Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QfVoALjGutM9VxaUDgjoXDZWLfc.roa
File: QfVoALjGutM9VxaUDgjoXDZWLfc.roa (raw, json)
Hash identifier: LwIrZ/bVNNFKPJw+Ad/DwnG3ChaqvvJGJbnH9hn2Bf8=
Subject key identifier: 41:F5:68:00:B8:C6:BA:D3:3D:57:16:94:0E:08:E8:5C:36:56:2D:F7
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0CC0
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QfVoALjGutM9VxaUDgjoXDZWLfc.roa
Signing time: Mon 26 Aug 2024 05:25:54 +0000
ROA not before: Mon 26 Aug 2024 05:25:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 103.133.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 04:24:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3264 (0xcc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Aug 26 05:25:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=41F56800B8C6BAD33D5716940E08E85C36562DF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e6:55:e5:66:f5:8c:0a:43:13:1f:06:e6:35:
e0:a2:36:ab:69:50:c7:d0:33:0d:9f:28:ad:16:03:
aa:8c:16:af:66:02:3b:7b:c3:d8:76:38:96:00:7d:
63:ee:1e:ff:d3:86:bf:82:1d:22:15:06:fd:9c:65:
e8:f3:b5:1d:16:ab:4f:f0:5f:f2:6c:fa:05:0c:68:
56:fd:07:c8:50:19:5b:34:a5:8d:16:59:5a:18:4f:
29:df:34:38:0b:b0:50:9b:01:18:7b:02:fc:03:97:
64:3f:cf:23:f5:21:06:f2:e3:9c:76:c6:f8:61:43:
57:fb:3c:32:3d:44:5c:71:2d:3f:bb:52:dd:6b:ca:
a9:62:93:d7:7e:89:bd:dd:d1:77:91:7b:be:10:e4:
18:92:71:9e:91:4c:7f:53:c0:4a:eb:40:54:56:6a:
9f:3c:93:7a:54:62:8a:bb:5b:4c:88:8d:b1:95:c1:
df:6c:52:f6:26:6f:00:b4:8c:87:ae:17:65:e7:0c:
56:e2:89:0c:83:54:0a:df:d1:18:44:2b:f1:b8:b4:
47:99:0d:f0:0e:8d:cd:25:34:d6:fa:de:7f:5e:5e:
f8:d2:af:d5:9c:03:39:f1:41:f3:ac:56:a8:31:d1:
4f:ce:62:5b:9d:04:52:b6:60:cf:8d:41:77:eb:93:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F5:68:00:B8:C6:BA:D3:3D:57:16:94:0E:08:E8:5C:36:56:2D:F7
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QfVoALjGutM9VxaUDgjoXDZWLfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.154.0/24
Signature Algorithm: sha256WithRSAEncryption
59:30:ca:38:0c:38:45:8f:ad:47:6e:93:53:dc:be:a7:c8:04:
9d:2a:c7:9b:23:a4:fa:b9:9a:64:aa:f8:bf:86:a8:e0:fe:c8:
9f:b7:fd:35:9b:cb:0e:d5:0c:09:b9:b8:10:da:25:61:46:70:
35:2a:4b:66:74:f7:e6:5a:2b:a5:d8:b1:0c:8b:7a:2f:db:4f:
08:64:89:a5:a4:34:95:06:c1:e6:90:41:82:85:76:62:d0:e7:
dc:70:12:73:73:d2:ea:3c:b6:7b:d2:06:45:f4:56:c2:48:7c:
29:7d:03:d5:60:bd:f6:95:ec:09:65:ea:2c:66:5a:b7:a1:74:
72:06:7c:91:a8:5c:9c:88:47:f3:4c:52:49:92:e5:b8:e1:2d:
06:fb:5a:04:f7:e5:26:e0:05:88:7e:cb:f9:b8:bb:22:2e:f8:
20:2b:e4:06:88:7b:e3:43:7a:81:be:1e:4a:f0:ca:80:ee:bf:
7e:74:4b:64:1c:b8:8d:e8:52:55:88:29:c2:f7:2e:40:b1:63:
ce:c7:79:3c:0d:42:2b:ee:d6:49:32:9b:de:78:e4:cf:f7:f4:
82:da:9a:9a:97:98:e4:24:5a:51:bd:b1:19:d8:ec:39:e8:f4:
c3:b0:94:1e:e7:d4:9a:37:11:f2:19:79:3b:5d:84:73:54:1b:
2d:ce:90:23
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1
NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw
NTI1NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxRjU2ODAwQjhDNkJB
RDMzRDU3MTY5NDBFMDhFODVDMzY1NjJERjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC95lXlZvWMCkMTHwbmNeCiNqtpUMfQMw2fKK0WA6qMFq9mAjt7
w9h2OJYAfWPuHv/Thr+CHSIVBv2cZejztR0Wq0/wX/Js+gUMaFb9B8hQGVs0pY0W
WVoYTynfNDgLsFCbARh7AvwDl2Q/zyP1IQby45x2xvhhQ1f7PDI9RFxxLT+7Ut1r
yqlik9d+ib3d0XeRe74Q5BiScZ6RTH9TwErrQFRWap88k3pUYoq7W0yIjbGVwd9s
UvYmbwC0jIeuF2XnDFbiiQyDVArf0RhEK/G4tEeZDfAOjc0lNNb63n9eXvjSr9Wc
AznxQfOsVqgx0U/OYludBFK2YM+NQXfrky1FAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUQfVoALjGutM9VxaUDgjoXDZWLfcwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB
76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI
RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL1FmVm9BTGpHdXRN
OVZ4YVVEZ2pvWERaV0xmYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABnhZowDQYJKoZIhvcNAQELBQADggEBAFkwyjgMOEWPrUduk1PcvqfIBJ0q
x5sjpPq5mmSq+L+GqOD+yJ+3/TWbyw7VDAm5uBDaJWFGcDUqS2Z09+ZaK6XYsQyL
ei/bTwhkiaWkNJUGweaQQYKFdmLQ59xwEnNz0uo8tnvSBkX0VsJIfCl9A9VgvfaV
7All6ixmWrehdHIGfJGoXJyIR/NMUkmS5bjhLQb7WgT35SbgBYh+y/m4uyIu+CAr
5AaIe+NDeoG+HkrwyoDuv350S2QcuI3oUlWIKcL3LkCxY87HeTwNQivu1kkym954
5M/39ILampqXmOQkWlG9sRnY7Dno9MOwlB7n1Jo3EfIZeTtdhHNUGy3OkCM=
-----END CERTIFICATE-----
Generated at Thu Aug 29 05:24:56 2024 by rpki-client on console-fra.rpki-client.org