Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/-ObHGj9nwMCJ0I4npq0wvGg1n8I.roa
File: -ObHGj9nwMCJ0I4npq0wvGg1n8I.roa (raw, json)
Hash identifier: gdqwCPw06d4LAumpKj2YUG4OSM4REQtmKtB6l/j+Dd4=
Subject key identifier: F8:E6:C7:1A:3F:67:C0:C0:89:D0:8E:27:A6:AD:30:BC:68:35:9F:C2
Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Certificate serial: 01C0
Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/-ObHGj9nwMCJ0I4npq0wvGg1n8I.roa
Signing time: Mon 26 Aug 2024 05:26:31 +0000
ROA not before: Mon 26 Aug 2024 05:26:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.37.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Nov 2024 10:37:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448 (0x1c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Validity
Not Before: Aug 26 05:26:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F8E6C71A3F67C0C089D08E27A6AD30BC68359FC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c6:71:e0:1d:c0:c5:f3:c8:a2:f3:fa:ed:7c:
04:22:cf:ce:9f:bc:b5:2a:d3:0c:cb:0b:d5:2b:da:
60:58:75:5c:68:0c:cc:e1:69:e4:64:7e:ad:ac:3a:
3e:e6:0f:fd:b2:9c:9e:7b:d9:4b:32:d4:27:1a:6f:
b3:11:ed:85:4c:a8:84:58:6a:65:9c:e8:ed:86:e0:
f2:61:23:b7:f3:2a:b4:49:9f:20:8d:e8:5d:7c:58:
20:e2:45:c8:59:26:53:bd:93:7d:2e:20:6d:27:0b:
50:dd:9a:2b:e5:58:b1:67:1c:80:c8:da:0e:bf:6a:
49:ec:b5:6e:87:09:10:2d:8c:b5:0f:f3:65:4a:2e:
f2:cf:6f:44:3e:58:9a:af:0c:c9:96:f1:85:88:af:
38:6a:cf:e2:66:66:77:18:59:38:05:68:37:d4:11:
ab:70:dd:76:70:13:89:3f:8b:1f:28:b9:d2:1f:cb:
08:c7:cc:ca:60:6a:8a:eb:f5:b8:24:b5:1a:7e:a9:
ca:3a:d7:ab:0f:22:0d:1c:94:e9:29:a2:4c:16:79:
7a:0b:33:f5:0f:94:aa:48:f6:c0:4f:c4:ee:cf:2c:
fa:9c:62:91:b3:8f:07:24:a1:84:83:44:e2:0e:e0:
67:1f:85:09:40:eb:e5:38:d6:1b:1e:eb:2b:d2:b5:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E6:C7:1A:3F:67:C0:C0:89:D0:8E:27:A6:AD:30:BC:68:35:9F:C2
X509v3 Authority Key Identifier:
keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/-ObHGj9nwMCJ0I4npq0wvGg1n8I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.5.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:63:78:0e:ba:f0:0a:e4:35:d9:29:1a:8f:bc:02:dd:df:3f:
24:c2:38:06:ed:e6:e7:ff:e0:6c:c3:0d:f0:1b:67:96:cb:55:
81:44:19:f2:3d:2d:ed:d2:0c:b6:04:98:9c:3d:57:0f:78:a2:
08:11:81:ae:d2:6c:b9:45:9e:0c:82:0b:db:d1:6b:4c:bf:a7:
7d:0b:18:10:59:1d:6d:5b:30:c2:d8:c9:d7:a7:2a:fc:df:d5:
b0:1f:c3:ec:c5:73:1e:1c:2f:58:16:60:c2:91:45:ae:2a:10:
6d:c4:0d:20:81:34:c9:a4:70:3f:aa:ee:62:d4:52:4e:a5:04:
7b:35:f8:be:e7:02:06:49:4a:1e:18:cd:87:4b:ff:a5:b1:38:
fa:c8:7e:f8:d9:fc:dc:da:02:05:14:27:5c:af:7f:53:45:4b:
ec:bf:57:46:03:8c:e3:15:ff:c1:32:ce:5a:f3:4c:6d:dd:9e:
6d:5f:2d:18:16:cf:26:c6:2c:f0:18:3e:71:a1:00:56:8a:68:
e0:0a:b9:43:97:f6:ec:43:84:c0:90:4a:09:1c:ee:5e:16:a6:
68:21:26:43:8c:20:75:f5:1d:46:0e:28:dd:1b:ef:2b:e8:c1:
4b:93:d5:2a:e1:af:4d:49:6d:fb:60:65:88:76:4e:1d:97:40:
a7:03:3f:71
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVG
MzBCNEM1RUNFNkUxMkU2RDkwODg5RDc5NDBEOEUxODcxMDcyQjAeFw0yNDA4MjYw
NTI2MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4RTZDNzFBM0Y2N0Mw
QzA4OUQwOEUyN0E2QUQzMEJDNjgzNTlGQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcxnHgHcDF88ii8/rtfAQiz86fvLUq0wzLC9Ur2mBYdVxoDMzh
aeRkfq2sOj7mD/2ynJ572Usy1Ccab7MR7YVMqIRYamWc6O2G4PJhI7fzKrRJnyCN
6F18WCDiRchZJlO9k30uIG0nC1DdmivlWLFnHIDI2g6/aknstW6HCRAtjLUP82VK
LvLPb0Q+WJqvDMmW8YWIrzhqz+JmZncYWTgFaDfUEatw3XZwE4k/ix8oudIfywjH
zMpgaorr9bgktRp+qco616sPIg0clOkpokwWeXoLM/UPlKpI9sBPxO7PLPqcYpGz
jwckoYSDROIO4GcfhQlA6+U41hse6yvStc7BAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU+ObHGj9nwMCJ0I4npq0wvGg1n8IwHwYDVR0jBBgwFoAURfMLTF7ObhLm2QiJ
15QNjhhxByswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01UUlRD
SC9SZk1MVEY3T2JoTG0yUWlKMTVRTmpoaHhCeXMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1JmTUxURjdPYmhMbTJRaUoxNVFOamhoeEJ5cy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NNVFJUQ0gvLU9iSEdqOW53TUNKMEk0
bnBxMHd2R2cxbjhJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGclBTANBgkqhkiG9w0BAQsFAAOCAQEATGN4DrrwCuQ12Skaj7wC3d8/JMI4Bu3m
5//gbMMN8BtnlstVgUQZ8j0t7dIMtgSYnD1XD3iiCBGBrtJsuUWeDIIL29FrTL+n
fQsYEFkdbVswwtjJ16cq/N/VsB/D7MVzHhwvWBZgwpFFrioQbcQNIIE0yaRwP6ru
YtRSTqUEezX4vucCBklKHhjNh0v/pbE4+sh++Nn83NoCBRQnXK9/U0VL7L9XRgOM
4xX/wTLOWvNMbd2ebV8tGBbPJsYs8Bg+caEAVopo4Aq5Q5f27EOEwJBKCRzuXham
aCEmQ4wgdfUdRg4o3RvvK+jBS5PVKuGvTUlt+2BliHZOHZdApwM/cQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:08 2025 by rpki-client