Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/0HOjjoGaFRI9CFE3lBNNRuGTYls.roa
File: 0HOjjoGaFRI9CFE3lBNNRuGTYls.roa (raw, json)
Hash identifier: jlSXJhFAJ0isSBnGXFxAUKRkpQ2jFZl39mGDYhnI99A=
Subject key identifier: D0:73:A3:8E:81:9A:15:12:3D:08:51:37:94:13:4D:46:E1:93:62:5B
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/0HOjjoGaFRI9CFE3lBNNRuGTYls.roa
Signing time: Thu 15 Sep 2022 02:34:47 +0000
ROA not before: Thu 15 Sep 2022 02:34:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 56850
IP address blocks: 103.156.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D073A38E819A15123D08513794134D46E193625B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:54:95:7d:84:09:78:6f:1f:60:72:48:ce:dc:
c1:87:a3:20:18:f0:1d:7a:2d:eb:da:81:5d:c2:95:
fe:ac:9c:b1:23:47:d1:c1:ea:ed:d6:f4:a2:52:12:
d8:0f:6b:8b:0e:33:51:37:d8:81:33:cb:b6:2f:a1:
ff:f1:15:3d:a6:d3:ae:01:e1:41:fd:74:0e:5b:82:
8c:c6:f9:88:dc:af:a0:19:48:52:e0:b7:d9:b1:e5:
8d:49:31:a5:f6:cc:b2:58:a5:91:e5:ff:8e:3a:95:
84:32:56:98:fc:5a:59:96:eb:c1:97:95:2b:8c:b9:
f1:43:67:8a:c7:c7:b8:06:d4:06:53:25:51:49:eb:
00:72:d3:73:12:56:12:c1:50:18:cc:1a:cf:df:7d:
b6:4d:2e:b5:0e:c8:5b:ea:c0:3e:e3:29:8a:98:c8:
06:56:8c:34:c5:3a:18:31:86:dd:9e:bf:23:b8:69:
c0:b2:f2:db:9f:3e:10:2d:f4:3c:03:59:d5:ce:e3:
47:45:18:db:8e:06:d4:64:4e:bd:67:6c:c7:ad:17:
c1:75:c4:61:1b:c4:1c:5e:6f:e0:42:84:64:e4:18:
2f:4f:5c:e4:22:fa:9d:f8:05:84:ab:3f:7f:ad:25:
3b:cb:32:2e:35:e8:d9:72:3a:f5:22:83:ca:68:99:
b0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:73:A3:8E:81:9A:15:12:3D:08:51:37:94:13:4D:46:E1:93:62:5B
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/0HOjjoGaFRI9CFE3lBNNRuGTYls.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:24:b9:16:50:74:de:5f:0d:a9:d0:31:2d:89:64:35:08:9a:
58:b9:21:4d:1b:e9:e0:ce:6d:17:57:a0:33:35:d8:fb:23:29:
2f:96:53:cf:69:f0:e6:74:5d:cd:07:20:37:21:32:76:5c:a9:
e8:6e:e4:fc:2b:13:72:e6:ea:be:a1:9e:d9:b5:22:a0:21:52:
e2:b1:d5:cd:29:3d:77:09:50:8c:41:2d:7f:32:f2:be:ad:ec:
f0:1f:db:82:f2:95:22:26:08:21:a6:59:41:2b:75:d8:97:e4:
f0:8d:e9:31:ef:64:54:d2:51:1a:e3:8a:95:cc:ba:35:3c:e9:
a7:58:e4:eb:10:d3:63:82:2a:0a:04:db:64:f9:c2:06:51:07:
5f:c1:9e:7d:05:d0:11:98:3f:c0:7d:ff:64:12:60:9d:b3:25:
2d:84:b6:b3:1d:ce:a4:ac:3e:cc:b2:26:dc:36:1f:1a:4e:eb:
60:b3:cc:53:d3:5d:4b:f9:29:ac:3c:39:3c:a9:1c:8b:8a:6b:
00:06:66:7d:1d:2f:25:1c:97:f9:1c:36:93:d9:8d:8f:32:43:
e9:94:4d:05:2b:3e:35:ad:db:ce:6c:30:2a:0e:3e:e5:1c:6c:
05:90:2a:b5:8d:2d:25:39:89:73:9f:00:5d:b1:d6:86:53:b3:
56:e3:4a:ba
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB
OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMjA5MTUw
MjM0NDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQwNzNBMzhFODE5QTE1
MTIzRDA4NTEzNzk0MTM0RDQ2RTE5MzYyNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7VJV9hAl4bx9gckjO3MGHoyAY8B16LevagV3Clf6snLEjR9HB
6u3W9KJSEtgPa4sOM1E32IEzy7Yvof/xFT2m064B4UH9dA5bgozG+Yjcr6AZSFLg
t9mx5Y1JMaX2zLJYpZHl/446lYQyVpj8WlmW68GXlSuMufFDZ4rHx7gG1AZTJVFJ
6wBy03MSVhLBUBjMGs/ffbZNLrUOyFvqwD7jKYqYyAZWjDTFOhgxht2evyO4acCy
8tufPhAt9DwDWdXO40dFGNuOBtRkTr1nbMetF8F1xGEbxBxeb+BChGTkGC9PXOQi
+p34BYSrP3+tJTvLMi416NlyOvUig8pombBnAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU0HOjjoGaFRI9CFE3lBNNRuGTYlswHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc
apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT
Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvMEhPampvR2FGUkk5Q0ZF
M2xCTk5SdUdUWWxzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGecuDANBgkqhkiG9w0BAQsFAAOCAQEATyS5FlB03l8NqdAxLYlkNQiaWLkhTRvp
4M5tF1egMzXY+yMpL5ZTz2nw5nRdzQcgNyEydlyp6G7k/CsTcubqvqGe2bUioCFS
4rHVzSk9dwlQjEEtfzLyvq3s8B/bgvKVIiYIIaZZQSt12Jfk8I3pMe9kVNJRGuOK
lcy6NTzpp1jk6xDTY4IqCgTbZPnCBlEHX8GefQXQEZg/wH3/ZBJgnbMlLYS2sx3O
pKw+zLIm3DYfGk7rYLPMU9NdS/kprDw5PKkci4prAAZmfR0vJRyX+Rw2k9mNjzJD
6ZRNBSs+Na3bzmwwKg4+5RxsBZAqtY0tJTmJc58AXbHWhlOzVuNKug==
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org