Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/r9VZbd5vNg5_3n4-VXPnoxuxMgQ.roa
File: r9VZbd5vNg5_3n4-VXPnoxuxMgQ.roa (raw, json)
Hash identifier: dEMQ5vhVTVxu0i7FEhu340JfgpFfTMYf0ojK1VWJGMY=
Subject key identifier: AF:D5:59:6D:DE:6F:36:0E:7F:DE:7E:3E:55:73:E7:A3:1B:B1:32:04
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 0F45
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/r9VZbd5vNg5_3n4-VXPnoxuxMgQ.roa
Signing time: Thu 15 Sep 2022 02:47:38 +0000
ROA not before: Thu 15 Sep 2022 02:47:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131633
IP address blocks: 103.127.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3909 (0xf45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: Sep 15 02:47:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFD5596DDE6F360E7FDE7E3E5573E7A31BB13204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:ac:88:6a:f4:f5:9f:c2:2e:8c:97:11:1a:
02:16:98:61:ae:e2:49:78:1c:61:c4:44:6d:a2:28:
9a:de:be:bc:6c:45:88:3e:aa:be:e3:52:2b:c7:57:
43:fd:68:f1:47:4d:e5:4b:2a:26:34:0e:7e:f7:ad:
a2:4d:ad:ff:35:07:bf:77:6b:d5:29:56:7d:a1:ac:
77:91:b6:eb:3b:9b:45:2a:61:94:55:ff:a8:cb:0f:
81:e9:de:c7:fe:ac:40:52:25:ed:63:b4:32:67:f4:
7a:a7:b8:57:26:b0:a0:d8:73:0f:40:27:46:16:8d:
20:5f:7f:ff:fc:81:46:6f:07:95:a3:ff:e0:bb:0b:
11:8e:b2:c2:94:5e:15:90:e9:18:eb:c1:6a:a8:3b:
f0:7f:f2:f7:d0:56:47:e8:7a:50:34:c1:1b:c2:90:
b1:55:64:26:53:a9:09:b4:6f:d4:57:8e:e4:b8:3d:
0c:52:cf:78:2c:e0:73:3a:ac:2d:35:3f:3c:ec:31:
25:66:c4:5c:3b:1f:4c:d4:bd:86:ed:c1:28:be:3a:
70:32:c6:f0:b3:c3:0f:21:ef:05:24:f1:b0:66:ac:
11:fa:91:f3:40:c7:1e:6b:85:7a:65:ea:10:29:55:
fd:35:cb:22:8d:da:a1:6a:98:61:06:91:38:ad:5f:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D5:59:6D:DE:6F:36:0E:7F:DE:7E:3E:55:73:E7:A3:1B:B1:32:04
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/r9VZbd5vNg5_3n4-VXPnoxuxMgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.236.0/22
Signature Algorithm: sha256WithRSAEncryption
ec:7b:40:35:8a:d3:42:27:02:4c:50:b8:dd:a8:74:6e:54:26:
88:9f:a6:91:05:21:23:16:e7:79:9d:88:28:b0:b6:23:36:4d:
00:46:d0:bf:2d:62:fa:d5:da:c7:5a:39:2d:ec:c8:11:b9:29:
b7:b6:87:e2:a5:98:44:c9:cb:ed:89:59:be:ff:07:80:61:f4:
15:0f:31:ec:97:fe:ed:c8:43:6d:60:ec:37:ac:3b:56:f4:9d:
1a:f0:d5:d1:d5:ec:b0:ae:f1:94:12:18:da:7c:12:84:8d:06:
a1:d0:5d:8c:c2:f0:3a:62:6e:4c:e1:1f:92:65:9b:c9:82:f0:
06:3a:09:8d:ab:1c:fb:92:b1:a1:21:91:b4:b7:a8:e0:6d:bf:
1f:81:63:52:e7:ad:8b:66:c9:af:12:f2:89:72:c8:74:9a:f7:
fc:df:c1:27:c2:11:c0:7a:2a:5b:3b:f9:83:dc:80:87:24:d6:
2f:af:91:95:dc:ec:db:62:54:7f:6c:9e:0e:8b:3a:fa:59:75:
3a:c9:07:02:f9:a3:31:8d:7f:08:aa:5a:30:12:69:35:69:3f:
62:f9:22:b8:77:df:18:c3:8c:32:b4:dc:6d:32:ac:8a:57:9a:
5d:c1:68:34:08:ac:6a:24:5c:5f:9e:2a:ab:0f:1f:9e:e1:1c:
18:6a:38:07
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICD0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx
ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yMjA5MTUw
MjQ3MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGRDU1OTZEREU2RjM2
MEU3RkRFN0UzRTU1NzNFN0EzMUJCMTMyMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFz6yIavT1n8IujJcRGgIWmGGu4kl4HGHERG2iKJrevrxsRYg+
qr7jUivHV0P9aPFHTeVLKiY0Dn73raJNrf81B793a9UpVn2hrHeRtus7m0UqYZRV
/6jLD4Hp3sf+rEBSJe1jtDJn9HqnuFcmsKDYcw9AJ0YWjSBff//8gUZvB5Wj/+C7
CxGOssKUXhWQ6RjrwWqoO/B/8vfQVkfoelA0wRvCkLFVZCZTqQm0b9RXjuS4PQxS
z3gs4HM6rC01PzzsMSVmxFw7H0zUvYbtwSi+OnAyxvCzww8h7wUk8bBmrBH6kfNA
xx5rhXpl6hApVf01yyKN2qFqmGEGkTitX6t/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUr9VZbd5vNg5/3n4+VXPnoxuxMgQwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7
k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ
TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9yOVZaYmQ1dk5nNV8z
bjQtVlhQbm94dXhNZ1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQDse0A1itNCJwJMULjdqHRuVCaIn6aR
BSEjFud5nYgosLYjNk0ARtC/LWL61drHWjkt7MgRuSm3tofipZhEycvtiVm+/weA
YfQVDzHsl/7tyENtYOw3rDtW9J0a8NXR1eywrvGUEhjafBKEjQah0F2MwvA6Ym5M
4R+SZZvJgvAGOgmNqxz7krGhIZG0t6jgbb8fgWNS562LZsmvEvKJcsh0mvf838En
whHAeipbO/mD3ICHJNYvr5GV3OzbYlR/bJ4Oizr6WXU6yQcC+aMxjX8IqlowEmk1
aT9i+SK4d98Yw4wytNxtMqyKV5pdwWg0CKxqJFxfniqrDx+e4RwYajgH
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org