Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GU/hSFKbiZszV5ex5Jb8nF7HSI9Fvs.roa
File: hSFKbiZszV5ex5Jb8nF7HSI9Fvs.roa (raw, json)
Hash identifier: v84fitSR0THp4RypvML3R6584fC54r3DPkA5dN+1OLs=
Subject key identifier: 85:21:4A:6E:26:6C:CD:5E:5E:C7:92:5B:F2:71:7B:1D:22:3D:16:FB
Certificate issuer: /CN=FD6A604FD79AF3477008E71EA4ED5CDF588CA664
Certificate serial: 10FD
Authority key identifier: FD:6A:60:4F:D7:9A:F3:47:70:08:E7:1E:A4:ED:5C:DF:58:8C:A6:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_WpgT9ea80dwCOcepO1c31iMpmQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/hSFKbiZszV5ex5Jb8nF7HSI9Fvs.roa
Signing time: Thu 15 Sep 2022 02:50:18 +0000
ROA not before: Thu 15 Sep 2022 02:50:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 103.130.32.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4349 (0x10fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD6A604FD79AF3477008E71EA4ED5CDF588CA664
Validity
Not Before: Sep 15 02:50:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=85214A6E266CCD5E5EC7925BF2717B1D223D16FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d0:64:a3:31:3f:37:8d:35:1c:67:9f:28:5a:
9f:09:7e:fe:58:07:14:b8:f8:17:df:42:c8:d1:d9:
37:f2:45:58:23:bf:a2:6b:45:5a:0e:bc:f3:57:ed:
58:d5:bf:70:d1:10:29:36:6d:a0:44:82:ef:61:02:
5c:ae:f0:16:57:32:ba:73:e0:ff:ce:47:a7:ad:9a:
a7:f2:12:60:bc:3a:1f:4b:6f:93:27:74:bf:c8:3a:
d0:e0:32:3c:28:72:7a:85:00:a0:cb:9b:79:ad:cf:
94:74:1c:37:77:97:49:cc:f9:6d:dd:a7:a1:c4:c6:
4f:2a:e4:be:d6:82:3d:ce:61:aa:9b:57:3c:bc:6a:
1f:a4:4b:8b:f4:58:82:83:03:01:ff:28:cd:63:11:
10:e0:6d:fd:36:23:99:59:5d:d4:cb:35:71:f7:f6:
7e:0f:5c:3b:af:78:11:9c:2f:3f:38:60:f3:cb:97:
c1:a8:86:39:09:0b:16:d4:35:ae:d8:3a:92:a4:2c:
99:b6:b9:1f:1e:39:3c:75:63:96:d3:70:fb:2c:9f:
18:76:ac:16:4f:77:88:f5:34:1b:b1:c3:bf:b0:b7:
b7:68:71:e8:1a:23:6d:11:c8:9b:1d:d2:97:1a:78:
57:2e:eb:df:4b:78:82:03:e5:86:a3:4e:5f:31:ff:
93:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:21:4A:6E:26:6C:CD:5E:5E:C7:92:5B:F2:71:7B:1D:22:3D:16:FB
X509v3 Authority Key Identifier:
keyid:FD:6A:60:4F:D7:9A:F3:47:70:08:E7:1E:A4:ED:5C:DF:58:8C:A6:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/_WpgT9ea80dwCOcepO1c31iMpmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_WpgT9ea80dwCOcepO1c31iMpmQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/hSFKbiZszV5ex5Jb8nF7HSI9Fvs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.32.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:6b:e7:85:62:70:1f:f9:10:73:97:3b:50:79:21:03:2c:ad:
89:f4:5b:ee:65:7d:6c:46:78:59:64:08:7c:bc:45:08:f9:9b:
56:dc:c5:80:13:8b:1a:df:28:59:a0:0f:fa:53:73:c6:76:62:
ee:39:e7:af:6d:ff:ad:46:6c:23:ad:ba:4c:e8:3c:cd:64:58:
c3:cf:f4:93:58:8b:3c:14:ce:ef:4d:f7:74:4f:2f:fe:84:e7:
69:a5:30:45:e4:85:d6:bb:07:8a:a8:a8:ea:73:4b:7c:76:e0:
d9:c7:20:a0:d3:2c:ac:0f:de:42:82:42:88:cf:f4:fd:af:01:
aa:c0:ca:8e:8f:2e:b0:68:bb:5f:b9:d6:ee:4c:10:95:a7:86:
97:1a:8c:0f:42:6c:a2:88:68:09:6e:e8:be:0b:a5:93:3f:da:
8b:be:d6:ce:42:18:dc:d9:40:95:87:df:79:ac:59:2c:f0:10:
17:89:9f:73:6b:7d:04:03:92:2b:bd:cf:e8:39:19:92:0e:f6:
53:ba:be:5d:36:3c:0f:04:81:d7:ae:36:8b:a1:cb:8c:ab:aa:
42:a2:22:e0:75:8d:85:8f:f4:6a:28:1c:00:9c:c1:01:87:67:
f4:da:30:34:4b:73:f2:87:49:68:18:1b:4d:8d:95:f8:e3:fd:
9b:b6:cd:93
-----BEGIN CERTIFICATE-----
MIIEyjCCA7KgAwIBAgICEP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkQ2
QTYwNEZENzlBRjM0NzcwMDhFNzFFQTRFRDVDREY1ODhDQTY2NDAeFw0yMjA5MTUw
MjUwMThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg1MjE0QTZFMjY2Q0NE
NUU1RUM3OTI1QkYyNzE3QjFEMjIzRDE2RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCj0GSjMT83jTUcZ58oWp8Jfv5YBxS4+BffQsjR2TfyRVgjv6Jr
RVoOvPNX7VjVv3DRECk2baBEgu9hAlyu8BZXMrpz4P/OR6etmqfyEmC8Oh9Lb5Mn
dL/IOtDgMjwocnqFAKDLm3mtz5R0HDd3l0nM+W3dp6HExk8q5L7Wgj3OYaqbVzy8
ah+kS4v0WIKDAwH/KM1jERDgbf02I5lZXdTLNXH39n4PXDuveBGcLz84YPPLl8Go
hjkJCxbUNa7YOpKkLJm2uR8eOTx1Y5bTcPssnxh2rBZPd4j1NBuxw7+wt7docega
I20RyJsd0pcaeFcu699LeIID5YajTl8x/5OfAgMBAAGjggHmMIIB4jAdBgNVHQ4E
FgQUhSFKbiZszV5ex5Jb8nF7HSI9FvswHwYDVR0jBBgwFoAU/WpgT9ea80dwCOce
pO1c31iMpmQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBYBgNVHR8EUTBPME2g
S6BJhkdyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1UvX1dw
Z1Q5ZWE4MGR3Q09jZXBPMWMzMWlNcG1RLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI
KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9f
V3BnVDllYTgwZHdDT2NlcE8xYzMxaU1wbVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCB
mAYIKwYBBQUHAQsEgYswgYgwUwYIKwYBBQUHMAuGR3JzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS9HVS9oU0ZLYmlac3pWNWV4NUpiOG5GN0hTSTlG
dnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9u
b3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4IgMA0GCSqG
SIb3DQEBCwUAA4IBAQCia+eFYnAf+RBzlztQeSEDLK2J9FvuZX1sRnhZZAh8vEUI
+ZtW3MWAE4sa3yhZoA/6U3PGdmLuOeevbf+tRmwjrbpM6DzNZFjDz/STWIs8FM7v
Tfd0Ty/+hOdppTBF5IXWuweKqKjqc0t8duDZxyCg0yysD95CgkKIz/T9rwGqwMqO
jy6waLtfudbuTBCVp4aXGowPQmyiiGgJbui+C6WTP9qLvtbOQhjc2UCVh995rFks
8BAXiZ9za30EA5Irvc/oORmSDvZTur5dNjwPBIHXrjaLocuMq6pCoiLgdY2Fj/Rq
KBwAnMEBh2f02jA0S3Pyh0loGBtNjZX44/2bts2T
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org