithm: sha256WithRSAEncryption
63:82:a3:56:33:d4:ac:32:ed:e9:d3:7d:e3:d0:27:86:40:ff:
32:14:64:d3:d4:7f:2f:28:48:b1:d0:e7:d1:87:cf:ba:1c:30:
a4:55:63:7f:6a:66:82:02:b7:bf:40:b2:72:32:27:e3:b7:fd:
eb:60:90:ec:74:df:25:30:3c:b4:f6:c4:97:d9:83:40:70:57:
6d:23:9d:ca:eb:71:71:37:09:94:86:4b:3d:7d:37:3e:33:2a:
93:f0:07:85:0b:a9:ea:3b:50:5b:32:43:e9:d5:30:6c:6c:4d:
f1:0f:fd:e3:d4:68:bb:e3:76:e1:9f:bd:d0:6b:9a:0f:dc:73:
7e:af:04:58:8a:20:4a:7b:a6:4d:dd:e6:4a:6a:d7:b3:b6:d6:
43:0d:cd:d8:96:7b:b6:99:c5:66:6c:9b:86:cd:16:15:a6:19:
f7:e9:a1:43:72:b4:f8:a3:ca:bb:fe:7d:d2:22:43:3b:a1:4a:
88:ba:20:5f:f9:88:39:1d:ed:21:e2:05:b7:77:7e:9a:fc:6b:
6c:94:9a:57:66:02:b3:86:5d:e4:b9:2c:02:13:28:01:13:f1:
71:2e:0e:a5:42:55:f5:65:45:39:c6:6b:3c:9d:56:67:42:71:
e0:62:56:a1:2d:ec:32:f6:6f:45:9f:c0:f1:5c:d1:77:3c:10:
18:4b:36:7b
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MzhF
QjRBQjA1QTg2MTY2N0ZEMDM1NTRBQ0ZCODM2QTJDRkRDOURCMB4XDTIzMTIwNzA3
MzgyN1oXDTI0MTIwNTE1MzAyMFowMzExMC8GA1UEAxMoMkJDMTBCOTBEODhDOTQw
MENBQkVDOTU4Qjk3RUQyQTVFN0FBNjk1MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMIiyTJCBMyfod5XPQqFMOS6qWq2I5PDxm7X4EkqbZAGBWUn12E1
R/tDXj8CRXAoAjq7jzW8iwtt6P+LKF4oqd4txhqKY/QWZhJMTFC2ceh5CWoAkXC2
TUo5sCDM6XQZCAzNMZHfJwNL9l/lkDQ5AV1yW8QllqTpNovVH0DJmfTPMhT3TBhn
0qg5SUYAdodTuIP+FN5IL1RPLOUI7C82BaKr+uE4UtdaAmZnZm36V9sEGPOFhxxd
xkGwLSBf+7ryX3fEMNVnmX0IwFH8pJ583xa6jV3AhMJXGfD77i6G7dUmQUZflcsc
tgvWCuxBCDsLkkyMcqlVOiZaBfFDIWiKigMCAwEAAaOCAfUwggHxMB0GA1UdDgQW
BBQrwQuQ2IyUAMq+yVi5ftKl56ppUTAfBgNVHSMEGDAWgBSTjrSrBahhZn/QNVSs
+4NqLP3J2zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ORF9TRUNV
UkUvazQ2MHF3V29ZV1pfMERWVXJQdURhaXo5eWRzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9rNDYwcXdXb1lXWl8wRFZVclB1RGFpejl5ZHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ORF9TRUNVUkUvSzhFTGtOaU1sQURL
dnNsWXVYN1NwZWVxYVZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw
BwMFACQBV6AwDQYJKoZIhvcNAQELBQADggEBAGOCo1Yz1Kwy7enTfePQJ4ZA/zIU
ZNPUfy8oSLHQ59GHz7ocMKRVY39qZoICt79AsnIyJ+O3/etgkOx03yUwPLT2xJfZ
g0BwV20jncrrcXE3CZSGSz19Nz4zKpPwB4ULqeo7UFsyQ+nVMGxsTfEP/ePUaLvj
duGfvdBrmg/cc36vBFiKIEp7pk3d5kpq17O21kMNzdiWe7aZxWZsm4bNFhWmGffp
oUNytPijyrv+fdIiQzuhSoi6IF/5iDkd7SHiBbd3fpr8a2yUmldmArOGXeS5LAIT
KAET8XEuDqVCVfVlRTnGazydVmdCceBiVqEt7DL2b0WfwPFc0Xc8EBhLNns=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:49 2024 by rpki-client on console-ams.rpki-client.org