Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/rv39hExeGAJEyQUkFF7VOqOS4_g.roa
File: rv39hExeGAJEyQUkFF7VOqOS4_g.roa (raw, json)
Hash identifier: VrMzTt8LgMlAtPjptZjrj7BGXUh+XjKd0d1pY4L3yIM=
Subject key identifier: AE:FD:FD:84:4C:5E:18:02:44:C9:05:24:14:5E:D5:3A:A3:92:E3:F8
Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235
Certificate serial: 09
Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/rv39hExeGAJEyQUkFF7VOqOS4_g.roa
Signing time: Fri 17 Nov 2023 07:30:33 +0000
ROA not before: Fri 17 Nov 2023 07:30:33 +0000
ROA not after: Sat 09 Nov 2024 15:30:21 +0000
asID: 150755
IP address blocks: 203.175.104.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Oct 2024 15:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235
Validity
Not Before: Nov 17 07:30:33 2023 GMT
Not After : Nov 9 15:30:21 2024 GMT
Subject: CN=AEFDFD844C5E180244C90524145ED53AA392E3F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0e:fe:f2:ab:5d:fd:bd:36:ba:29:8d:21:1f:
96:16:e7:64:44:23:b2:f8:1d:2d:e8:df:30:c6:65:
fc:47:9e:2b:ec:19:df:7a:fa:bb:c8:15:42:e3:a3:
e6:a5:c6:3d:f7:ec:d2:69:5a:94:e8:e7:94:e9:54:
7d:9e:33:b2:86:da:de:9d:f8:9d:ee:30:f1:4e:9f:
67:77:85:6f:b7:73:ec:99:2c:cb:5d:5c:44:5d:cc:
15:9b:8b:ce:79:74:15:63:76:8a:9d:95:68:3d:b8:
6a:45:d6:61:50:23:f6:ca:4a:61:48:5d:2d:b1:ec:
84:2d:1a:6e:1b:e5:b5:c6:89:5e:2f:6c:04:da:66:
e4:e6:7a:ad:ac:5a:17:7c:d6:47:f0:5a:0c:f5:7b:
f3:f8:1a:04:12:77:15:2f:98:fb:a5:71:48:f6:6a:
7a:08:8e:3f:1d:60:14:3e:e5:3e:1e:b0:9c:a8:a1:
05:3c:99:38:49:b0:31:06:99:2c:b4:56:e0:ad:e2:
08:2c:0f:c5:60:9c:fb:da:20:31:54:5c:80:6c:e7:
02:72:5d:3a:e7:2b:08:76:e5:76:71:1e:ab:a0:18:
e3:e3:c6:2b:5e:5d:b0:a0:ab:fc:83:14:8d:cf:c6:
2b:04:9a:6f:b6:7b:24:d6:56:b0:6b:a0:16:01:81:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FD:FD:84:4C:5E:18:02:44:C9:05:24:14:5E:D5:3A:A3:92:E3:F8
X509v3 Authority Key Identifier:
keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/rv39hExeGAJEyQUkFF7VOqOS4_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.175.104.0/23
Signature Algorithm: sha256WithRSAEncryption
71:55:56:c1:d6:00:aa:a7:68:c0:d0:3e:c3:91:80:34:1f:8b:
d5:dc:ee:66:e7:53:ae:f3:77:56:db:1e:1e:a9:66:cc:3a:82:
f1:ad:8b:7d:0b:ed:cd:b9:b3:37:9d:bb:de:40:3c:40:38:23:
6f:0d:30:a9:ed:35:6c:56:7e:27:09:dc:4e:a3:01:e1:b3:41:
d2:89:09:bc:a8:fa:dd:58:72:4c:5b:40:8b:6b:67:09:01:97:
e0:90:73:c9:da:58:65:ef:7e:4d:ed:3c:84:46:16:bd:0e:9b:
c1:67:cb:18:da:da:08:f5:e2:a7:64:8c:f2:97:c3:b1:24:65:
f0:4d:68:d0:61:64:ff:6d:3d:3a:d8:33:06:98:fc:8d:f6:5b:
cf:04:b9:7f:72:da:d6:69:f2:ad:19:68:30:d0:bc:d1:ca:b9:
d2:04:5f:ae:3d:95:52:71:43:5d:c5:e2:0a:82:f8:a6:6d:d8:
a6:09:ef:3f:c6:a4:8c:f0:62:ec:c8:f6:7c:0e:3d:b2:30:be:
6a:49:5d:3e:62:d3:08:d9:62:cc:e7:c9:9f:83:56:dd:48:01:
be:6a:20:54:d0:50:78:21:bd:18:7f:a4:44:fd:fa:05:f6:b4:
30:10:7c:ef:b1:80:ce:39:38:91:9c:74:ee:cf:3c:7c:78:1e:
0d:72:89:60
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQzcw
NzNBNjA2NkM3NjU4NDJGREYwNzE2OUU0MzUxOEEwQkIwMjM1MB4XDTIzMTExNzA3
MzAzM1oXDTI0MTEwOTE1MzAyMVowMzExMC8GA1UEAxMoQUVGREZEODQ0QzVFMTgw
MjQ0QzkwNTI0MTQ1RUQ1M0FBMzkyRTNGODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOoO/vKrXf29NropjSEflhbnZEQjsvgdLejfMMZl/EeeK+wZ33r6
u8gVQuOj5qXGPffs0mlalOjnlOlUfZ4zsoba3p34ne4w8U6fZ3eFb7dz7Jksy11c
RF3MFZuLznl0FWN2ip2VaD24akXWYVAj9spKYUhdLbHshC0abhvltcaJXi9sBNpm
5OZ6raxaF3zWR/BaDPV78/gaBBJ3FS+Y+6VxSPZqegiOPx1gFD7lPh6wnKihBTyZ
OEmwMQaZLLRW4K3iCCwPxWCc+9ogMVRcgGznAnJdOucrCHbldnEeq6AY4+PGK15d
sKCr/IMUjc/GKwSab7Z7JNZWsGugFgGBax8CAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBSu/f2ETF4YAkTJBSQUXtU6o5Lj+DAfBgNVHSMEGDAWgBQccHOmBmx2WEL98HFp
5DUYoLsCNTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OVU5MSU5F
L0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSEhCenBnWnNkbGhDX2ZCeGFlUTFHS0M3QWpVLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElORS9ydjM5aEV4ZUdBSkV5UVVr
RkY3Vk9xT1M0X2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
y69oMA0GCSqGSIb3DQEBCwUAA4IBAQBxVVbB1gCqp2jA0D7DkYA0H4vV3O5m51Ou
83dW2x4eqWbMOoLxrYt9C+3NubM3nbveQDxAOCNvDTCp7TVsVn4nCdxOowHhs0HS
iQm8qPrdWHJMW0CLa2cJAZfgkHPJ2lhl735N7TyERha9DpvBZ8sY2toI9eKnZIzy
l8OxJGXwTWjQYWT/bT062DMGmPyN9lvPBLl/ctrWafKtGWgw0LzRyrnSBF+uPZVS
cUNdxeIKgvimbdimCe8/xqSM8GLsyPZ8Dj2yML5qSV0+YtMI2WLM58mfg1bdSAG+
aiBU0FB4Ib0Yf6RE/foF9rQwEHzvsYDOOTiRnHTuzzx8eB4Ncolg
Generated at Sat Oct 26 19:05:43 2024 by rpki-client on console-ams.rpki-client.org