Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/34mkex1A0IdluTHXd6aNHh7ISQA.roa
File: 34mkex1A0IdluTHXd6aNHh7ISQA.roa (raw, json)
Hash identifier: NN6LO4br6hwW4Xy64u5DPYGNyZodmQ+MPchBy/RPsts=
Subject key identifier: DF:89:A4:7B:1D:40:D0:87:65:B9:31:D7:77:A6:8D:1E:1E:C8:49:00
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/34mkex1A0IdluTHXd6aNHh7ISQA.roa
Signing time: Thu 15 Sep 2022 02:50:45 +0000
ROA not before: Thu 15 Sep 2022 02:50:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18018
IP address blocks: 122.255.93.112/28 maxlen: 28
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF89A47B1D40D08765B931D777A68D1E1EC84900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d1:b3:d3:bb:ef:3b:9a:e8:df:aa:f1:14:2c:
39:ee:fc:0f:5f:04:3a:0d:9a:91:f1:15:10:bc:f5:
85:3c:ea:00:8e:af:52:86:39:67:eb:d3:1d:d9:25:
f7:78:2e:e5:b0:68:66:ca:ff:ec:dc:f3:e7:fb:5d:
ce:ff:03:9f:e2:d5:18:b8:95:51:dc:0d:c0:01:dd:
c9:e4:54:b1:35:a9:c4:b4:3c:0e:eb:66:82:ff:18:
f5:33:7f:4f:f0:cc:51:aa:5a:34:de:9c:c0:43:ad:
bd:6e:1d:3b:38:70:55:f4:c8:d7:6b:fd:2c:54:b1:
1f:47:29:f0:5f:65:67:3f:c2:a7:49:04:ec:20:b1:
9b:15:2a:47:4a:ec:a6:af:b3:39:e6:a8:7a:3b:c8:
1b:98:fb:1f:1e:c1:b8:46:66:4f:cc:22:ed:41:80:
dd:ba:5b:e9:61:b1:bc:8d:f2:28:66:df:1c:aa:2b:
fa:3c:2d:a8:96:9d:73:e7:31:eb:b2:73:e8:4a:ee:
d5:c9:2a:f0:3d:4d:eb:cf:32:9a:40:27:c7:aa:21:
f9:1f:f4:15:cf:b7:59:08:93:13:2d:26:6f:a1:24:
d6:30:f2:6d:cf:2f:0d:4f:68:ba:05:cf:f6:13:be:
51:3f:e6:88:9d:25:d2:c1:f7:35:d7:6b:03:b0:81:
86:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:89:A4:7B:1D:40:D0:87:65:B9:31:D7:77:A6:8D:1E:1E:C8:49:00
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/34mkex1A0IdluTHXd6aNHh7ISQA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.93.112/28
Signature Algorithm: sha256WithRSAEncryption
37:31:48:94:12:29:1b:e1:f5:3e:4f:da:0b:46:79:8e:24:e9:
6a:ad:32:41:59:56:dd:6e:41:21:09:66:de:b1:26:fe:fb:79:
be:5c:5c:04:22:cd:09:91:54:af:65:8f:66:a9:ce:4b:d8:82:
6e:f0:af:fd:2d:a3:90:d5:b3:bf:42:06:91:b1:69:a5:89:c3:
ea:88:56:be:31:55:52:6d:a4:3a:d0:83:52:73:92:97:a2:3c:
e6:63:e1:66:98:55:82:56:1f:c6:de:59:c4:d7:b3:63:da:e9:
88:01:aa:06:e1:1e:e4:e4:4e:a2:5b:5a:da:6d:fe:65:70:40:
d3:3d:e1:f5:a6:86:e1:00:ee:08:25:32:3a:41:ed:3b:d3:22:
12:44:2f:3c:4a:0b:04:23:59:62:e1:45:d3:b0:de:00:5b:d5:
38:dd:48:b8:db:a4:c4:e9:a4:94:71:7e:b7:88:5e:2a:e8:05:
82:d4:b7:f5:a0:f0:f5:44:82:75:b0:e5:32:5a:aa:d3:18:18:
ec:8f:cf:6a:93:26:a3:66:44:88:15:fc:f4:44:79:ee:82:a1:
fe:7c:0c:7e:e7:7e:25:1f:e0:75:3d:53:b7:cd:fe:a5:d3:66:
59:70:a1:9a:99:42:3d:de:29:d7:e7:cf:f7:04:5e:4d:69:3f:
6e:1d:33:b2
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy
Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMjA5MTUw
MjUwNDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERGODlBNDdCMUQ0MEQw
ODc2NUI5MzFENzc3QTY4RDFFMUVDODQ5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC80bPTu+87mujfqvEULDnu/A9fBDoNmpHxFRC89YU86gCOr1KG
OWfr0x3ZJfd4LuWwaGbK/+zc8+f7Xc7/A5/i1Ri4lVHcDcAB3cnkVLE1qcS0PA7r
ZoL/GPUzf0/wzFGqWjTenMBDrb1uHTs4cFX0yNdr/SxUsR9HKfBfZWc/wqdJBOwg
sZsVKkdK7KavsznmqHo7yBuY+x8ewbhGZk/MIu1BgN26W+lhsbyN8ihm3xyqK/o8
LaiWnXPnMeuyc+hK7tXJKvA9TevPMppAJ8eqIfkf9BXPt1kIkxMtJm+hJNYw8m3P
Lw1PaLoFz/YTvlE/5oidJdLB9zXXawOwgYbRAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU34mkex1A0IdluTHXd6aNHh7ISQAwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe
wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv
bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC8zNG1rZXgxQTBJZGx1VEhYZDZh
TkhoN0lTUUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9d
cDANBgkqhkiG9w0BAQsFAAOCAQEANzFIlBIpG+H1Pk/aC0Z5jiTpaq0yQVlW3W5B
IQlm3rEm/vt5vlxcBCLNCZFUr2WPZqnOS9iCbvCv/S2jkNWzv0IGkbFppYnD6ohW
vjFVUm2kOtCDUnOSl6I85mPhZphVglYfxt5ZxNezY9rpiAGqBuEe5OROolta2m3+
ZXBA0z3h9aaG4QDuCCUyOkHtO9MiEkQvPEoLBCNZYuFF07DeAFvVON1IuNukxOmk
lHF+t4heKugFgtS39aDw9USCdbDlMlqq0xgY7I/PapMmo2ZEiBX89ER57oKh/nwM
fud+JR/gdT1Tt83+pdNmWXChmplCPd4p1+fP9wReTWk/bh0zsg==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:37 2023 by rpki-client on console-ams.rpki-client.org