Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa
File: EdBsi2I2di8A0qZ_zPyPpj1il5A.roa (raw, json)
Hash identifier: vu1/5SkYxZd0RiTGNv787bkqO3e13vht/WpB4c5LafM=
Subject key identifier: 11:D0:6C:8B:62:36:76:2F:00:D2:A6:7F:CC:FC:8F:A6:3D:62:97:90
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 085F
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa
Signing time: Mon 26 Aug 2024 05:24:10 +0000
ROA not before: Mon 26 Aug 2024 05:24:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18178
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Sep 2024 19:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2143 (0x85f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Aug 26 05:24:09 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=11D06C8B6236762F00D2A67FCCFC8FA63D629790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ee:a3:76:79:d1:99:4e:e8:6c:9b:d6:65:df:
40:f4:8b:c4:b3:69:87:4b:f7:f1:6b:ce:11:77:19:
61:8c:5c:47:20:11:87:cc:1e:c7:dc:d8:1e:7d:a6:
c2:bc:35:a4:37:b0:ad:e8:8c:5a:84:86:78:8e:3c:
68:bf:5c:fe:24:96:72:6d:4f:22:02:f1:60:14:10:
ee:a4:3c:8c:84:c4:f3:16:99:97:1a:3b:87:c4:f3:
fb:7c:76:42:57:8d:98:23:36:36:70:a0:87:21:2d:
66:6f:ee:1a:6e:18:99:9b:ad:58:c0:de:5a:41:ce:
50:61:00:b2:bc:e6:24:21:d5:60:c1:aa:27:25:eb:
d7:8d:d7:de:20:be:40:29:18:eb:9f:30:3f:23:5a:
f5:53:22:ea:68:7c:7c:48:44:8d:29:56:ab:29:17:
1a:68:e9:04:36:56:12:03:7f:8f:c5:b8:57:19:aa:
15:62:d0:aa:c4:ad:52:b2:af:74:86:0b:4c:6b:ab:
e1:f9:be:18:a8:7b:45:19:39:8b:ea:3b:cf:dd:3c:
10:ce:c3:a2:7a:b4:70:08:3e:b1:36:67:25:da:65:
67:72:77:f1:ad:a5:53:a6:2a:e7:15:b8:eb:0b:5d:
da:20:81:6f:80:38:cb:35:d2:82:df:5b:f8:2b:85:
42:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D0:6C:8B:62:36:76:2F:00:D2:A6:7F:CC:FC:8F:A6:3D:62:97:90
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:e6:b0:7b:ea:42:96:e6:0e:65:67:d2:23:60:85:ed:c0:ba:
2c:f8:3c:e8:2e:39:12:07:8b:e6:c5:5c:86:4c:cc:08:29:0e:
cd:d8:72:1f:e2:9f:03:b6:50:07:6c:77:5f:3d:b8:ad:96:2d:
04:7b:0d:89:b7:7e:4b:94:25:00:a9:e2:44:32:d3:96:6f:98:
fe:ef:5b:d8:7e:cb:fd:c5:1e:63:6c:85:af:67:eb:9c:ee:02:
e9:31:35:93:d4:3b:00:90:ec:41:4f:39:6b:d7:c2:a7:e2:99:
85:cc:37:fd:9a:6d:2c:b7:65:37:bc:96:28:7d:77:34:e3:81:
ac:87:94:ec:69:57:c1:ad:88:d4:6d:5a:70:fe:7f:f1:f0:6c:
2e:9d:cb:e8:85:8f:61:bf:18:41:12:a7:cc:ef:f0:5e:39:df:
0e:62:3e:e7:5e:54:ae:7d:2f:16:9a:ce:a7:62:93:f6:3e:c8:
ee:be:ff:14:43:3e:37:80:4b:a8:32:99:1d:37:f9:ca:80:c7:
78:cc:f9:1d:89:8b:87:0d:5b:18:1e:d5:9a:0a:be:a3:c5:0c:
39:a6:f3:32:05:0c:58:ba:a6:64:2d:86:7e:4f:ba:59:8f:8f:
ca:98:5d:e5:84:13:a2:dc:84:8b:70:02:dc:7b:03:4b:6b:da:
c9:ec:36:2b
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx
OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNDA4MjYw
NTI0MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExRDA2QzhCNjIzNjc2
MkYwMEQyQTY3RkNDRkM4RkE2M0Q2Mjk3OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI7qN2edGZTuhsm9Zl30D0i8SzaYdL9/FrzhF3GWGMXEcgEYfM
Hsfc2B59psK8NaQ3sK3ojFqEhniOPGi/XP4klnJtTyIC8WAUEO6kPIyExPMWmZca
O4fE8/t8dkJXjZgjNjZwoIchLWZv7hpuGJmbrVjA3lpBzlBhALK85iQh1WDBqicl
69eN194gvkApGOufMD8jWvVTIupofHxIRI0pVqspFxpo6QQ2VhIDf4/FuFcZqhVi
0KrErVKyr3SGC0xrq+H5vhioe0UZOYvqO8/dPBDOw6J6tHAIPrE2ZyXaZWdyd/Gt
pVOmKucVuOsLXdoggW+AOMs10oLfW/grhULbAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUEdBsi2I2di8A0qZ/zPyPpj1il5AwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs
qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S
akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL0VkQnNpMkkyZGk4QTBxWl96UHlQcGox
aWw1QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ
KoZIhvcNAQELBQADggEBAKnmsHvqQpbmDmVn0iNghe3Auiz4POguORIHi+bFXIZM
zAgpDs3Ych/inwO2UAdsd189uK2WLQR7DYm3fkuUJQCp4kQy05ZvmP7vW9h+y/3F
HmNsha9n65zuAukxNZPUOwCQ7EFPOWvXwqfimYXMN/2abSy3ZTe8lih9dzTjgayH
lOxpV8GtiNRtWnD+f/HwbC6dy+iFj2G/GEESp8zv8F453w5iPudeVK59Lxaazqdi
k/Y+yO6+/xRDPjeAS6gymR03+cqAx3jM+R2Ji4cNWxge1ZoKvqPFDDmm8zIFDFi6
pmQthn5PulmPj8qYXeWEE6LchItwAtx7A0tr2snsNis=
-----END CERTIFICATE-----
Generated at Sat Sep 21 21:00:10 2024 by rpki-client on console-ams.rpki-client.org