Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
File: YWKKLY4amY9vO0HbpSiL0pKATbg.roa (raw, json)
Hash identifier: p1YCU5VfqOYzusSK0KDp7k1dMnArAaUghe7qHn5X12M=
Subject key identifier: 61:62:8A:2D:8E:1A:99:8F:6F:3B:41:DB:A5:28:8B:D2:92:80:4D:B8
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0C65
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
Signing time: Thu 15 Sep 2022 02:50:51 +0000
ROA not before: Thu 15 Sep 2022 02:50:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 64271
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 15 02:50:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=61628A2D8E1A998F6F3B41DBA5288BD292804DB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3c:b3:39:69:69:11:ce:01:de:85:64:a7:f3:
f6:01:0e:3e:ff:27:59:4a:da:90:71:8a:7a:87:f6:
08:0a:fe:ac:6a:d2:9c:3e:61:b3:c6:ef:7a:5f:26:
83:cf:df:b5:32:ae:fa:86:74:e5:c7:bd:85:0a:fb:
9d:f9:98:76:0a:8c:46:08:16:6c:b5:6c:cd:c8:c8:
59:aa:0c:99:07:d6:23:69:26:0c:ec:32:83:13:2b:
f7:d4:a1:9f:c5:bd:d0:1d:81:a2:b2:f3:70:25:f0:
1f:1c:c1:a6:08:ce:1e:4d:ad:56:91:08:f3:f5:71:
5f:7e:a3:a7:51:41:db:05:a0:10:e7:34:31:c5:98:
b3:85:56:30:55:51:47:ac:ae:c5:68:72:80:e8:4d:
a0:2b:05:6b:22:30:b1:ad:b2:9c:09:3b:6c:95:78:
38:49:67:12:3b:88:fa:d2:9f:2a:a8:1d:06:2f:f3:
f2:82:e8:79:18:7f:81:99:64:b8:42:d8:ec:00:90:
c1:0d:2a:b1:bb:b6:b8:20:1b:07:59:25:4a:64:eb:
31:05:fb:14:53:99:4b:bc:5e:e4:08:22:e2:6b:9b:
b4:69:5f:29:16:97:e1:d7:12:57:61:77:7f:4e:68:
ca:ae:af:00:1d:d9:21:a8:b4:81:d4:d4:65:3d:19:
0b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:62:8A:2D:8E:1A:99:8F:6F:3B:41:DB:A5:28:8B:D2:92:80:4D:B8
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
98:a4:7e:97:14:78:1b:d1:84:6c:83:52:61:84:17:3f:e1:67:
f4:ca:3b:ce:64:9d:6d:1f:ac:af:e8:1d:27:5d:00:81:0b:d6:
f1:37:f0:2c:dc:3b:e1:7c:10:ae:72:9c:38:2c:ec:f8:03:df:
1d:82:a2:82:dc:86:34:9f:b8:d5:c6:4b:2a:a4:af:ac:64:a5:
bc:e2:38:0a:6f:c9:99:c7:b3:55:4c:2c:9d:28:dd:70:0f:c4:
a8:a0:7c:57:91:51:65:d6:09:d3:a9:6a:20:42:b0:e9:b1:46:
2e:45:86:69:f0:c8:15:55:e5:1e:04:a3:2c:36:cd:78:d2:a1:
b4:2f:ae:ad:65:e2:6d:ad:b2:94:f1:2f:19:d4:9b:49:fe:c4:
7c:ed:4e:c7:7c:32:43:5e:e9:a3:99:5e:52:d0:c9:ae:ef:66:
90:64:20:cf:8c:84:26:74:30:7c:c1:54:df:60:50:82:45:fc:
90:3a:f1:32:35:23:61:58:88:e6:8e:ad:2f:5f:57:a1:cb:a7:
d5:97:f6:a7:8a:97:c4:ba:ae:a5:90:1b:21:ec:2b:7f:40:e4:
5b:65:3a:d2:9b:06:27:3a:8b:c4:cf:0c:0e:f2:49:1c:e5:49:
19:e8:74:63:4b:1f:ef:64:0f:d7:35:26:62:2d:c0:fa:ec:6b:
54:68:da:8d
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1
NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yMjA5MTUw
MjUwNTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDYxNjI4QTJEOEUxQTk5
OEY2RjNCNDFEQkE1Mjg4QkQyOTI4MDREQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfPLM5aWkRzgHehWSn8/YBDj7/J1lK2pBxinqH9ggK/qxq0pw+
YbPG73pfJoPP37UyrvqGdOXHvYUK+535mHYKjEYIFmy1bM3IyFmqDJkH1iNpJgzs
MoMTK/fUoZ/FvdAdgaKy83Al8B8cwaYIzh5NrVaRCPP1cV9+o6dRQdsFoBDnNDHF
mLOFVjBVUUesrsVocoDoTaArBWsiMLGtspwJO2yVeDhJZxI7iPrSnyqoHQYv8/KC
6HkYf4GZZLhC2OwAkMENKrG7trggGwdZJUpk6zEF+xRTmUu8XuQIIuJrm7RpXykW
l+HXEldhd39OaMqurwAd2SGotIHU1GU9GQtHAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUYWKKLY4amY9vO0HbpSiL0pKATbgwHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD
jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP
VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC9ZV0tLTFk0YW1ZOXZP
MEhicFNpTDBwS0FUYmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ4n2MA0GCSqGSIb3DQEBCwUAA4IBAQCYpH6XFHgb0YRsg1JhhBc/4Wf0yjvO
ZJ1tH6yv6B0nXQCBC9bxN/As3DvhfBCucpw4LOz4A98dgqKC3IY0n7jVxksqpK+s
ZKW84jgKb8mZx7NVTCydKN1wD8SooHxXkVFl1gnTqWogQrDpsUYuRYZp8MgVVeUe
BKMsNs140qG0L66tZeJtrbKU8S8Z1JtJ/sR87U7HfDJDXumjmV5S0Mmu72aQZCDP
jIQmdDB8wVTfYFCCRfyQOvEyNSNhWIjmjq0vX1ehy6fVl/anipfEuq6lkBsh7Ct/
QORbZTrSmwYnOovEzwwO8kkc5UkZ6HRjSx/vZA/XNSZiLcD67GtUaNqN
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org