Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/mIAfrXOdUkXxt0le1Du3prhbsA0.roa
File: mIAfrXOdUkXxt0le1Du3prhbsA0.roa (raw, json)
Hash identifier: W6AqZsvx6eN05A75PDrAkBO3yLJ+7zObeE3F6ZiJ+co=
Subject key identifier: 98:80:1F:AD:73:9D:52:45:F1:B7:49:5E:D4:3B:B7:A6:B8:5B:B0:0D
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 0B
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/mIAfrXOdUkXxt0le1Du3prhbsA0.roa
Signing time: Thu 04 Jan 2024 08:13:31 +0000
ROA not before: Thu 04 Jan 2024 08:13:31 +0000
ROA not after: Wed 25 Dec 2024 15:30:21 +0000
asID: 151188
IP address blocks: 2401:5f20:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Wed 18 Sep 2024 15:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Jan 4 08:13:31 2024 GMT
Not After : Dec 25 15:30:21 2024 GMT
Subject: CN=98801FAD739D5245F1B7495ED43BB7A6B85BB00D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:88:fd:96:e4:70:84:39:15:a9:10:aa:dd:dd:
16:89:0f:7f:4b:1f:3c:1a:97:a6:19:91:45:78:96:
5e:3f:2f:c2:37:f8:b4:0f:30:7a:4d:b6:d6:a4:73:
41:3d:b4:22:a4:47:fb:33:7f:49:57:de:9e:31:2b:
a2:ad:2f:c9:bc:24:bd:f8:ae:c9:2c:f5:02:e4:17:
a1:38:c3:ce:bd:83:b3:66:0d:32:7a:16:a3:69:38:
04:39:b9:b2:55:68:24:33:6d:77:c6:c0:a5:a8:87:
4c:69:08:59:28:5f:26:45:b6:94:4b:02:93:03:73:
78:bf:f9:33:b1:33:28:92:f9:2e:08:7e:c1:31:5a:
eb:f8:f1:3b:c0:89:ed:c8:9d:c3:c0:ce:64:a9:43:
d8:04:c2:6a:d5:56:2e:c3:62:9d:97:9a:6f:b9:7b:
96:ee:40:4f:da:99:d8:c1:b2:d2:4a:66:77:d1:cd:
87:95:ce:4f:89:fd:28:13:27:88:56:d8:ad:2e:48:
1e:49:ee:5a:5e:c5:89:11:e7:38:d7:f3:7e:2c:05:
7a:ac:b8:42:2b:02:b9:36:ce:9e:fb:66:b6:a8:6d:
78:cd:2e:ac:38:02:bc:5e:52:6d:22:43:9f:1c:1a:
ac:4b:cc:c6:72:a0:73:0e:b0:75:f3:01:2f:05:61:
db:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:80:1F:AD:73:9D:52:45:F1:B7:49:5E:D4:3B:B7:A6:B8:5B:B0:0D
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/mIAfrXOdUkXxt0le1Du3prhbsA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20:1000::/36
Signature Algorithm: sha256WithRSAEncryption
9c:dc:37:10:41:7e:86:0f:e4:cf:e7:54:6f:72:54:e5:77:a3:
32:05:3d:f2:76:d9:d2:59:12:f0:24:96:30:4c:5c:39:c9:64:
8c:48:44:d1:d7:b8:a3:cf:02:0e:d1:50:18:86:66:68:1e:51:
62:d3:5f:b0:ef:2d:83:70:4e:76:40:f6:22:0f:29:4f:e9:29:
9e:1f:75:a5:05:6a:e2:d3:be:b1:84:55:55:cb:54:8c:ef:17:
1f:d6:f8:31:56:0a:1a:cf:37:f2:0b:41:54:4f:77:c0:98:bc:
42:ee:f7:ee:a0:79:45:7c:4b:3f:1d:68:04:1e:ed:ce:d0:56:
94:51:60:fb:10:79:d1:5d:f0:e5:eb:72:f4:5c:00:c8:91:33:
ab:0d:2e:46:4b:3a:58:31:16:27:8c:4d:85:0a:32:49:5e:8a:
c4:6b:61:99:75:38:5f:41:f8:64:cb:d3:1c:38:16:6f:bd:47:
e8:36:d6:77:a3:22:b9:c9:c4:b2:6f:d6:74:1b:98:e2:61:46:
50:db:71:16:2b:d9:31:9f:09:54:71:a3:cc:a6:bb:24:3d:da:
d3:30:29:42:50:f8:d1:41:aa:50:00:4d:28:a2:73:00:d4:91:
85:0b:0e:c8:3f:cb:77:ed:e8:61:07:a2:c6:d2:38:0e:5a:83:
45:e4:a6:a9
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUZG
OTAzMDZCNDdBN0RFMDMwN0YwRTMzNUI0REM3RjI3REVBNEZCMB4XDTI0MDEwNDA4
MTMzMVoXDTI0MTIyNTE1MzAyMVowMzExMC8GA1UEAxMoOTg4MDFGQUQ3MzlENTI0
NUYxQjc0OTVFRDQzQkI3QTZCODVCQjAwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMiI/ZbkcIQ5FakQqt3dFokPf0sfPBqXphmRRXiWXj8vwjf4tA8w
ek221qRzQT20IqRH+zN/SVfenjEroq0vybwkvfiuySz1AuQXoTjDzr2Ds2YNMnoW
o2k4BDm5slVoJDNtd8bApaiHTGkIWShfJkW2lEsCkwNzeL/5M7EzKJL5Lgh+wTFa
6/jxO8CJ7cidw8DOZKlD2ATCatVWLsNinZeab7l7lu5AT9qZ2MGy0kpmd9HNh5XO
T4n9KBMniFbYrS5IHknuWl7FiRHnONfzfiwFeqy4QisCuTbOnvtmtqhteM0urDgC
vF5SbSJDnxwarEvMxnKgcw6wdfMBLwVh29cCAwEAAaOCAfgwggH0MB0GA1UdDgQW
BBSYgB+tc51SRfG3SV7UO7emuFuwDTAfBgNVHSMEGDAWgBQ1/5Awa0en3gMH8OM1
tNx/J96k+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT
oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElKSUNP
TFREL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvTmYtUU1HdEhwOTREQl9Eak5iVGNmeWZlcFBzLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklDT0xURC9tSUFmclhPZFVr
WHh0MGxlMUR1M3ByaGJzQTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu
dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIA
AjAIAwYEJAFfIBAwDQYJKoZIhvcNAQELBQADggEBAJzcNxBBfoYP5M/nVG9yVOV3
ozIFPfJ22dJZEvAkljBMXDnJZIxIRNHXuKPPAg7RUBiGZmgeUWLTX7DvLYNwTnZA
9iIPKU/pKZ4fdaUFauLTvrGEVVXLVIzvFx/W+DFWChrPN/ILQVRPd8CYvELu9+6g
eUV8Sz8daAQe7c7QVpRRYPsQedFd8OXrcvRcAMiRM6sNLkZLOlgxFieMTYUKMkle
isRrYZl1OF9B+GTL0xw4Fm+9R+g21nejIrnJxLJv1nQbmOJhRlDbcRYr2TGfCVRx
o8ymuyQ92tMwKUJQ+NFBqlAATSiicwDUkYULDsg/y3ft6GEHosbSOA5ag0Xkpqk=
-----END CERTIFICATE-----
Generated at Wed Sep 18 19:07:31 2024 by rpki-client on console-ams.rpki-client.org