Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-Y3PwhZtUlN2Zr4mZwPhVS-6NI.roa
File: w-Y3PwhZtUlN2Zr4mZwPhVS-6NI.roa (raw, json)
Hash identifier: 6PjrA30GJEIoevNHUAGwH433Jq/eZVrkTz4niueEozU=
Subject key identifier: C3:E6:37:3F:08:59:B5:49:4D:D9:9A:F8:99:9C:0F:85:54:BE:E8:D2
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-Y3PwhZtUlN2Zr4mZwPhVS-6NI.roa
Signing time: Thu 15 Sep 2022 02:42:35 +0000
ROA not before: Thu 15 Sep 2022 02:42:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C3E6373F0859B5494DD99AF8999C0F8554BEE8D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:01:0a:45:8b:91:70:fa:8c:40:e0:bc:7e:7b:
0c:80:11:06:f7:95:95:80:f6:d1:96:29:b6:ea:ca:
f7:91:4a:28:5e:59:fd:6a:70:84:ee:c9:fd:03:d3:
34:c0:d2:b8:4a:d5:68:29:b4:38:2b:9b:0a:d2:b3:
4b:8c:33:42:11:1d:91:e9:bf:a0:7d:fe:33:00:6a:
e3:92:77:09:e9:df:b8:2a:d5:86:c7:30:02:9d:16:
0c:7b:d6:72:2c:ee:24:8d:c2:42:f1:18:96:d3:60:
80:52:c3:88:df:96:af:0a:22:8d:ef:fc:ea:87:f3:
c6:7a:63:20:37:d4:86:5f:96:33:9c:32:a6:05:e0:
dd:61:3c:54:d3:e6:d5:ad:3f:7f:93:05:8f:9b:c3:
14:07:e8:ec:2a:91:06:13:89:39:36:e3:1f:84:1f:
2a:61:12:91:5f:72:02:10:f1:eb:6b:20:63:0b:9e:
98:02:6e:cc:ca:90:9e:87:5b:ec:17:1e:d1:d6:a2:
c6:a1:9b:5d:50:02:23:be:26:cb:01:6a:da:86:92:
8c:9d:91:26:18:19:92:49:fd:f7:f3:a8:b5:20:de:
1b:6c:e9:ea:38:6d:c0:ab:d8:07:fa:a6:2c:fc:fb:
df:ab:ec:88:4a:e7:7d:bf:2b:fe:7a:dd:0d:54:77:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E6:37:3F:08:59:B5:49:4D:D9:9A:F8:99:9C:0F:85:54:BE:E8:D2
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-Y3PwhZtUlN2Zr4mZwPhVS-6NI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.35.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ba:06:f0:8e:79:e9:df:a2:16:86:d3:f7:8c:e4:e4:e3:aa:
f0:b4:07:3c:14:6e:1b:23:e7:3a:31:c5:02:19:06:af:b2:e4:
95:c4:d0:98:9d:c8:08:8b:69:54:5a:02:32:6e:31:97:c7:ab:
ce:89:ed:4b:30:ae:7f:0d:55:47:ce:c6:83:69:51:06:df:ad:
7d:ce:01:e5:c6:33:61:d0:4d:81:17:54:12:ac:07:67:26:9c:
41:d8:f6:ae:5c:86:3d:c4:48:41:f0:d8:4a:da:51:3d:62:9f:
47:be:34:28:a9:d7:d8:00:0d:51:e5:44:16:21:a4:cc:23:d7:
51:b9:40:9d:06:a5:2b:d6:f7:e6:c3:88:74:25:72:49:ca:b5:
d3:0a:14:b6:40:57:90:37:9b:fa:ce:37:76:88:af:a3:af:c5:
a3:83:90:73:0c:2d:dc:25:e4:51:e4:23:f9:0d:2c:4a:0d:9d:
84:d8:27:9f:1b:e1:84:1c:7d:15:53:5b:4e:5c:dd:2d:1c:a7:
73:04:67:09:c7:41:bf:fa:ca:ba:b8:28:98:00:b8:df:8e:4f:
5f:21:27:de:2a:b7:36:2a:4d:0b:8f:a5:48:40:d0:70:2e:c3:
02:1e:73:d2:6f:cc:92:68:ac:34:c1:cc:37:5c:5f:aa:e6:c3:
fc:d0:75:e3
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMzVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEMzRTYzNzNGMDg1OUI1
NDk0REQ5OUFGODk5OUMwRjg1NTRCRUU4RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbAQpFi5Fw+oxA4Lx+ewyAEQb3lZWA9tGWKbbqyveRSiheWf1q
cITuyf0D0zTA0rhK1WgptDgrmwrSs0uMM0IRHZHpv6B9/jMAauOSdwnp37gq1YbH
MAKdFgx71nIs7iSNwkLxGJbTYIBSw4jflq8KIo3v/OqH88Z6YyA31IZfljOcMqYF
4N1hPFTT5tWtP3+TBY+bwxQH6OwqkQYTiTk24x+EHyphEpFfcgIQ8etrIGMLnpgC
bszKkJ6HW+wXHtHWosahm11QAiO+JssBatqGkoydkSYYGZJJ/ffzqLUg3hts6eo4
bcCr2Af6piz8+9+r7IhK532/K/563Q1Ud6prAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUw+Y3PwhZtUlN2Zr4mZwPhVS+6NIwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vdy1ZM1B3aFp0VWxOMlpyNG1ad1Bo
VlMtNk5JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bIzAN
BgkqhkiG9w0BAQsFAAOCAQEAUroG8I556d+iFobT94zk5OOq8LQHPBRuGyPnOjHF
AhkGr7LklcTQmJ3ICItpVFoCMm4xl8erzontSzCufw1VR87Gg2lRBt+tfc4B5cYz
YdBNgRdUEqwHZyacQdj2rlyGPcRIQfDYStpRPWKfR740KKnX2AANUeVEFiGkzCPX
UblAnQalK9b35sOIdCVyScq10woUtkBXkDeb+s43doivo6/Fo4OQcwwt3CXkUeQj
+Q0sSg2dhNgnnxvhhBx9FVNbTlzdLRyncwRnCcdBv/rKurgomAC4345PXyEn3iq3
NipNC4+lSEDQcC7DAh5z0m/MkmisNMHMN1xfqubD/NB14w==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org