Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/vGr2_cU5zLjY7hOfE8CdjjN5bdM.roa
File: vGr2_cU5zLjY7hOfE8CdjjN5bdM.roa (raw, json)
Hash identifier: Mg2cDE242ydEQoP57z2ZLKk/jpsQDLwD/kvS6hGnQKg=
Subject key identifier: BC:6A:F6:FD:C5:39:CC:B8:D8:EE:13:9F:13:C0:9D:8E:33:79:6D:D3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vGr2_cU5zLjY7hOfE8CdjjN5bdM.roa
Signing time: Thu 15 Sep 2022 02:42:31 +0000
ROA not before: Thu 15 Sep 2022 02:42:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 2400:b380::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC6AF6FDC539CCB8D8EE139F13C09D8E33796DD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4e:2c:31:af:5a:84:92:3c:ee:53:b6:80:cf:
31:d1:0f:d6:b1:9f:b4:a6:98:e4:ba:f5:96:c0:a4:
50:2f:34:59:dc:09:70:1e:c8:cc:74:5f:d5:55:e5:
29:bd:1d:4c:33:b1:7d:44:05:b4:b4:9c:2f:39:ea:
26:6e:80:66:2b:68:dc:11:f7:5f:87:38:c0:6b:62:
b4:b6:9c:07:b0:47:ed:3e:4e:07:c8:9b:36:da:57:
c4:7f:ff:af:93:0c:3b:11:64:ed:a8:bf:4f:27:f4:
21:44:c6:56:e3:a0:2a:40:65:3d:f5:d2:1a:47:5b:
89:15:fd:41:c1:e9:bf:c6:70:7a:a4:2f:0e:b6:ac:
8d:d2:c7:0a:b3:da:6f:e1:ae:2a:3c:eb:6a:b4:6e:
07:70:bb:af:7b:75:cd:29:4b:7b:a2:da:06:8b:49:
0c:cc:53:23:db:12:c7:39:da:3b:19:4b:dc:3d:20:
00:db:11:83:a0:d4:83:ab:55:54:38:9b:84:29:2b:
ca:59:62:bb:67:f7:95:5e:91:40:e4:28:db:b2:1d:
c4:df:48:bb:02:ae:ee:ef:a2:87:74:f2:cd:25:2e:
5f:50:0d:8a:de:17:62:bb:c4:22:d5:4b:6e:33:c1:
50:ee:73:c1:9b:bf:da:9d:69:90:73:f8:9e:09:4b:
eb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6A:F6:FD:C5:39:CC:B8:D8:EE:13:9F:13:C0:9D:8E:33:79:6D:D3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vGr2_cU5zLjY7hOfE8CdjjN5bdM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b380::/32
Signature Algorithm: sha256WithRSAEncryption
b2:98:63:7e:a4:0d:86:2b:3b:b6:0e:2a:94:e4:7e:c7:2a:8d:
43:75:a3:64:14:39:92:79:13:53:8c:59:af:7b:26:1c:4c:32:
8a:22:4c:06:03:af:99:d1:36:06:4b:26:d3:3a:6f:4b:b8:a1:
93:b3:7e:ed:d9:69:16:c7:67:47:13:f2:53:2f:46:50:11:2a:
1a:d7:35:cb:41:69:84:a0:06:ae:33:6a:15:cf:6c:5c:81:77:
84:72:0f:fd:9c:0c:34:ce:7f:b7:0a:09:eb:07:81:30:09:16:
b2:1d:da:f7:b0:ec:99:56:c4:94:ba:16:ed:a4:da:6e:c2:5c:
47:a7:a3:76:2e:be:54:29:21:4b:ce:76:91:2c:d1:76:df:53:
38:fd:5f:5b:e3:5d:f0:f9:da:79:09:f7:c7:41:26:ac:9f:99:
c4:eb:bc:30:27:c8:2d:8a:3d:29:15:35:ab:67:57:50:08:4e:
92:b2:ea:b6:d2:1e:00:39:f8:d0:b7:26:95:28:f4:a0:7a:53:
cf:57:59:a6:f8:60:8c:05:d3:06:08:d0:2a:7a:61:e9:66:c3:
54:e5:34:1f:34:90:87:e5:94:bc:04:90:cc:ad:85:3c:3f:80:
73:1b:c5:c3:0e:42:0e:3b:e2:20:54:a9:5b:1d:8f:d3:b5:50:
8c:54:a7:82
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJDNkFGNkZEQzUzOUND
QjhEOEVFMTM5RjEzQzA5RDhFMzM3OTZERDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBTiwxr1qEkjzuU7aAzzHRD9axn7SmmOS69ZbApFAvNFncCXAe
yMx0X9VV5Sm9HUwzsX1EBbS0nC856iZugGYraNwR91+HOMBrYrS2nAewR+0+TgfI
mzbaV8R//6+TDDsRZO2ov08n9CFExlbjoCpAZT310hpHW4kV/UHB6b/GcHqkLw62
rI3Sxwqz2m/hrio862q0bgdwu697dc0pS3ui2gaLSQzMUyPbEsc52jsZS9w9IADb
EYOg1IOrVVQ4m4QpK8pZYrtn95VekUDkKNuyHcTfSLsCru7vood08s0lLl9QDYre
F2K7xCLVS24zwVDuc8Gbv9qdaZBz+J4JS+vrAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUvGr2/cU5zLjY7hOfE8CdjjN5bdMwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vdkdyMl9jVTV6TGpZN2hPZkU4Q2Rq
ak41YmRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAs4Aw
DQYJKoZIhvcNAQELBQADggEBALKYY36kDYYrO7YOKpTkfscqjUN1o2QUOZJ5E1OM
Wa97JhxMMooiTAYDr5nRNgZLJtM6b0u4oZOzfu3ZaRbHZ0cT8lMvRlARKhrXNctB
aYSgBq4zahXPbFyBd4RyD/2cDDTOf7cKCesHgTAJFrId2vew7JlWxJS6Fu2k2m7C
XEeno3YuvlQpIUvOdpEs0XbfUzj9X1vjXfD52nkJ98dBJqyfmcTrvDAnyC2KPSkV
NatnV1AITpKy6rbSHgA5+NC3JpUo9KB6U89XWab4YIwF0wYI0Cp6Yelmw1TlNB80
kIfllLwEkMythTw/gHMbxcMOQg474iBUqVsdj9O1UIxUp4I=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org