Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa
File: I32tMCKLTWsBeTdnspR92dT3Gd8.roa (raw, json)
Hash identifier: nM7qEhat2tNXzV8D/3nhyhQPr/E36osHhb3v1ZtJsgY=
Subject key identifier: 23:7D:AD:30:22:8B:4D:6B:01:79:37:67:B2:94:7D:D9:D4:F7:19:DF
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 10
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa
Signing time: Fri 05 Jan 2024 04:08:48 +0000
ROA not before: Fri 05 Jan 2024 04:08:48 +0000
ROA not after: Wed 25 Dec 2024 15:30:21 +0000
asID: 150767
IP address blocks: 2401:5f20::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Jan 5 04:08:48 2024 GMT
Not After : Dec 25 15:30:21 2024 GMT
Subject: CN=237DAD30228B4D6B01793767B2947DD9D4F719DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:33:9a:fe:7c:d6:73:95:08:e6:cf:69:05:f4:
9f:2a:13:f0:a9:6f:77:ec:c8:dd:ba:a8:76:e0:97:
2c:2b:83:aa:71:ba:bc:50:69:13:d1:9b:ac:c1:55:
90:e2:3f:ea:66:0b:9f:f9:ef:75:e7:c7:76:e2:95:
c5:f7:fc:dc:7e:96:30:ab:70:6d:65:f1:71:53:94:
e7:58:05:6d:72:9f:ef:52:6a:97:c6:4d:44:67:f7:
55:ad:72:ca:6b:88:01:dd:57:64:d4:14:73:97:dd:
fb:1e:c9:33:79:43:84:39:d5:ff:ae:93:15:c6:cc:
07:15:d6:53:79:bb:2a:77:f3:88:da:d7:37:f8:d5:
bc:30:23:81:b3:5a:d7:2e:9e:d8:5d:04:f7:fc:7e:
a0:8c:46:3a:64:1f:e8:76:4d:a8:7a:4a:73:89:82:
c5:50:a2:ad:70:7e:c3:e9:13:6c:79:97:af:55:94:
51:79:10:5f:f9:bf:cb:d9:cb:6f:af:97:e2:75:e5:
a1:9e:4c:67:62:70:a2:7a:f0:b1:af:26:44:6a:18:
8c:74:8a:3f:2d:51:21:ef:69:83:63:0a:33:c2:7d:
57:8f:24:7e:da:cf:61:9b:5e:bf:d1:9e:ee:d1:2a:
f0:87:d6:35:bc:be:88:51:f4:90:41:42:cb:3e:32:
ca:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7D:AD:30:22:8B:4D:6B:01:79:37:67:B2:94:7D:D9:D4:F7:19:DF
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20::/32
Signature Algorithm: sha256WithRSAEncryption
85:e8:e2:03:d0:d1:0c:ff:04:74:5d:a4:59:56:9f:88:f0:73:
02:99:3b:b4:a0:a8:ec:95:06:63:73:d1:df:9e:d7:52:5b:e9:
31:ae:cb:02:7f:79:32:7c:b1:e1:9a:c6:29:37:07:52:f7:18:
2c:5b:4d:d7:e1:ea:c1:bd:f7:8f:a6:f3:4d:dd:8b:0e:c7:96:
94:3b:2b:8a:1f:66:be:1a:1a:c3:ce:c2:ca:05:de:86:99:66:
29:eb:ab:67:64:a4:3a:cd:0f:84:21:36:fb:02:2a:06:c8:08:
f8:ff:0f:95:77:c9:d9:55:c6:57:34:df:bf:d6:2e:1c:05:a9:
b2:07:21:f4:5a:ce:1c:59:fa:d1:60:d6:86:b1:e5:d2:8c:b5:
b3:07:67:c0:75:e1:11:8c:d3:dd:59:80:bc:47:b0:f1:c2:3a:
09:36:16:85:93:a6:35:50:0a:ee:8c:83:23:fa:0f:27:11:86:
cf:8a:10:af:a3:e4:00:7e:96:87:67:9e:b5:48:88:cf:77:90:
1a:e9:43:3e:84:c8:00:1c:55:bc:98:0a:bd:ba:ad:49:37:81:
31:42:41:4c:43:af:bd:30:d7:31:c5:d3:5c:eb:bc:95:dc:9a:
4d:fc:79:ea:4d:e7:bb:aa:f7:05:8d:de:6a:8c:3c:f3:51:08:
db:08:7d:be
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUZG
OTAzMDZCNDdBN0RFMDMwN0YwRTMzNUI0REM3RjI3REVBNEZCMB4XDTI0MDEwNTA0
MDg0OFoXDTI0MTIyNTE1MzAyMVowMzExMC8GA1UEAxMoMjM3REFEMzAyMjhCNEQ2
QjAxNzkzNzY3QjI5NDdERDlENEY3MTlERjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOkzmv581nOVCObPaQX0nyoT8Klvd+zI3bqoduCXLCuDqnG6vFBp
E9GbrMFVkOI/6mYLn/nvdefHduKVxff83H6WMKtwbWXxcVOU51gFbXKf71Jql8ZN
RGf3Va1yymuIAd1XZNQUc5fd+x7JM3lDhDnV/66TFcbMBxXWU3m7KnfziNrXN/jV
vDAjgbNa1y6e2F0E9/x+oIxGOmQf6HZNqHpKc4mCxVCirXB+w+kTbHmXr1WUUXkQ
X/m/y9nLb6+X4nXloZ5MZ2Jwonrwsa8mRGoYjHSKPy1RIe9pg2MKM8J9V48kftrP
YZtev9Ge7tEq8IfWNby+iFH0kEFCyz4yynUCAwEAAaOCAfcwggHzMB0GA1UdDgQW
BBQjfa0wIotNawF5N2eylH3Z1PcZ3zAfBgNVHSMEGDAWgBQ1/5Awa0en3gMH8OM1
tNx/J96k+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT
oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElKSUNP
TFREL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvTmYtUU1HdEhwOTREQl9Eak5iVGNmeWZlcFBzLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklDT0xURC9JMzJ0TUNLTFRX
c0JlVGRuc3BSOTJkVDNHZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu
dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA
AjAHAwUAJAFfIDANBgkqhkiG9w0BAQsFAAOCAQEAhejiA9DRDP8EdF2kWVafiPBz
Apk7tKCo7JUGY3PR357XUlvpMa7LAn95Mnyx4ZrGKTcHUvcYLFtN1+Hqwb33j6bz
Td2LDseWlDsrih9mvhoaw87CygXehplmKeurZ2SkOs0PhCE2+wIqBsgI+P8PlXfJ
2VXGVzTfv9YuHAWpsgch9FrOHFn60WDWhrHl0oy1swdnwHXhEYzT3VmAvEew8cI6
CTYWhZOmNVAK7oyDI/oPJxGGz4oQr6PkAH6Wh2eetUiIz3eQGulDPoTIABxVvJgK
vbqtSTeBMUJBTEOvvTDXMcXTXOu8ldyaTfx56k3nu6r3BY3eaow881EI2wh9vg==
Generated at Tue Oct 22 20:22:32 2024 by rpki-client on console-fra.rpki-client.org