Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/UMkvXq8AAQ4BYuFzRSeEdOEBIUQ.roa
File: UMkvXq8AAQ4BYuFzRSeEdOEBIUQ.roa (raw, json)
Hash identifier: hb8Zi87b5jTY19iNF5ydI/ziv4P8t3DQzWL9XB/maxU=
Subject key identifier: 50:C9:2F:5E:AF:00:01:0E:01:62:E1:73:45:27:84:74:E1:01:21:44
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0C4B
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/UMkvXq8AAQ4BYuFzRSeEdOEBIUQ.roa
Signing time: Mon 26 Aug 2024 05:34:37 +0000
ROA not before: Mon 26 Aug 2024 05:34:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 103.130.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 02:44:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3147 (0xc4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Aug 26 05:34:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=50C92F5EAF00010E0162E17345278474E1012144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c9:fd:23:36:b4:4e:b6:5e:28:ef:cf:99:76:
c0:ac:00:a1:1c:59:83:af:1d:61:1c:0c:7d:34:81:
80:e7:3c:0d:4d:a9:8e:49:7c:9a:ff:e7:b3:6c:20:
27:64:2b:3b:0e:cb:af:c9:5b:f9:fb:5a:ac:d9:d8:
4e:c8:36:1d:db:75:64:76:49:0f:1c:16:5f:7b:41:
6e:e6:62:86:79:82:0d:4c:a9:6a:19:fe:c8:da:58:
7f:8a:93:98:21:47:a6:18:3a:e1:5a:14:ac:bc:b5:
81:f0:d3:c8:ad:0c:d9:df:b5:94:56:27:84:ba:d3:
04:10:1c:44:a9:2b:8c:60:bd:f1:ae:92:8f:16:23:
82:61:a8:c4:1b:3d:2d:a0:13:50:bd:eb:b1:19:3d:
59:9b:89:33:de:e8:6f:d1:27:59:d3:8b:41:d4:9d:
54:b7:ed:c2:11:d0:b2:54:7e:a9:72:b7:41:42:2b:
24:d5:ef:f1:62:c0:1e:96:a4:1c:01:09:5d:97:8f:
27:7c:d1:f1:16:23:35:63:33:34:eb:6c:72:c3:35:
1e:a8:05:23:a8:e1:18:6a:79:63:f1:e9:3c:32:e1:
04:8b:5d:15:f8:c3:95:48:b8:6b:2b:d0:d3:57:87:
19:66:c8:99:e4:13:9e:59:a4:0d:9b:e1:51:f0:5e:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C9:2F:5E:AF:00:01:0E:01:62:E1:73:45:27:84:74:E1:01:21:44
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/UMkvXq8AAQ4BYuFzRSeEdOEBIUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.0.0/22
Signature Algorithm: sha256WithRSAEncryption
49:03:3e:98:02:df:a2:a6:17:4c:a9:e9:be:e4:0f:a7:63:53:
0e:4f:ed:87:0e:97:2b:39:cf:5a:f4:79:b3:ee:64:33:a0:e9:
6b:fc:b0:52:9d:c7:74:a2:f8:7c:0a:f9:53:cb:46:64:62:bb:
b8:13:78:d4:e8:f5:d4:be:0a:85:4d:a3:22:b9:23:f3:25:ed:
bc:43:94:50:3e:2b:94:04:6e:3a:e3:e3:7d:1c:92:3f:de:b3:
2a:53:7a:2f:53:99:ad:37:50:56:81:ab:0a:7c:b6:02:e2:3b:
38:1f:2a:25:77:30:9e:09:bc:b9:87:1c:33:db:92:85:58:6a:
13:34:6a:d6:54:9b:ec:8c:e3:72:12:c8:73:ce:5d:5e:d5:1b:
62:31:d1:85:4a:c7:1b:8b:97:5b:fd:f2:7b:bd:1f:5c:d9:63:
4c:c9:50:ab:02:3f:a2:0c:66:1a:32:f0:af:71:2d:88:57:92:
a4:9a:e4:c0:df:30:90:12:c0:53:03:2e:bb:0f:46:bf:4c:d1:
55:d3:e5:32:03:f8:49:40:03:d3:17:89:3d:6e:f5:1c:df:5a:
a9:a8:f0:87:6f:1c:2f:37:18:ff:99:48:1f:c7:81:34:3c:e4:
d3:64:0f:65:05:98:27:16:b3:8f:38:10:f7:8c:ed:d2:9a:d2:
d5:6c:d3:49
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw
QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNDA4MjYw
NTM0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwQzkyRjVFQUYwMDAx
MEUwMTYyRTE3MzQ1Mjc4NDc0RTEwMTIxNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDByf0jNrROtl4o78+ZdsCsAKEcWYOvHWEcDH00gYDnPA1NqY5J
fJr/57NsICdkKzsOy6/JW/n7WqzZ2E7INh3bdWR2SQ8cFl97QW7mYoZ5gg1MqWoZ
/sjaWH+Kk5ghR6YYOuFaFKy8tYHw08itDNnftZRWJ4S60wQQHESpK4xgvfGuko8W
I4JhqMQbPS2gE1C967EZPVmbiTPe6G/RJ1nTi0HUnVS37cIR0LJUfqlyt0FCKyTV
7/FiwB6WpBwBCV2Xjyd80fEWIzVjMzTrbHLDNR6oBSOo4RhqeWPx6Twy4QSLXRX4
w5VIuGsr0NNXhxlmyJnkE55ZpA2b4VHwXtsLAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUUMkvXq8AAQ4BYuFzRSeEdOEBIUQwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz
phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU
RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvVU1rdlhxOEFBUTRCWXVG
elJTZUVkT0VCSVVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AmeCADANBgkqhkiG9w0BAQsFAAOCAQEASQM+mALfoqYXTKnpvuQPp2NTDk/thw6X
KznPWvR5s+5kM6Dpa/ywUp3HdKL4fAr5U8tGZGK7uBN41Oj11L4KhU2jIrkj8yXt
vEOUUD4rlARuOuPjfRySP96zKlN6L1OZrTdQVoGrCny2AuI7OB8qJXcwngm8uYcc
M9uShVhqEzRq1lSb7IzjchLIc85dXtUbYjHRhUrHG4uXW/3ye70fXNljTMlQqwI/
ogxmGjLwr3EtiFeSpJrkwN8wkBLAUwMuuw9Gv0zRVdPlMgP4SUAD0xeJPW71HN9a
qajwh28cLzcY/5lIH8eBNDzk02QPZQWYJxazjzgQ94zt0prS1WzTSQ==
Generated at Fri Sep 27 03:59:56 2024 by rpki-client on console-fra.rpki-client.org