Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/5tc8EitPyk54WSSEv_bsNIaXeIE.roa
File: 5tc8EitPyk54WSSEv_bsNIaXeIE.roa (raw, json)
Hash identifier: +ty0bLVBZiDc3SlN+gfXQwL7ll4mGBKZ5tIprx3fwWc=
Subject key identifier: E6:D7:3C:12:2B:4F:CA:4E:78:59:24:84:BF:F6:EC:34:86:97:78:81
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 10B0
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/5tc8EitPyk54WSSEv_bsNIaXeIE.roa
Signing time: Thu 15 Sep 2022 02:35:09 +0000
ROA not before: Thu 15 Sep 2022 02:35:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 103.124.42.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4272 (0x10b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Sep 15 02:35:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E6D73C122B4FCA4E78592484BFF6EC3486977881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7d:ea:81:c4:6e:32:85:8d:c1:1b:a4:91:02:
2d:63:95:b8:a9:85:f8:1c:8a:34:cd:30:07:81:03:
d4:38:be:d2:06:c3:46:2d:fa:ea:3e:a8:5a:42:11:
8a:91:c7:8d:87:a4:6b:f4:a5:c5:21:96:5a:2f:ec:
a9:35:94:5e:21:f4:26:49:32:62:07:7d:fa:2b:9f:
72:ac:b3:91:dc:dc:aa:36:d2:5b:92:33:a3:00:8d:
08:12:aa:8e:77:1b:f6:5f:ba:84:a3:18:93:b9:88:
6e:39:85:45:ad:39:ae:7d:ce:c2:c7:75:2e:84:15:
e8:2b:82:02:f1:73:05:29:be:7a:7e:e1:a7:a9:d1:
42:cb:e7:86:18:01:00:a1:f2:07:d6:35:69:50:d7:
58:c8:8b:fb:1b:ff:6d:fc:d6:e7:d8:bc:7a:2c:1f:
bf:c1:bc:bd:28:0f:de:9e:3f:e5:78:92:b0:d6:90:
bc:e3:21:d9:01:17:86:ad:f4:f2:95:bd:6b:cc:88:
73:43:dc:23:57:49:db:cb:00:a7:cd:12:24:d7:aa:
59:e7:69:83:14:d8:0e:97:a9:2e:0c:30:cc:b3:ae:
06:74:b5:e7:9a:b9:be:84:05:0c:d3:1e:d0:c6:e3:
65:6c:46:cb:0d:7b:6f:23:ea:03:9d:f7:07:4d:b7:
b0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D7:3C:12:2B:4F:CA:4E:78:59:24:84:BF:F6:EC:34:86:97:78:81
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/5tc8EitPyk54WSSEv_bsNIaXeIE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
14:5a:a6:6e:3d:41:67:79:bc:24:27:cf:f1:24:70:54:d2:d7:
0a:79:80:1f:2e:53:6c:f1:b0:4c:b8:4b:cc:26:79:a8:46:4d:
da:63:76:eb:6a:50:4d:f6:7a:91:ab:c1:74:bd:76:11:6d:f2:
d8:0f:36:be:1e:a5:63:c5:a6:27:f6:bb:03:21:a9:a6:12:28:
a0:45:63:65:56:af:5b:3d:3b:b7:b0:df:de:bd:1c:93:ac:b6:
71:66:80:cc:6f:fc:23:1c:47:42:b3:a1:b2:2f:82:94:f0:8e:
23:5c:db:58:28:e5:4d:5e:e2:5b:91:ee:ac:d1:75:46:06:67:
18:77:14:f5:c3:34:05:c8:85:b4:3a:2f:96:42:87:4d:71:8e:
a4:bb:d7:24:78:66:23:70:4b:26:43:87:e4:6b:cd:6b:4f:01:
a5:90:a6:87:38:c6:3b:bc:4b:d2:65:78:52:c5:09:bb:2a:e7:
6c:cd:76:9f:e6:c6:f5:67:90:57:70:a7:80:89:5a:13:0c:1d:
92:8c:a7:9e:31:a5:7d:90:41:c8:4c:24:33:bf:82:42:bd:31:
e8:04:96:df:90:cf:3f:58:59:75:d3:c5:77:b0:a6:8f:18:9a:
36:12:79:98:1b:84:60:1d:09:8b:5b:7d:fb:41:52:c5:82:6c:
6e:2e:62:b7
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICELAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMx
NzQ4MTNERkIxRjlCNDU2MDQ3MkMyNjdGNzZDRDBDMTQxRTVERTAeFw0yMjA5MTUw
MjM1MDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU2RDczQzEyMkI0RkNB
NEU3ODU5MjQ4NEJGRjZFQzM0ODY5Nzc4ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSfeqBxG4yhY3BG6SRAi1jlbiphfgcijTNMAeBA9Q4vtIGw0Yt
+uo+qFpCEYqRx42HpGv0pcUhllov7Kk1lF4h9CZJMmIHfforn3Kss5Hc3Ko20luS
M6MAjQgSqo53G/ZfuoSjGJO5iG45hUWtOa59zsLHdS6EFegrggLxcwUpvnp+4aep
0ULL54YYAQCh8gfWNWlQ11jIi/sb/2381ufYvHosH7/BvL0oD96eP+V4krDWkLzj
IdkBF4at9PKVvWvMiHND3CNXSdvLAKfNEiTXqlnnaYMU2A6XqS4MMMyzrgZ0teea
ub6EBQzTHtDG42VsRssNe28j6gOd9wdNt7AHAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU5tc8EitPyk54WSSEv/bsNIaXeIEwHwYDVR0jBBgwFoAU8xdIE9+x+bRWBHLC
Z/ds0MFB5d4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFNSUxZ
UExVUy84eGRJRTkteC1iUldCSExDWl9kczBNRkI1ZDQuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBLzh4ZElFOS14LWJSV0JITENaX2RzME1GQjVkNC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTUlMWVBMVVMvNXRjOEVpdFB5
azU0V1NTRXZfYnNOSWFYZUlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAWd8KjANBgkqhkiG9w0BAQsFAAOCAQEAFFqmbj1BZ3m8JCfP8SRwVNLX
CnmAHy5TbPGwTLhLzCZ5qEZN2mN262pQTfZ6kavBdL12EW3y2A82vh6lY8WmJ/a7
AyGpphIooEVjZVavWz07t7Df3r0ck6y2cWaAzG/8IxxHQrOhsi+ClPCOI1zbWCjl
TV7iW5HurNF1RgZnGHcU9cM0BciFtDovlkKHTXGOpLvXJHhmI3BLJkOH5GvNa08B
pZCmhzjGO7xL0mV4UsUJuyrnbM12n+bG9WeQV3CngIlaEwwdkoynnjGlfZBByEwk
M7+CQr0x6ASW35DPP1hZddPFd7CmjxiaNhJ5mBuEYB0Ji1t9+0FSxYJsbi5itw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org