Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7C5hMIjVmYUJyDQAUZHfptX6ttI.roa
File: 7C5hMIjVmYUJyDQAUZHfptX6ttI.roa (raw, json)
Hash identifier: AnMAhi/Ymb3YWAsM7/Bh/oPXQYbkIw8Cxumx12Nk41c=
Subject key identifier: EC:2E:61:30:88:D5:99:85:09:C8:34:00:51:91:DF:A6:D5:FA:B6:D2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DB9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7C5hMIjVmYUJyDQAUZHfptX6ttI.roa
Signing time: Thu 29 Dec 2022 09:31:47 +0000
ROA not before: Thu 29 Dec 2022 09:31:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.236.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3513 (0xdb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EC2E613088D5998509C834005191DFA6D5FAB6D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:83:a2:84:a9:18:54:7c:4d:0c:85:98:9d:
2f:50:c3:30:fa:d2:90:ee:2e:ae:10:3c:5e:de:6c:
9e:37:8c:5e:a1:9d:ed:76:6b:24:6c:40:2f:dd:48:
c3:14:9c:f1:c1:d7:9a:88:93:1c:65:33:7e:13:72:
ab:1e:0b:d6:a0:12:e7:41:aa:f6:df:f9:93:bc:5e:
ad:7a:3a:58:06:f8:fa:d7:2e:2a:36:b9:c9:f5:9a:
8b:12:40:1c:87:c7:eb:81:9c:de:9e:4d:54:fc:10:
4a:5c:dc:41:9d:0a:15:d4:8f:d5:b7:36:ad:3f:fb:
16:dd:8e:10:45:53:ce:c8:db:2b:05:85:e8:78:74:
f3:4a:85:95:70:03:90:1e:ad:da:7f:8d:28:e4:73:
06:cc:9c:3f:3a:85:53:49:4b:44:2a:a4:05:84:a2:
5d:3c:ee:64:be:40:13:e9:b5:d1:06:30:ef:2b:6f:
51:c8:4c:cc:a0:44:98:12:63:25:d1:60:62:2a:02:
95:3d:0c:13:f4:da:eb:88:8a:eb:97:40:85:94:07:
e3:32:5e:45:3f:a6:c8:57:9d:64:27:56:f7:27:76:
c3:1c:2d:42:f9:af:74:b3:80:fb:7c:28:e7:00:86:
5a:1f:e5:15:da:ad:b1:66:7c:e9:26:61:17:5c:4a:
a0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2E:61:30:88:D5:99:85:09:C8:34:00:51:91:DF:A6:D5:FA:B6:D2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7C5hMIjVmYUJyDQAUZHfptX6ttI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.236.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:c3:c9:ed:d1:6e:0f:f4:45:64:a1:68:10:f3:d6:f9:20:1e:
4d:94:f5:22:85:c0:49:e3:c9:37:0c:b6:d6:ac:df:ed:8b:66:
35:fd:dc:26:99:64:e1:58:99:2d:2a:be:be:61:11:52:40:d5:
05:46:3a:22:04:a1:ce:aa:65:60:30:de:11:7f:65:ea:67:96:
24:1a:5b:0c:b5:b0:cb:8f:6c:78:b5:e1:85:02:ef:77:15:29:
fa:87:a0:ae:a2:f6:8e:da:94:8d:58:7c:3a:c7:2d:c1:d6:81:
3f:e9:79:1e:60:b6:2e:5b:f8:c9:31:d5:04:53:20:b4:a9:43:
2c:29:6e:9a:be:08:11:fd:f1:44:90:26:0e:db:cd:9b:a6:0c:
a6:09:ee:7f:ec:f3:24:46:dc:de:eb:f1:33:26:64:28:71:ce:
da:68:6f:6d:0c:79:5c:48:0d:e7:1e:5d:5e:cc:0c:d1:d9:02:
e1:6d:5f:42:2b:74:47:4f:b7:17:18:47:69:75:49:cb:00:23:
87:44:19:0e:da:90:65:53:00:4e:97:79:ae:f7:0e:9f:97:a5:
04:1c:f7:74:e2:45:33:a5:03:b0:59:a1:a7:79:24:de:c6:6f:
5e:fc:98:38:66:70:87:a9:7b:a0:40:8f:b9:15:1a:f3:ed:5d:
17:37:24:90
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMxNDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVDMkU2MTMwODhENTk5
ODUwOUM4MzQwMDUxOTFERkE2RDVGQUI2RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlOoOihKkYVHxNDIWYnS9QwzD60pDuLq4QPF7ebJ43jF6hne12
ayRsQC/dSMMUnPHB15qIkxxlM34TcqseC9agEudBqvbf+ZO8Xq16OlgG+PrXLio2
ucn1mosSQByHx+uBnN6eTVT8EEpc3EGdChXUj9W3Nq0/+xbdjhBFU87I2ysFheh4
dPNKhZVwA5Aerdp/jSjkcwbMnD86hVNJS0QqpAWEol087mS+QBPptdEGMO8rb1HI
TMygRJgSYyXRYGIqApU9DBP02uuIiuuXQIWUB+MyXkU/pshXnWQnVvcndsMcLUL5
r3SzgPt8KOcAhlof5RXarbFmfOkmYRdcSqDDAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU7C5hMIjVmYUJyDQAUZHfptX6ttIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy83QzVoTUlqVm1ZVUp5
RFFBVVpIZnB0WDZ0dEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBlnTsMA0GCSqGSIb3DQEBCwUAA4IBAQAtw8nt0W4P9EVkoWgQ89b5IB5NlPUi
hcBJ48k3DLbWrN/ti2Y1/dwmmWThWJktKr6+YRFSQNUFRjoiBKHOqmVgMN4Rf2Xq
Z5YkGlsMtbDLj2x4teGFAu93FSn6h6CuovaO2pSNWHw6xy3B1oE/6XkeYLYuW/jJ
MdUEUyC0qUMsKW6avggR/fFEkCYO282bpgymCe5/7PMkRtze6/EzJmQocc7aaG9t
DHlcSA3nHl1ezAzR2QLhbV9CK3RHT7cXGEdpdUnLACOHRBkO2pBlUwBOl3mu9w6f
l6UEHPd04kUzpQOwWaGneSTexm9e/Jg4ZnCHqXugQI+5FRrz7V0XNySQ
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org