Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYVC/GVmZReyCBpg7osO97qsGYTTpkdI.roa
File: GVmZReyCBpg7osO97qsGYTTpkdI.roa (raw, json)
Hash identifier: E0E/tGJSBdYdBmgTvaMjXxurf9K9QTRh4JZvTXA/dK8=
Subject key identifier: 19:59:99:45:EC:82:06:98:3B:A2:C3:BD:EE:AB:06:61:34:E9:91:D2
Certificate issuer: /CN=370F3943433AD963E299A9BE9239D0F3E37A082A
Certificate serial: 0260
Authority key identifier: 37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/GVmZReyCBpg7osO97qsGYTTpkdI.roa
Signing time: Mon 26 Aug 2024 05:12:08 +0000
ROA not before: Mon 26 Aug 2024 05:12:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7483
IP address blocks: 103.183.154.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 608 (0x260)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370F3943433AD963E299A9BE9239D0F3E37A082A
Validity
Not Before: Aug 26 05:12:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=19599945EC8206983BA2C3BDEEAB066134E991D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0b:67:58:f4:62:9d:ab:78:fa:8c:0f:6d:66:
cc:e9:d0:c0:b2:a2:0c:bf:d2:d0:b7:ff:24:f2:00:
c4:fc:fc:c7:ca:74:70:be:a9:50:e1:de:3f:1b:c4:
f6:a5:9b:d5:76:ee:66:53:fe:76:09:40:50:10:49:
92:0a:da:af:e8:a9:38:11:e3:20:bd:5a:41:a2:68:
48:17:80:52:81:95:e6:1e:6d:0b:9f:2c:1f:00:50:
04:16:e2:01:82:7a:42:71:98:34:bb:14:43:a1:83:
d9:63:80:9d:86:c4:f3:93:d9:f8:c3:3b:a5:4d:73:
ed:b5:da:fd:e5:ec:3f:26:2e:c7:9a:98:5b:3c:cc:
e3:bb:8e:0b:7d:18:8c:86:1a:1f:e3:50:b5:11:2f:
a9:83:0f:1d:8d:2d:90:c6:4a:a1:ff:68:61:7b:f8:
0a:70:50:9f:1f:99:f8:4e:c7:57:a3:44:52:fb:74:
a2:5a:9a:84:a7:53:3b:52:15:47:97:84:ab:23:71:
6f:09:27:e9:ef:25:da:0d:ae:4e:5a:d8:a4:fd:88:
99:19:73:c6:e2:6d:dd:f2:dd:11:74:50:dd:07:cc:
a2:99:44:ac:48:0e:22:2e:da:4b:f9:6f:23:8b:6c:
6b:f6:c6:25:98:40:99:fb:e1:d4:fc:ac:cc:5f:1f:
6e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:59:99:45:EC:82:06:98:3B:A2:C3:BD:EE:AB:06:61:34:E9:91:D2
X509v3 Authority Key Identifier:
keyid:37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/GVmZReyCBpg7osO97qsGYTTpkdI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.154.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:d3:e9:80:ac:06:48:81:8b:2e:7d:0c:15:2e:9c:fa:0d:14:
b3:85:39:fe:f7:cc:2b:78:5d:0e:bc:37:22:bd:be:75:a7:54:
8b:76:91:cc:d0:22:76:3e:c1:65:eb:59:26:b5:f1:f6:85:70:
f6:f5:68:34:c6:49:8c:fa:22:89:cd:09:15:cb:cf:8e:4a:5d:
f4:8e:80:ed:a5:f7:c8:ec:bd:a9:8a:b5:8c:2a:dd:77:a3:9d:
00:ea:54:80:52:0c:1f:7e:2c:55:b3:03:5c:54:51:8f:f0:25:
05:9f:f7:98:96:76:9b:8d:f4:82:cb:ae:e1:d3:e1:4e:7c:da:
e1:ba:c5:70:6c:dc:2b:c7:45:e2:cc:bf:04:96:33:ca:ba:0e:
3f:fa:cb:f7:66:81:0a:a1:52:a3:e2:58:19:09:c6:32:47:ca:
24:98:d2:9e:0a:34:e0:e3:93:df:60:d5:62:66:bf:10:bf:56:
9e:85:66:20:a2:11:61:0f:51:2c:e5:9d:12:c5:ac:1d:1f:1e:
06:b4:f7:7f:58:a1:36:20:0e:d6:0c:17:b1:79:2d:cd:0e:c8:
ef:04:97:23:fe:0e:3c:c1:cd:31:e3:be:4f:9a:db:bc:86:cf:
b3:7e:d8:de:c2:3c:4d:e8:20:b2:8f:3a:5f:99:82:3c:12:d1:
8f:bc:41:bb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcw
RjM5NDM0MzNBRDk2M0UyOTlBOUJFOTIzOUQwRjNFMzdBMDgyQTAeFw0yNDA4MjYw
NTEyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5NTk5OTQ1RUM4MjA2
OTgzQkEyQzNCREVFQUIwNjYxMzRFOTkxRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuC2dY9GKdq3j6jA9tZszp0MCyogy/0tC3/yTyAMT8/MfKdHC+
qVDh3j8bxPalm9V27mZT/nYJQFAQSZIK2q/oqTgR4yC9WkGiaEgXgFKBleYebQuf
LB8AUAQW4gGCekJxmDS7FEOhg9ljgJ2GxPOT2fjDO6VNc+212v3l7D8mLseamFs8
zOO7jgt9GIyGGh/jULURL6mDDx2NLZDGSqH/aGF7+ApwUJ8fmfhOx1ejRFL7dKJa
moSnUztSFUeXhKsjcW8JJ+nvJdoNrk5a2KT9iJkZc8bibd3y3RF0UN0HzKKZRKxI
DiIu2kv5byOLbGv2xiWYQJn74dT8rMxfH255AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUGVmZReyCBpg7osO97qsGYTTpkdIwHwYDVR0jBBgwFoAUNw85Q0M62WPimam+
kjnQ8+N6CCowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lWQy9O
dzg1UTBNNjJXUGltYW0ta2puUTgtTjZDQ28uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L053ODVRME02MldQaW1hbS1ram5ROC1ONkNDby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0NZVkMvR1ZtWlJleUNCcGc3b3NPOTdxc0dZ
VFRwa2RJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe3mjAN
BgkqhkiG9w0BAQsFAAOCAQEAPdPpgKwGSIGLLn0MFS6c+g0Us4U5/vfMK3hdDrw3
Ir2+dadUi3aRzNAidj7BZetZJrXx9oVw9vVoNMZJjPoiic0JFcvPjkpd9I6A7aX3
yOy9qYq1jCrdd6OdAOpUgFIMH34sVbMDXFRRj/AlBZ/3mJZ2m430gsuu4dPhTnza
4brFcGzcK8dF4sy/BJYzyroOP/rL92aBCqFSo+JYGQnGMkfKJJjSngo04OOT32DV
Yma/EL9WnoVmIKIRYQ9RLOWdEsWsHR8eBrT3f1ihNiAO1gwXsXktzQ7I7wSXI/4O
PMHNMeO+T5rbvIbPs37Y3sI8Teggso86X5mCPBLRj7xBuw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:23 2025 by rpki-client