Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/fVaeD-1xCkGah7MpDlhWYCeVeeA.roa
File: fVaeD-1xCkGah7MpDlhWYCeVeeA.roa (raw, json)
Hash identifier: Di+IXeTEhLzw1fYKi7UfxTdZ8gn9oYJ9TiNb5OwzQFE=
Subject key identifier: 7D:56:9E:0F:ED:71:0A:41:9A:87:B3:29:0E:58:56:60:27:95:79:E0
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: CB
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/fVaeD-1xCkGah7MpDlhWYCeVeeA.roa
Signing time: Wed 10 Jul 2024 10:06:25 +0000
ROA not before: Wed 10 Jul 2024 10:06:25 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 4766
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 17:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203 (0xcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 10 10:06:25 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=7D569E0FED710A419A87B3290E585660279579E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:51:a9:8d:58:a4:5a:9c:65:64:72:9b:b9:5c:
e5:25:98:e5:44:23:d8:85:2b:b6:03:57:2e:d0:d2:
c4:8a:de:5c:d0:6f:33:a8:74:ee:aa:f4:f5:05:91:
64:3e:9a:fd:fe:33:2e:23:b3:ee:31:d5:d4:fe:61:
fd:b7:ae:6a:49:9d:c1:d9:95:ac:81:d7:b2:44:b3:
89:3d:92:40:bb:ee:79:84:5f:b5:9c:bd:7d:37:63:
a4:21:26:d8:6f:a8:02:cb:c1:e0:af:7b:73:8c:ac:
df:bc:4b:c2:1d:31:c5:7f:f9:de:b4:b0:6e:50:ec:
57:b6:ff:cf:50:89:8f:38:fc:93:03:63:91:ac:30:
ac:a4:50:fd:eb:94:20:02:76:ef:39:71:24:6a:62:
ae:ca:9a:cf:ab:de:3a:2d:60:fd:ea:98:b6:f4:bb:
11:cf:77:f0:8c:9c:ec:28:c0:ba:28:85:74:7c:10:
7d:8b:05:cc:2d:dd:c9:9c:87:01:30:f9:70:f4:61:
37:0b:11:f2:c9:6b:87:29:7a:7b:e2:25:87:f9:ed:
d3:d5:40:45:a2:5c:09:17:11:57:e0:8d:3f:68:c8:
ae:cf:4a:77:40:e2:a7:fd:56:06:13:83:19:2a:82:
06:d7:e3:30:98:ca:81:0c:8d:7a:8f:17:69:48:47:
92:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:56:9E:0F:ED:71:0A:41:9A:87:B3:29:0E:58:56:60:27:95:79:E0
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/fVaeD-1xCkGah7MpDlhWYCeVeeA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:4e:6b:32:03:c7:e1:e8:a1:b8:73:de:fa:be:96:52:84:7e:
d6:81:4c:64:de:e5:45:4b:44:28:9a:0a:6f:e5:45:d8:31:19:
21:e6:bd:30:00:06:b4:c3:ad:d2:41:3f:10:99:b6:c7:5d:82:
f4:cf:94:97:3b:2d:56:ea:ca:62:a6:c3:2e:0f:00:e8:c4:e0:
d0:99:7b:a8:86:a3:6c:c3:25:9e:54:a1:f1:cd:4e:92:81:2c:
a8:1e:47:93:c7:ac:ac:e1:17:dc:22:4c:7a:0b:35:20:26:67:
5b:75:e7:d3:bc:71:db:2b:72:32:28:07:0a:b4:e5:8e:8b:4d:
9e:6d:d2:e4:69:ee:d1:ac:10:63:83:82:69:7e:30:b8:f9:5c:
05:14:e1:b7:d6:a9:76:d6:9e:67:95:4e:26:9b:b0:39:ce:a6:
26:9d:8f:f1:c4:81:27:83:3b:f3:c6:66:b9:a5:a7:e8:7e:2b:
b5:ba:ff:57:46:22:9f:13:d0:93:53:88:3a:7d:ee:73:bd:2c:
27:d0:d1:a6:80:ef:79:51:5b:b0:e9:6f:a6:c4:c5:cd:1e:3d:
b4:b2:0d:ea:7c:a5:4f:46:f6:3c:79:3b:06:08:6d:1a:95:a8:
77:e2:90:67:0b:dd:14:85:23:b3:ba:0d:e0:9a:83:7a:59:d7:
c4:58:01:64
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE
MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDA3MTAx
MDA2MjVaFw0yNDEwMDQwNzMxNDJaMDMxMTAvBgNVBAMTKDdENTY5RTBGRUQ3MTBB
NDE5QTg3QjMyOTBFNTg1NjYwMjc5NTc5RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjUamNWKRanGVkcpu5XOUlmOVEI9iFK7YDVy7Q0sSK3lzQbzOo
dO6q9PUFkWQ+mv3+My4js+4x1dT+Yf23rmpJncHZlayB17JEs4k9kkC77nmEX7Wc
vX03Y6QhJthvqALLweCve3OMrN+8S8IdMcV/+d60sG5Q7Fe2/89QiY84/JMDY5Gs
MKykUP3rlCACdu85cSRqYq7Kms+r3jotYP3qmLb0uxHPd/CMnOwowLoohXR8EH2L
Bcwt3cmchwEw+XD0YTcLEfLJa4cpenviJYf57dPVQEWiXAkXEVfgjT9oyK7PSndA
4qf9VgYTgxkqggbX4zCYyoEMjXqPF2lIR5IVAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUfVaeD+1xCkGah7MpDlhWYCeVeeAwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9
HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL
RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL2ZWYWVELTF4Q2tH
YWg3TXBEbGhXWUNlVmVlQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPKoEgwDQYJKoZIhvcNAQELBQADggEBADtOazIDx+Hoobhz3vq+llKEftaB
TGTe5UVLRCiaCm/lRdgxGSHmvTAABrTDrdJBPxCZtsddgvTPlJc7LVbqymKmwy4P
AOjE4NCZe6iGo2zDJZ5UofHNTpKBLKgeR5PHrKzhF9wiTHoLNSAmZ1t159O8cdsr
cjIoBwq05Y6LTZ5t0uRp7tGsEGODgml+MLj5XAUU4bfWqXbWnmeVTiabsDnOpiad
j/HEgSeDO/PGZrmlp+h+K7W6/1dGIp8T0JNTiDp97nO9LCfQ0aaA73lRW7Dpb6bE
xc0ePbSyDep8pU9G9jx5OwYIbRqVqHfikGcL3RSFI7O6DeCag3pZ18RYAWQ=
Generated at Wed Sep 11 20:19:37 2024 by rpki-client on console-ams.rpki-client.org