Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lSJPlu_rWMTlh-UZUz8DiTJ5WNk.roa
File: lSJPlu_rWMTlh-UZUz8DiTJ5WNk.roa (raw, json)
Hash identifier: Vj6LcJ7ciwlNbF0vl6JaiwTgf/O8UBljBSXdOJ9vqB0=
Subject key identifier: 95:22:4F:96:EF:EB:58:C4:E5:87:E5:19:53:3F:03:89:32:79:58:D9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E6E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lSJPlu_rWMTlh-UZUz8DiTJ5WNk.roa
Signing time: Tue 15 Aug 2023 04:07:39 +0000
ROA not before: Tue 15 Aug 2023 04:07:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 23675
IP address blocks: 203.66.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3694 (0xe6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 15 04:07:39 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95224F96EFEB58C4E587E519533F0389327958D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6e:25:57:f9:34:dd:a9:01:9b:95:ec:5b:51:
d5:3e:44:82:b8:17:de:4b:d1:ca:c0:5a:c8:4e:f1:
1e:95:5c:a0:4b:b8:af:a2:e7:a8:b6:9e:ee:49:31:
85:90:b4:12:18:6d:19:5d:4d:ac:cc:19:2b:dc:ce:
78:90:46:28:1d:a7:41:a9:34:ec:42:44:3b:84:90:
6a:09:3d:a3:9e:48:c6:4b:89:70:b5:29:23:97:58:
6f:9a:42:30:21:f3:6d:f5:5a:4a:7b:0f:70:f5:ac:
06:b0:46:94:56:12:d9:73:96:56:2c:ad:7c:60:bb:
86:ee:d7:49:8a:6d:51:db:04:e2:3f:53:5d:19:b5:
c5:b1:de:e7:cf:27:d4:7e:dc:a2:a7:e9:81:dc:17:
3d:90:dc:77:25:19:18:28:9f:28:56:b2:69:50:0f:
62:79:1b:0e:6b:75:ba:ce:28:52:fb:2b:65:8a:bb:
c5:50:3a:b9:cd:59:44:6a:69:f4:cb:a7:bf:10:6f:
83:cb:00:16:e2:43:12:b0:2b:d4:12:5a:6d:2c:b0:
15:41:ad:e6:35:92:12:2e:ab:7f:51:9b:b3:a7:4c:
20:9a:08:97:97:b5:47:6e:c9:e7:92:ec:db:88:df:
c6:1c:ee:51:8c:1a:26:e6:6c:ad:81:f8:f2:b8:6a:
c7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:22:4F:96:EF:EB:58:C4:E5:87:E5:19:53:3F:03:89:32:79:58:D9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lSJPlu_rWMTlh-UZUz8DiTJ5WNk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.245.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:00:ee:16:5c:bb:eb:75:a7:0d:55:ef:11:8c:52:74:98:8e:
61:0e:35:db:71:5d:11:0a:28:58:db:87:be:dc:fd:e1:f8:77:
63:6a:a9:a6:af:d0:87:51:09:2f:45:6d:26:05:5e:dc:58:af:
8a:6e:57:9f:5d:20:a2:db:6e:80:95:c0:44:81:78:dc:c5:d4:
7c:c4:57:46:71:38:c6:c5:70:2d:9e:5d:ef:56:67:8a:f1:3d:
26:6e:e5:f8:72:76:fa:06:08:d5:0c:1c:d6:30:29:47:e4:78:
62:81:fa:fb:a8:9d:c1:4e:b3:9c:1d:5e:2b:5e:31:2a:8c:87:
91:3f:39:e9:ad:29:32:6d:3d:7b:d0:da:e7:0b:68:28:59:4a:
63:3b:93:8c:53:b2:da:a5:18:54:40:25:c0:2b:bd:c3:d0:77:
0a:46:97:74:6a:e7:9c:33:e8:5b:7c:4d:8a:8e:dd:d2:80:ae:
75:19:e5:41:24:c2:3d:e8:92:a3:f8:db:b8:48:dc:0e:2f:b1:
62:00:1a:37:99:8b:7f:d9:2d:53:af:89:5e:5c:ed:99:d0:66:
a0:e6:12:f1:fb:fa:13:a1:a5:86:6e:22:22:59:31:a4:ac:a0:
25:b4:91:d7:91:2c:c7:e8:d6:16:98:ba:1b:ef:47:0b:e6:5c:
bd:8b:56:05
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA4MTUw
NDA3MzlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk1MjI0Rjk2RUZFQjU4
QzRFNTg3RTUxOTUzM0YwMzg5MzI3OTU4RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRbiVX+TTdqQGblexbUdU+RIK4F95L0crAWshO8R6VXKBLuK+i
56i2nu5JMYWQtBIYbRldTazMGSvczniQRigdp0GpNOxCRDuEkGoJPaOeSMZLiXC1
KSOXWG+aQjAh8231Wkp7D3D1rAawRpRWEtlzllYsrXxgu4bu10mKbVHbBOI/U10Z
tcWx3ufPJ9R+3KKn6YHcFz2Q3HclGRgonyhWsmlQD2J5Gw5rdbrOKFL7K2WKu8VQ
OrnNWURqafTLp78Qb4PLABbiQxKwK9QSWm0ssBVBreY1khIuq39Rm7OnTCCaCJeX
tUduyeeS7NuI38Yc7lGMGibmbK2B+PK4ascnAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUlSJPlu/rWMTlh+UZUz8DiTJ5WNkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sU0pQbHVfcldNVGxoLVVaVXo4
RGlUSjVXTmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0L1
MA0GCSqGSIb3DQEBCwUAA4IBAQDMAO4WXLvrdacNVe8RjFJ0mI5hDjXbcV0RCihY
24e+3P3h+Hdjaqmmr9CHUQkvRW0mBV7cWK+KblefXSCi226AlcBEgXjcxdR8xFdG
cTjGxXAtnl3vVmeK8T0mbuX4cnb6BgjVDBzWMClH5Hhigfr7qJ3BTrOcHV4rXjEq
jIeRPznprSkybT170NrnC2goWUpjO5OMU7LapRhUQCXAK73D0HcKRpd0auecM+hb
fE2Kjt3SgK51GeVBJMI96JKj+Nu4SNwOL7FiABo3mYt/2S1Tr4leXO2Z0Gag5hLx
+/oToaWGbiIiWTGkrKAltJHXkSzH6NYWmLob70cL5ly9i1YF
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:15 2023 by rpki-client on console-fra.rpki-client.org