Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/5F0j4Vr7Oh4s2OebwrXPNNsmdsw.roa
File: 5F0j4Vr7Oh4s2OebwrXPNNsmdsw.roa (raw, json)
Hash identifier: Mme8M+WgHrfCB7EOKymA5k6pF1uIxn1CBfzFwHLPTMc=
Subject key identifier: E4:5D:23:E1:5A:FB:3A:1E:2C:D8:E7:9B:C2:B5:CF:34:DB:26:76:CC
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5F0j4Vr7Oh4s2OebwrXPNNsmdsw.roa
Signing time: Thu 15 Sep 2022 02:42:34 +0000
ROA not before: Thu 15 Sep 2022 02:42:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E45D23E15AFB3A1E2CD8E79BC2B5CF34DB2676CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:86:ae:f4:5e:82:8e:81:c5:d7:58:1f:fb:33:
85:33:b0:0b:a6:85:88:ec:11:52:31:82:2a:01:c3:
53:36:df:bb:31:ee:a5:c1:6d:88:ef:85:9f:40:84:
80:28:ac:ad:fd:3d:05:fe:36:87:15:4e:2e:03:5a:
7d:41:a2:7c:ec:ef:2f:b5:30:87:ec:3d:87:cf:f4:
2f:04:b1:46:d2:95:48:43:01:b5:ca:4c:17:30:0e:
5c:e2:f8:b5:09:9e:92:c3:2f:80:e8:a8:1c:24:0c:
bb:9b:4c:99:85:86:dc:0f:40:f5:5a:58:2c:36:a5:
4e:ca:54:41:6f:ac:35:d4:82:e5:93:98:e7:69:5a:
4f:3d:07:31:cb:91:e8:1b:79:a2:dd:ef:07:b9:95:
81:91:97:da:d6:38:6b:09:1c:2a:31:03:13:3e:36:
bc:86:14:92:3f:39:54:e8:ba:b4:ad:c0:97:e3:e0:
13:b7:97:4f:fd:ba:46:f3:a9:f9:60:b1:8b:7b:b6:
92:59:31:2a:15:dd:4a:37:47:98:a3:5c:72:8c:91:
43:31:f6:f9:9f:62:64:24:8d:65:e5:2c:1b:96:a8:
cf:9b:9f:5a:f6:cc:04:7d:f6:85:7c:2f:4c:da:f5:
1b:a8:d4:24:25:2a:5e:9f:6c:2c:e1:c6:1a:cb:0b:
45:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5D:23:E1:5A:FB:3A:1E:2C:D8:E7:9B:C2:B5:CF:34:DB:26:76:CC
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5F0j4Vr7Oh4s2OebwrXPNNsmdsw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.50.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d4:81:b5:3c:e7:72:7c:ef:0a:8a:d2:fc:b9:b0:4c:3c:89:
3d:06:fa:3f:0a:fd:99:6e:3e:fa:27:33:dc:31:fb:38:e9:a6:
b2:92:3d:ea:28:7d:d5:aa:3f:01:2d:a4:d9:b3:aa:08:92:91:
30:ac:4f:2d:b2:78:b3:89:fe:51:ae:c8:87:e0:e3:e8:3c:fd:
d3:3f:50:74:68:e3:22:1a:ab:d6:44:03:43:9d:ea:17:2a:1a:
51:b9:82:34:0a:08:9d:f3:84:49:51:bb:98:9b:49:fa:2e:09:
d9:66:40:c9:af:44:15:f0:18:bc:5d:63:62:89:e9:c7:a8:a2:
82:31:39:2d:2b:dc:ec:ef:58:52:4e:0d:41:43:96:ac:be:dc:
42:06:50:59:02:81:58:b8:2d:73:e0:0e:67:a5:2a:c0:e3:79:
81:72:bf:a4:99:76:2e:39:69:67:1d:15:8c:10:0c:df:8a:5a:
f6:71:57:30:91:19:d0:46:e7:50:90:80:aa:52:6f:f5:d3:2a:
38:de:af:b8:90:82:cf:f0:ae:53:1d:02:8b:a3:76:b5:09:a9:
87:31:40:21:04:2e:0f:e3:e0:a4:99:55:06:42:8f:31:33:f9:
07:86:90:6e:17:e6:be:07:2b:f8:5d:cb:de:83:a1:41:40:56:
53:3f:89:2a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU0NUQyM0UxNUFGQjNB
MUUyQ0Q4RTc5QkMyQjVDRjM0REIyNjc2Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2hq70XoKOgcXXWB/7M4UzsAumhYjsEVIxgioBw1M237sx7qXB
bYjvhZ9AhIAorK39PQX+NocVTi4DWn1Bonzs7y+1MIfsPYfP9C8EsUbSlUhDAbXK
TBcwDlzi+LUJnpLDL4DoqBwkDLubTJmFhtwPQPVaWCw2pU7KVEFvrDXUguWTmOdp
Wk89BzHLkegbeaLd7we5lYGRl9rWOGsJHCoxAxM+NryGFJI/OVTourStwJfj4BO3
l0/9ukbzqflgsYt7tpJZMSoV3Uo3R5ijXHKMkUMx9vmfYmQkjWXlLBuWqM+bn1r2
zAR99oV8L0za9Ruo1CQlKl6fbCzhxhrLC0WHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5F0j4Vr7Oh4s2OebwrXPNNsmdswwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vNUYwajRWcjdPaDRzMk9lYndyWFBO
TnNtZHN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bMjAN
BgkqhkiG9w0BAQsFAAOCAQEAhdSBtTzncnzvCorS/LmwTDyJPQb6Pwr9mW4++icz
3DH7OOmmspI96ih91ao/AS2k2bOqCJKRMKxPLbJ4s4n+Ua7Ih+Dj6Dz90z9QdGjj
Ihqr1kQDQ53qFyoaUbmCNAoInfOESVG7mJtJ+i4J2WZAya9EFfAYvF1jYonpx6ii
gjE5LSvc7O9YUk4NQUOWrL7cQgZQWQKBWLgtc+AOZ6UqwON5gXK/pJl2LjlpZx0V
jBAM34pa9nFXMJEZ0EbnUJCAqlJv9dMqON6vuJCCz/CuUx0Ci6N2tQmphzFAIQQu
D+PgpJlVBkKPMTP5B4aQbhfmvgcr+F3L3oOhQUBWUz+JKg==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org