Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/3rzGjJSprlVn-u4yLU-1zwQ1asA.roa
File: 3rzGjJSprlVn-u4yLU-1zwQ1asA.roa (raw, json)
Hash identifier: wAz7xh42ZlikR5ErHRDRWuLmqiOdtyTgmMUhsFcWyFg=
Subject key identifier: DE:BC:C6:8C:94:A9:AE:55:67:FA:EE:32:2D:4F:B5:CF:04:35:6A:C0
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 0112
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/3rzGjJSprlVn-u4yLU-1zwQ1asA.roa
Signing time: Mon 30 Sep 2024 10:17:30 +0000
ROA not before: Mon 30 Sep 2024 10:17:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 398704
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 00:08:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274 (0x112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Sep 30 10:17:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DEBCC68C94A9AE5567FAEE322D4FB5CF04356AC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cd:f3:41:d6:bb:c8:c1:df:76:35:7b:00:9b:
c1:63:c4:7d:78:a3:c8:90:35:bd:b3:cc:71:5c:28:
66:f4:dd:47:e3:fb:93:08:f3:a7:0a:30:a7:c1:7c:
59:5e:31:75:0f:e5:ba:10:6a:c4:d9:56:44:55:cd:
0f:1d:14:79:52:4f:83:bc:c4:e8:3d:4d:28:23:6e:
b4:47:b1:88:ea:1c:08:ce:35:e7:7e:74:6f:9e:e4:
68:fd:2d:a0:6c:a8:ee:fa:53:cd:76:11:fc:70:3e:
28:96:32:63:2c:03:b1:b8:52:e2:de:96:73:8c:ad:
2c:c8:76:47:a3:bd:17:c6:6b:71:16:3e:07:f6:74:
ae:9c:74:36:5c:02:ce:3b:ca:e9:5b:80:e4:9d:52:
f4:fc:f8:17:07:1c:6b:29:8e:8c:95:ff:93:ec:b8:
80:0f:b5:12:50:8a:12:b7:e7:06:c8:69:d1:f0:2b:
22:d1:d2:0e:35:af:66:90:48:43:0b:7b:54:32:06:
98:a7:d6:13:27:df:60:50:09:3e:f9:6b:c5:13:f4:
b2:48:0b:a3:96:d1:b9:9e:6b:43:07:27:33:f9:96:
27:57:25:a9:a7:2f:c6:c4:ea:d6:28:73:9a:8e:01:
26:c5:b0:60:94:8b:4f:b7:86:87:02:7d:6f:ad:1c:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BC:C6:8C:94:A9:AE:55:67:FA:EE:32:2D:4F:B5:CF:04:35:6A:C0
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/3rzGjJSprlVn-u4yLU-1zwQ1asA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:17:c5:e0:13:dc:65:7a:77:05:af:07:84:0c:e8:1c:6c:4d:
cc:1b:fa:50:2c:b5:4b:83:e2:e2:b5:a5:89:e5:00:b2:6d:21:
0b:61:cd:5d:4a:f3:99:8d:a5:ee:0d:f9:1d:6f:61:a2:45:b2:
8c:4b:c9:33:bd:88:94:f2:5c:db:8d:e3:6b:89:0f:35:5c:04:
dd:07:1e:97:4b:55:33:00:88:3c:15:d0:ac:61:5d:3c:cb:c7:
a3:17:c0:a9:a4:9c:e9:43:c6:a4:2a:60:68:34:bd:79:45:95:
0d:0d:a4:2f:6c:a9:27:90:c9:27:d2:a4:4b:90:c4:30:a9:ad:
7b:5f:70:75:8a:96:95:cf:c3:1a:46:f7:a8:74:04:40:0c:e6:
e5:6e:0b:8f:1f:53:75:97:40:63:db:f3:29:72:a5:6f:94:a3:
5e:ec:ca:68:ef:7c:47:7f:26:15:34:57:51:37:c0:e2:71:be:
62:2a:f6:5b:14:b6:a8:a9:0b:ce:a8:89:2c:46:47:bb:ce:df:
62:29:52:55:fd:0a:19:00:b7:50:b1:97:ae:6b:bd:a3:d3:cd:
d8:da:a2:db:04:ff:1a:85:c3:84:6e:3f:c2:f4:83:ee:fb:2f:
fd:d3:a5:a2:93:a0:92:db:6c:02:d4:77:9a:81:ac:50:f3:7f:
c7:b1:09:c9
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICARIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE
MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDA5MzAx
MDE3MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFQkNDNjhDOTRBOUFF
NTU2N0ZBRUUzMjJENEZCNUNGMDQzNTZBQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGzfNB1rvIwd92NXsAm8FjxH14o8iQNb2zzHFcKGb03Ufj+5MI
86cKMKfBfFleMXUP5boQasTZVkRVzQ8dFHlST4O8xOg9TSgjbrRHsYjqHAjONed+
dG+e5Gj9LaBsqO76U812EfxwPiiWMmMsA7G4UuLelnOMrSzIdkejvRfGa3EWPgf2
dK6cdDZcAs47yulbgOSdUvT8+BcHHGspjoyV/5PsuIAPtRJQihK35wbIadHwKyLR
0g41r2aQSEMLe1QyBpin1hMn32BQCT75a8UT9LJIC6OW0bmea0MHJzP5lidXJamn
L8bE6tYoc5qOASbFsGCUi0+3hocCfW+tHPQFAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQU3rzGjJSprlVn+u4yLU+1zwQ1asAwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9
HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL
RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBLzNyekdqSlNwcmxW
bi11NHlMVS0xendRMWFzQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPKoEgwDQYJKoZIhvcNAQELBQADggEBAFoXxeAT3GV6dwWvB4QM6BxsTcwb
+lAstUuD4uK1pYnlALJtIQthzV1K85mNpe4N+R1vYaJFsoxLyTO9iJTyXNuN42uJ
DzVcBN0HHpdLVTMAiDwV0KxhXTzLx6MXwKmknOlDxqQqYGg0vXlFlQ0NpC9sqSeQ
ySfSpEuQxDCprXtfcHWKlpXPwxpG96h0BEAM5uVuC48fU3WXQGPb8ylypW+Uo17s
ymjvfEd/JhU0V1E3wOJxvmIq9lsUtqipC86oiSxGR7vO32IpUlX9ChkAt1Cxl65r
vaPTzdjaotsE/xqFw4RuP8L0g+77L/3TpaKToJLbbALUd5qBrFDzf8exCck=
-----END CERTIFICATE-----
Generated at Wed Oct 9 04:26:57 2024 by rpki-client on console-ams.rpki-client.org