Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/lZ2CJdsZBiW-Cp6ycOs8OwK-RiA.roa
File: lZ2CJdsZBiW-Cp6ycOs8OwK-RiA.roa (raw, json)
Hash identifier: EM43sifH8td3w3BX0t/LFzZf9cl4ac3L1B6oe7fuXsg=
Subject key identifier: 95:9D:82:25:DB:19:06:25:BE:0A:9E:B2:70:EB:3C:3B:02:BE:46:20
Certificate issuer: /CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Certificate serial: 0DB9
Authority key identifier: B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/lZ2CJdsZBiW-Cp6ycOs8OwK-RiA.roa
Signing time: Thu 15 Sep 2022 02:50:43 +0000
ROA not before: Thu 15 Sep 2022 02:50:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138145
IP address blocks: 2404:7340::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3513 (0xdb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Validity
Not Before: Sep 15 02:50:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=959D8225DB190625BE0A9EB270EB3C3B02BE4620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ba:b6:6c:a5:00:20:15:df:5d:bf:7d:a4:ea:
b0:01:75:93:5e:d8:c3:50:ab:10:bb:b1:b3:d3:ee:
04:a8:63:7e:6c:73:f1:c2:bb:87:84:3d:91:a7:97:
08:bc:03:0d:5b:33:7a:03:7a:bc:be:ea:9f:15:16:
74:59:56:5f:30:91:a4:78:89:ae:20:dc:c3:c8:b9:
9e:e3:00:6b:e3:fa:3f:8a:9e:df:df:96:a9:54:62:
5a:98:ac:af:be:6a:f9:06:01:9b:6b:5a:0f:9f:59:
24:0d:71:e9:b8:d8:7e:6e:5b:d4:2f:62:dc:4b:4e:
23:d3:0b:0e:f0:9d:a3:40:76:ca:ae:31:c4:d7:fe:
48:b6:b9:bc:1f:6c:11:be:54:88:15:8d:b1:0a:35:
30:47:dc:fa:e3:f1:35:6a:da:16:2f:01:b7:e2:e3:
a8:e4:d7:31:8f:c5:32:e9:33:0b:f0:da:a7:6a:0e:
7d:dd:c6:7f:74:f9:f7:dc:4f:59:a5:b8:5b:bc:a9:
ae:19:42:d9:92:2b:cd:85:6a:3c:7e:89:bd:20:ee:
6f:cb:9e:ad:4e:b9:80:ff:e6:ef:07:70:14:06:0a:
0d:64:d5:4f:42:0b:c5:cd:e8:bd:e3:fc:18:f9:08:
da:5d:fb:61:e4:31:11:08:9e:1e:44:0d:31:90:b2:
76:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9D:82:25:DB:19:06:25:BE:0A:9E:B2:70:EB:3C:3B:02:BE:46:20
X509v3 Authority Key Identifier:
keyid:B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/tWybLjoECHnP0A_nTWl_sEZc8no.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/lZ2CJdsZBiW-Cp6ycOs8OwK-RiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:7340::/32
Signature Algorithm: sha256WithRSAEncryption
0d:7a:34:d3:56:04:fd:fe:b6:e1:20:49:85:c8:94:ea:b4:f8:
c9:3b:7f:96:43:14:b4:7d:63:a4:57:e8:16:d9:ef:7d:a5:2f:
00:e5:f6:86:3c:fd:b3:af:34:7d:62:1d:55:54:91:fc:2e:c2:
cb:da:e0:af:3d:f1:88:83:ae:9d:24:13:e3:3f:c3:10:ee:90:
f3:fc:55:a5:2c:bd:a9:e7:26:96:6a:42:00:1a:23:5c:65:d3:
50:5d:6e:3f:d6:b3:2f:40:7d:43:3c:31:2c:a2:ed:c5:c4:45:
65:06:45:ee:31:cb:87:7e:73:94:eb:7c:78:f2:2a:53:e1:47:
a4:96:bd:b4:6e:b6:45:eb:c9:41:f6:e3:57:b4:4e:11:e5:50:
c5:a8:21:ab:11:66:9b:2a:85:f8:0c:ef:44:8d:5c:f7:a2:96:
a7:0d:e1:de:25:3e:18:08:d1:aa:1b:50:d3:99:61:30:42:93:
6a:90:72:66:a2:32:c8:48:26:84:2f:bf:1b:6e:ca:64:54:88:
05:47:0a:2c:55:dd:17:19:0c:6d:ad:b8:cc:e2:07:c8:35:6a:
f3:91:c1:e0:6b:2a:38:b2:25:ca:b7:df:44:77:3c:c1:68:0e:
79:88:46:0b:4a:db:16:56:3b:26:4a:05:34:b3:41:a0:bd:17:
78:9f:3c:df
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjU2
QzlCMkUzQTA0MDg3OUNGRDAwRkU3NEQ2OTdGQjA0NjVDRjI3QTAeFw0yMjA5MTUw
MjUwNDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk1OUQ4MjI1REIxOTA2
MjVCRTBBOUVCMjcwRUIzQzNCMDJCRTQ2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGurZspQAgFd9dv32k6rABdZNe2MNQqxC7sbPT7gSoY35sc/HC
u4eEPZGnlwi8Aw1bM3oDery+6p8VFnRZVl8wkaR4ia4g3MPIuZ7jAGvj+j+Knt/f
lqlUYlqYrK++avkGAZtrWg+fWSQNcem42H5uW9QvYtxLTiPTCw7wnaNAdsquMcTX
/ki2ubwfbBG+VIgVjbEKNTBH3Prj8TVq2hYvAbfi46jk1zGPxTLpMwvw2qdqDn3d
xn90+ffcT1mluFu8qa4ZQtmSK82Fajx+ib0g7m/Lnq1OuYD/5u8HcBQGCg1k1U9C
C8XN6L3j/Bj5CNpd+2HkMREInh5EDTGQsnbxAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUlZ2CJdsZBiW+Cp6ycOs8OwK+RiAwHwYDVR0jBBgwFoAUtWybLjoECHnP0A/n
TWl/sEZc8nowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkhJWUlO
L3RXeWJMam9FQ0huUDBBX25UV2xfc0VaYzhuby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvdFd5Ykxqb0VDSG5QMEFfblRXbF9zRVpjOG5vLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkhJWUlOL2xaMkNKZHNaQmlXLUNwNnlj
T3M4T3dLLVJpQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
BHNAMA0GCSqGSIb3DQEBCwUAA4IBAQANejTTVgT9/rbhIEmFyJTqtPjJO3+WQxS0
fWOkV+gW2e99pS8A5faGPP2zrzR9Yh1VVJH8LsLL2uCvPfGIg66dJBPjP8MQ7pDz
/FWlLL2p5yaWakIAGiNcZdNQXW4/1rMvQH1DPDEsou3FxEVlBkXuMcuHfnOU63x4
8ipT4Ueklr20brZF68lB9uNXtE4R5VDFqCGrEWabKoX4DO9EjVz3opanDeHeJT4Y
CNGqG1DTmWEwQpNqkHJmojLISCaEL78bbspkVIgFRwosVd0XGQxtrbjM4gfINWrz
kcHgayo4siXKt99EdzzBaA55iEYLStsWVjsmSgU0s0GgvRd4nzzf
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:16 2023 by rpki-client on console-fra.rpki-client.org