Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/5yMAoQBaK3ZvDzSWZvxN_DZtEGg.roa
File: 5yMAoQBaK3ZvDzSWZvxN_DZtEGg.roa (raw, json)
Hash identifier: mk1MxvmWi4JTwcqz2UjrEPvfohN8vD82e6qz+lievvA=
Subject key identifier: E7:23:00:A1:00:5A:2B:76:6F:0F:34:96:66:FC:4D:FC:36:6D:10:68
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0CC5
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/5yMAoQBaK3ZvDzSWZvxN_DZtEGg.roa
Signing time: Mon 26 Aug 2024 05:25:56 +0000
ROA not before: Mon 26 Aug 2024 05:25:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 103.133.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 04:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3269 (0xcc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Aug 26 05:25:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E72300A1005A2B766F0F349666FC4DFC366D1068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:2a:c3:95:df:4b:3c:12:e5:ad:76:00:02:
f0:96:81:3d:b9:6f:9a:f3:3e:1e:aa:0b:d9:d0:87:
b0:71:7f:07:fb:24:de:63:8e:01:78:8e:ba:34:88:
a6:17:7f:d3:19:e3:a4:6f:bd:c8:14:6e:80:54:ab:
f3:7d:f0:8f:df:18:aa:d9:43:31:b9:52:82:4a:ed:
84:37:24:29:53:6c:83:3c:ef:4f:41:ef:b2:b1:b1:
b9:19:71:d4:29:a0:ca:56:ac:44:1d:92:84:a7:80:
63:c1:a1:fa:75:7b:91:6a:52:8a:7f:30:3d:9e:2f:
e1:96:ea:84:1d:c3:4f:ce:d5:a4:db:8e:62:9f:19:
4e:5c:56:56:cb:38:30:33:d7:98:00:56:9c:b2:b6:
53:af:d3:84:fd:e5:24:81:eb:a8:f5:61:8e:a9:82:
61:ff:1a:af:8d:89:94:be:91:62:5e:97:50:96:d1:
65:aa:42:7b:0b:2f:a8:19:d9:e6:5d:78:f5:14:15:
79:28:8c:b5:1b:7f:b4:b3:81:51:8c:48:65:f0:34:
4d:5f:de:98:c7:28:5b:2f:e7:ec:9f:39:87:ff:02:
77:3b:3c:c4:a1:3f:70:9a:a1:3b:08:39:1c:62:73:
58:f7:61:e0:ea:66:c9:12:e4:e6:37:32:6f:ff:6b:
ce:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:23:00:A1:00:5A:2B:76:6F:0F:34:96:66:FC:4D:FC:36:6D:10:68
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/5yMAoQBaK3ZvDzSWZvxN_DZtEGg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.152.0/22
Signature Algorithm: sha256WithRSAEncryption
64:29:1b:0d:38:8e:24:90:d3:91:c1:14:83:71:d4:ed:b3:78:
6b:b4:8b:10:d9:3b:2d:a2:3a:cc:b3:72:ce:e3:22:35:9a:d1:
73:4e:50:d8:cf:1d:eb:8e:99:bc:f2:cb:ad:f6:ad:38:4b:ae:
4d:24:dd:35:b9:c9:d5:37:9d:f2:5e:4f:a1:9b:7e:e9:49:70:
eb:8f:03:c8:85:b7:9e:0f:42:24:af:ce:2d:6b:cb:7a:15:2d:
ec:18:f6:b4:7a:6c:8c:a3:44:9c:cf:0c:2f:a1:5c:02:92:12:
11:52:a2:3e:b7:26:c3:31:59:6e:e3:d1:3d:51:4a:48:59:6b:
cc:43:2b:8d:c2:8f:57:83:ea:ff:0e:7d:0f:aa:e3:3f:e2:3c:
94:93:98:59:e5:b2:22:33:ae:ec:61:b9:2a:f8:3b:96:c3:53:
81:a0:bb:fc:b6:34:61:6e:18:30:8f:f7:14:d8:84:7d:91:90:
71:80:4f:54:60:fe:2c:3a:1e:04:9c:5e:59:f2:bb:f9:dc:66:
8c:74:ee:eb:c0:3b:61:ec:45:a4:eb:2a:fa:c7:c7:6e:6a:d9:
0e:3d:22:c4:30:cd:d1:22:5d:d3:c9:70:6d:73:7d:40:87:d4:
d1:b8:41:ff:e6:f5:ca:5e:65:a5:e4:0b:87:48:fe:69:6a:1a:
0d:ac:76:f3
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICDMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1
NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw
NTI1NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3MjMwMEExMDA1QTJC
NzY2RjBGMzQ5NjY2RkM0REZDMzY2RDEwNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCulCrDld9LPBLlrXYAAvCWgT25b5rzPh6qC9nQh7Bxfwf7JN5j
jgF4jro0iKYXf9MZ46RvvcgUboBUq/N98I/fGKrZQzG5UoJK7YQ3JClTbIM8709B
77KxsbkZcdQpoMpWrEQdkoSngGPBofp1e5FqUop/MD2eL+GW6oQdw0/O1aTbjmKf
GU5cVlbLODAz15gAVpyytlOv04T95SSB66j1YY6pgmH/Gq+NiZS+kWJel1CW0WWq
QnsLL6gZ2eZdePUUFXkojLUbf7SzgVGMSGXwNE1f3pjHKFsv5+yfOYf/Anc7PMSh
P3CaoTsIORxic1j3YeDqZskS5OY3Mm//a861AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQU5yMAoQBaK3ZvDzSWZvxN/DZtEGgwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB
76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI
RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HLzV5TUFvUUJhSzNa
dkR6U1dadnhOX0RadEVHZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAJnhZgwDQYJKoZIhvcNAQELBQADggEBAGQpGw04jiSQ05HBFINx1O2zeGu0
ixDZOy2iOsyzcs7jIjWa0XNOUNjPHeuOmbzyy632rThLrk0k3TW5ydU3nfJeT6Gb
fulJcOuPA8iFt54PQiSvzi1ry3oVLewY9rR6bIyjRJzPDC+hXAKSEhFSoj63JsMx
WW7j0T1RSkhZa8xDK43Cj1eD6v8OfQ+q4z/iPJSTmFnlsiIzruxhuSr4O5bDU4Gg
u/y2NGFuGDCP9xTYhH2RkHGAT1Rg/iw6HgScXlnyu/ncZox07uvAO2HsRaTrKvrH
x25q2Q49IsQwzdEiXdPJcG1zfUCH1NG4Qf/m9cpeZaXkC4dI/mlqGg2sdvM=
-----END CERTIFICATE-----
Generated at Thu Aug 29 06:12:37 2024 by rpki-client on console-ams.rpki-client.org