Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/PoNNFg7W9RLoScc2ZWOM0nhH3sY.roa
File: PoNNFg7W9RLoScc2ZWOM0nhH3sY.roa (raw, json)
Hash identifier: hG2mEjXnMbZOiRET/NKAplsBBuZKXFAUi2XYOZnxycM=
Subject key identifier: 3E:83:4D:16:0E:D6:F5:12:E8:49:C7:36:65:63:8C:D2:78:47:DE:C6
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 010A
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/PoNNFg7W9RLoScc2ZWOM0nhH3sY.roa
Signing time: Fri 20 Sep 2024 07:49:54 +0000
ROA not before: Fri 20 Sep 2024 07:49:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 202.160.80.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 00:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266 (0x10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Sep 20 07:49:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3E834D160ED6F512E849C73665638CD27847DEC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:27:4d:d8:be:ce:f8:1e:92:a2:0d:c9:6a:0f:
01:e6:ae:9e:78:f7:bd:8c:88:e9:2b:cf:9c:92:01:
b9:ec:a9:c7:33:3d:61:02:66:cd:71:a1:01:3f:c7:
1f:3a:fb:bd:2d:5b:2d:0b:e2:a7:ed:bd:86:e3:d4:
04:a4:08:d0:29:8f:2e:6e:ea:5a:b7:54:1f:e0:cc:
d8:3c:86:b1:72:8d:a7:00:91:9d:eb:a5:5f:40:62:
2c:5d:83:15:8e:aa:6a:0c:b1:42:0d:77:57:9c:12:
8c:46:21:cf:74:4c:44:0d:5c:2a:78:92:cc:b3:d4:
9b:c9:cb:91:fc:10:fe:5b:b8:4d:a2:7d:02:2f:bf:
bc:c5:a9:4f:74:85:9f:2c:75:bd:a4:0c:89:7a:6d:
b2:7d:c7:df:5f:2a:82:f8:8c:1e:0d:5a:fc:e0:f8:
98:44:e1:65:b5:c5:79:36:ff:57:c1:c3:f9:3c:61:
12:8c:4f:65:74:03:ca:eb:43:4e:eb:60:52:01:da:
21:a5:0e:50:14:6a:99:94:8e:be:ab:1b:cf:5b:1f:
67:1f:3e:2b:ea:0d:1e:91:e6:36:1c:0f:a8:00:3c:
88:25:14:6e:ce:6c:cc:31:94:5d:85:58:22:c2:ea:
2f:37:7b:bc:2a:99:df:48:59:14:b4:83:b4:37:48:
81:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:83:4D:16:0E:D6:F5:12:E8:49:C7:36:65:63:8C:D2:78:47:DE:C6
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/PoNNFg7W9RLoScc2ZWOM0nhH3sY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.80.0/21
Signature Algorithm: sha256WithRSAEncryption
26:56:3c:10:4d:c8:09:fe:61:b9:fb:ed:18:ea:39:a6:f2:3a:
c4:c2:63:e0:f0:23:fd:4b:c5:38:c5:0e:7b:32:6f:97:9b:b5:
fd:21:7a:4e:47:74:66:5f:c5:9b:38:e4:97:0c:81:d8:16:47:
e8:47:4f:7b:4c:de:65:a9:2d:f7:ab:63:a7:99:46:d1:88:3f:
be:76:66:9b:60:cd:a3:ce:f3:07:67:69:6a:2a:83:4c:dd:f3:
ff:01:9e:e5:4c:e1:3d:d8:94:ac:eb:fb:1d:ad:54:33:58:2a:
48:bd:c7:08:dc:e5:d7:bb:f0:93:34:7f:8d:c2:3e:eb:c2:6b:
aa:fe:b4:28:6e:19:fe:56:e1:c4:18:ce:4d:6c:ab:34:2d:17:
2b:c1:61:4c:be:09:dc:14:7c:22:83:17:c4:d4:93:12:92:72:
8b:23:48:fa:18:60:e0:4c:08:46:0b:b0:e4:3a:6e:1a:82:41:
84:8c:06:8f:c8:0e:c8:16:54:db:4f:69:c8:0a:7a:01:0f:e9:
62:d7:cb:ef:ab:1d:28:17:ae:53:1e:80:3f:a7:f7:70:de:1e:
e3:f9:98:9a:f2:02:7a:e7:31:0d:5a:bb:cd:31:84:9d:2d:4a:
b2:a3:96:53:36:d5:43:e6:73:60:3a:f5:a0:97:60:88:f2:b3:
f9:ea:6d:e4
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE
MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDA5MjAw
NzQ5NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFODM0RDE2MEVENkY1
MTJFODQ5QzczNjY1NjM4Q0QyNzg0N0RFQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoJ03Yvs74HpKiDclqDwHmrp54972MiOkrz5ySAbnsqcczPWEC
Zs1xoQE/xx86+70tWy0L4qftvYbj1ASkCNApjy5u6lq3VB/gzNg8hrFyjacAkZ3r
pV9AYixdgxWOqmoMsUINd1ecEoxGIc90TEQNXCp4ksyz1JvJy5H8EP5buE2ifQIv
v7zFqU90hZ8sdb2kDIl6bbJ9x99fKoL4jB4NWvzg+JhE4WW1xXk2/1fBw/k8YRKM
T2V0A8rrQ07rYFIB2iGlDlAUapmUjr6rG89bH2cfPivqDR6R5jYcD6gAPIglFG7O
bMwxlF2FWCLC6i83e7wqmd9IWRS0g7Q3SIGVAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUPoNNFg7W9RLoScc2ZWOM0nhH3sYwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9
HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL
RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL1BvTk5GZzdXOVJM
b1NjYzJaV09NMG5oSDNzWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPKoFAwDQYJKoZIhvcNAQELBQADggEBACZWPBBNyAn+Ybn77RjqOabyOsTC
Y+DwI/1LxTjFDnsyb5ebtf0hek5HdGZfxZs45JcMgdgWR+hHT3tM3mWpLferY6eZ
RtGIP752ZptgzaPO8wdnaWoqg0zd8/8BnuVM4T3YlKzr+x2tVDNYKki9xwjc5de7
8JM0f43CPuvCa6r+tChuGf5W4cQYzk1sqzQtFyvBYUy+CdwUfCKDF8TUkxKScosj
SPoYYOBMCEYLsOQ6bhqCQYSMBo/IDsgWVNtPacgKegEP6WLXy++rHSgXrlMegD+n
93DeHuP5mJryAnrnMQ1au80xhJ0tSrKjllM21UPmc2A69aCXYIjys/nqbeQ=
-----END CERTIFICATE-----
Generated at Wed Oct 9 03:08:19 2024 by rpki-client on console-fra.rpki-client.org