Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/7YMl7q71jTQzNUGBAa40fZGeevo.roa
File: 7YMl7q71jTQzNUGBAa40fZGeevo.roa (raw, json)
Hash identifier: S4wKWEEMyhFvS7dsmHRTopEcPRMGNnA1qXB60XbKpjg=
Subject key identifier: ED:83:25:EE:AE:F5:8D:34:33:35:41:81:01:AE:34:7D:91:9E:7A:FA
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0D05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/7YMl7q71jTQzNUGBAa40fZGeevo.roa
Signing time: Thu 15 Sep 2022 02:37:06 +0000
ROA not before: Thu 15 Sep 2022 02:37:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 15 02:37:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED8325EEAEF58D343335418101AE347D919E7AFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c2:33:80:72:7b:80:81:c6:72:60:25:2e:8c:
ab:c7:b3:a4:7b:fa:a4:74:a5:0f:e1:58:c0:65:ea:
59:0e:7a:2b:1b:8b:71:56:6c:47:09:db:87:0c:bb:
e6:2a:6a:3e:ed:26:9e:65:69:6a:39:4a:2f:de:a0:
0d:37:ad:05:60:f9:f2:18:77:03:af:7e:a8:58:66:
19:a9:33:72:43:b1:e1:f5:3e:47:b2:c3:0d:cd:3d:
ec:0e:c0:98:a7:eb:2d:f2:ca:ab:ff:53:3a:6e:67:
28:6f:49:31:e1:4c:c9:d2:83:97:04:3c:da:d6:53:
c8:21:32:a6:4a:35:0a:d6:52:49:09:d0:b6:4c:ca:
77:58:5a:c9:54:33:f5:08:e0:3d:cc:dd:42:e3:99:
23:72:ac:d6:22:31:80:4d:10:41:48:f6:b0:e6:c4:
e4:b8:4f:fc:a9:90:a5:4f:80:44:b0:aa:e4:90:38:
9d:f0:99:30:34:31:ed:a2:f9:6b:fd:c1:b6:8f:40:
65:86:66:26:be:52:7a:76:d5:da:b1:5d:3e:d9:00:
34:3f:47:bb:64:f7:2f:c7:31:5a:c0:6e:68:40:a1:
0d:0a:3d:b9:a5:db:38:c9:ee:40:3f:b7:67:3e:49:
2b:2f:19:f4:91:e3:1d:72:a2:80:9f:0a:6b:33:35:
d2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:83:25:EE:AE:F5:8D:34:33:35:41:81:01:AE:34:7D:91:9E:7A:FA
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/7YMl7q71jTQzNUGBAa40fZGeevo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:79:08:88:b8:ef:fa:64:ba:01:d0:a1:85:d7:12:bc:27:ca:
7a:aa:0f:ac:71:84:db:e9:29:02:ac:f3:58:57:53:9d:45:49:
3e:d4:04:05:e6:36:40:1b:69:88:de:3a:59:b4:4c:c1:34:e8:
93:03:f3:b1:70:83:4b:92:07:3f:58:c1:a6:5e:ae:a3:05:da:
86:0c:73:75:f2:69:b4:7c:46:0a:64:a5:70:50:b6:99:0d:ca:
b9:28:a5:f0:d5:13:2e:30:c6:20:a3:33:cd:30:5f:a1:06:2c:
a9:30:18:73:2b:2a:c5:bb:a1:15:24:88:1b:fe:90:9e:a3:18:
0d:8b:24:ae:67:91:e8:19:27:f5:a5:94:6b:34:62:ae:db:30:
44:9c:87:b5:02:92:78:ac:14:53:ba:ed:5c:ca:15:79:d9:66:
bf:ff:79:2a:6e:64:da:f6:91:f5:c3:1c:86:2d:98:b7:3a:2d:
76:09:89:a6:98:87:76:f0:51:b6:31:e1:c9:8a:04:1a:d7:8f:
99:92:e4:72:51:95:fd:c4:e8:af:19:bb:e1:9c:aa:2a:6b:5c:
78:05:0d:01:41:de:8b:70:47:56:e7:ee:f8:47:ae:4e:2a:3d:
da:86:d9:f3:3b:8a:8d:35:29:f2:de:b7:33:8a:f9:70:1f:0f:
09:a5:3f:c1
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMjA5MTUw
MjM3MDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVEODMyNUVFQUVGNThE
MzQzMzM1NDE4MTAxQUUzNDdEOTE5RTdBRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1wjOAcnuAgcZyYCUujKvHs6R7+qR0pQ/hWMBl6lkOeisbi3FW
bEcJ24cMu+Yqaj7tJp5laWo5Si/eoA03rQVg+fIYdwOvfqhYZhmpM3JDseH1Pkey
ww3NPewOwJin6y3yyqv/UzpuZyhvSTHhTMnSg5cEPNrWU8ghMqZKNQrWUkkJ0LZM
yndYWslUM/UI4D3M3ULjmSNyrNYiMYBNEEFI9rDmxOS4T/ypkKVPgESwquSQOJ3w
mTA0Me2i+Wv9wbaPQGWGZia+Unp21dqxXT7ZADQ/R7tk9y/HMVrAbmhAoQ0KPbml
2zjJ7kA/t2c+SSsvGfSR4x1yooCfCmszNdJ9AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU7YMl7q71jTQzNUGBAa40fZGeevowHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzdZTWw3cTcxalRRek5VR0JBYTQwZlpH
ZWV2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ
KoZIhvcNAQELBQADggEBALR5CIi47/pkugHQoYXXErwnynqqD6xxhNvpKQKs81hX
U51FST7UBAXmNkAbaYjeOlm0TME06JMD87Fwg0uSBz9YwaZerqMF2oYMc3XyabR8
RgpkpXBQtpkNyrkopfDVEy4wxiCjM80wX6EGLKkwGHMrKsW7oRUkiBv+kJ6jGA2L
JK5nkegZJ/WllGs0Yq7bMESch7UCknisFFO67VzKFXnZZr//eSpuZNr2kfXDHIYt
mLc6LXYJiaaYh3bwUbYx4cmKBBrXj5mS5HJRlf3E6K8Zu+GcqiprXHgFDQFB3otw
R1bn7vhHrk4qPdqG2fM7io01KfLetzOK+XAfDwmlP8E=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org