Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/VGXPaYMpEsnF3pWl-vAx2AO0gxw.roa
File: VGXPaYMpEsnF3pWl-vAx2AO0gxw.roa (raw, json)
Hash identifier: LiO51ecNk0USqxUUnHI5FUhlxCKOgok2xAhHUklhhZ0=
Subject key identifier: 54:65:CF:69:83:29:12:C9:C5:DE:95:A5:FA:F0:31:D8:03:B4:83:1C
Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Certificate serial: 0BF5
Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/VGXPaYMpEsnF3pWl-vAx2AO0gxw.roa
Signing time: Mon 26 Aug 2024 05:09:46 +0000
ROA not before: Mon 26 Aug 2024 05:09:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 147035
IP address blocks: 2403:8ec0::/32 maxlen: 64
Validation: Failed, certificate revoked on Mon 23 Sep 2024 07:51:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3061 (0xbf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Validity
Not Before: Aug 26 05:09:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5465CF69832912C9C5DE95A5FAF031D803B4831C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:66:44:8b:8d:74:8e:66:2e:47:86:31:cb:7d:
56:9e:67:de:d8:b7:0e:b6:60:72:35:02:4a:5e:9c:
b6:7c:da:09:56:ad:d4:99:f8:62:c8:10:16:73:94:
90:df:88:3a:25:20:a9:a4:a3:3e:f1:74:64:17:d9:
79:12:b6:8e:7b:57:32:05:3a:fe:ba:97:e5:c3:6e:
65:9d:fb:dd:10:af:42:0f:33:1c:75:a5:41:8f:52:
35:5d:4e:48:bf:6c:d2:7f:f3:f2:c2:cd:6a:1e:f4:
5d:07:7d:e2:c2:b5:4f:59:2b:53:26:0b:df:cf:e2:
a1:1a:3a:54:e0:07:f2:26:60:0c:c7:75:7b:81:36:
9f:c6:f1:07:b2:e2:f8:1e:f7:90:07:0d:44:42:da:
cc:17:e1:42:9f:99:78:53:2b:35:1b:51:ad:1f:5b:
1b:9c:87:a6:0f:bd:f0:eb:29:ee:5b:bf:1f:e9:3b:
f1:80:c8:ef:21:35:0a:60:82:d8:7c:7f:6c:fa:b7:
8f:ea:bb:74:ae:3c:fd:cf:09:4b:b9:e5:14:e5:a8:
96:e3:70:f8:a8:e4:05:9d:be:d8:23:00:1d:a6:f4:
b7:ca:14:f3:e7:4c:4a:6b:b6:b4:4b:1d:da:e0:39:
78:4d:3c:fb:0b:e5:ba:cd:c6:58:0f:33:22:e1:9b:
9b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:65:CF:69:83:29:12:C9:C5:DE:95:A5:FA:F0:31:D8:03:B4:83:1C
X509v3 Authority Key Identifier:
keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/VGXPaYMpEsnF3pWl-vAx2AO0gxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
37:14:0c:9c:df:d1:81:a6:db:84:bd:98:26:c5:5a:0c:24:e5:
c2:ea:4a:14:6c:29:56:f8:f6:04:b0:1a:63:3e:01:c9:0a:f7:
67:21:f7:90:9f:1a:5c:52:b3:cf:1e:bd:f5:04:f1:8a:b0:05:
54:c8:75:70:05:99:b3:bb:26:b5:68:cc:39:33:bc:c0:be:ed:
41:69:98:cd:5d:eb:14:8d:2b:fa:51:0c:1d:48:bf:e1:79:b6:
37:69:a3:a7:83:95:bc:bb:f8:01:9b:72:cb:6e:43:e9:9d:cf:
15:c3:d6:12:2a:e6:f4:40:4f:8d:90:f1:41:d1:a3:64:ed:1c:
77:6b:f5:33:d8:8b:ca:ea:71:29:00:f0:77:fe:a3:c7:62:0d:
61:99:a0:fc:6a:da:4b:54:28:18:f5:f4:26:5c:b2:92:fe:77:
75:44:b1:4d:3c:4c:4f:9a:9a:56:26:74:e5:44:00:0c:d9:2c:
51:b7:f8:6b:08:ae:d2:65:6e:49:6f:22:fd:40:82:50:ba:ef:
e3:07:f7:4c:4a:bb:f4:0e:72:da:13:2c:91:0e:5f:10:42:89:
a2:93:e0:42:37:4b:24:3a:14:ad:22:fb:10:a0:37:a6:83:34:
c8:23:ef:57:d3:90:ce:80:cc:db:10:6a:62:20:9b:e9:e1:17:
03:1b:68:a0
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4
NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNDA4MjYw
NTA5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0NjVDRjY5ODMyOTEy
QzlDNURFOTVBNUZBRjAzMUQ4MDNCNDgzMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDZkSLjXSOZi5HhjHLfVaeZ97Ytw62YHI1AkpenLZ82glWrdSZ
+GLIEBZzlJDfiDolIKmkoz7xdGQX2XkSto57VzIFOv66l+XDbmWd+90Qr0IPMxx1
pUGPUjVdTki/bNJ/8/LCzWoe9F0HfeLCtU9ZK1MmC9/P4qEaOlTgB/ImYAzHdXuB
Np/G8Qey4vge95AHDURC2swX4UKfmXhTKzUbUa0fWxuch6YPvfDrKe5bvx/pO/GA
yO8hNQpggth8f2z6t4/qu3SuPP3PCUu55RTlqJbjcPio5AWdvtgjAB2m9LfKFPPn
TEprtrRLHdrgOXhNPPsL5brNxlgPMyLhm5tZAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUVGXPaYMpEsnF3pWl+vAx2AO0gxwwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV
alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV
L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL1ZHWFBhWU1wRXNuRjNwV2wt
dkF4MkFPMGd4dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
A47AMA0GCSqGSIb3DQEBCwUAA4IBAQA3FAyc39GBptuEvZgmxVoMJOXC6koUbClW
+PYEsBpjPgHJCvdnIfeQnxpcUrPPHr31BPGKsAVUyHVwBZmzuya1aMw5M7zAvu1B
aZjNXesUjSv6UQwdSL/hebY3aaOng5W8u/gBm3LLbkPpnc8Vw9YSKub0QE+NkPFB
0aNk7Rx3a/Uz2IvK6nEpAPB3/qPHYg1hmaD8atpLVCgY9fQmXLKS/nd1RLFNPExP
mppWJnTlRAAM2SxRt/hrCK7SZW5JbyL9QIJQuu/jB/dMSrv0DnLaEyyRDl8QQomi
k+BCN0skOhStIvsQoDemgzTII+9X05DOgMzbEGpiIJvp4RcDG2ig
-----END CERTIFICATE-----
Generated at Mon Sep 23 09:33:21 2024 by rpki-client on console-fra.rpki-client.org