Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/qPNGW11yDO3FCegEJGMCiCTVwUA.roa
File: qPNGW11yDO3FCegEJGMCiCTVwUA.roa (raw, json)
Hash identifier: 6v0bz70FRVnXb+J1Ragq4088a6yZ6A6p+dnKvWAMG34=
Subject key identifier: A8:F3:46:5B:5D:72:0C:ED:C5:09:E8:04:24:63:02:88:24:D5:C1:40
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B57
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/qPNGW11yDO3FCegEJGMCiCTVwUA.roa
Signing time: Fri 01 Sep 2023 10:24:06 +0000
ROA not before: Fri 01 Sep 2023 10:24:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.1.220.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2903 (0xb57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 1 10:24:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A8F3465B5D720CEDC509E8042463028824D5C140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5d:a5:51:c6:8f:67:59:ec:d8:ee:68:d2:c7:
34:49:13:80:80:80:4d:27:87:da:32:0c:2a:fe:f3:
23:63:43:e1:c3:4d:2d:03:71:6b:ef:42:a1:71:2c:
83:0a:3b:40:16:13:85:1f:1f:75:5a:d7:ed:c4:42:
09:e2:cc:4d:6c:9a:9f:26:02:55:3d:e5:e6:a5:65:
e8:7a:f6:14:41:eb:c6:c4:68:9d:b5:db:e5:24:fd:
2c:e2:3a:ee:b0:e7:3c:89:84:7d:53:01:56:a1:d4:
0d:75:c9:44:34:a1:93:c2:41:c9:52:c8:17:e7:5d:
5a:5a:30:aa:84:ae:83:7e:e1:6e:04:f9:4a:d8:60:
ba:e5:a7:77:81:8f:7b:c0:74:b2:9b:45:6f:a2:8f:
78:ad:b7:0c:7e:de:59:7c:0b:29:59:45:d9:a4:5e:
31:54:3e:a1:14:b3:63:24:0e:7f:ab:54:b8:e8:4a:
be:85:63:80:6c:3a:1e:d6:c1:9e:e5:f3:59:17:bb:
8b:7e:81:1e:01:4d:77:12:9d:72:2c:38:d3:e0:01:
f2:0b:43:d5:a8:c0:10:1f:53:e9:ed:cc:7d:a3:d0:
14:5d:5a:04:03:12:a4:7e:70:87:ca:7b:ed:7b:cc:
39:0c:be:a7:19:94:bc:45:9c:cd:e1:9c:df:9b:54:
13:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F3:46:5B:5D:72:0C:ED:C5:09:E8:04:24:63:02:88:24:D5:C1:40
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/qPNGW11yDO3FCegEJGMCiCTVwUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.220.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:14:e9:ae:2b:99:93:a4:04:27:7a:8e:e8:1a:98:51:9d:e6:
33:b0:88:ea:f5:fe:d8:70:19:82:db:e8:86:32:c1:db:18:a5:
b4:00:57:44:f0:12:7b:e0:6b:53:67:d3:fb:c9:6c:f6:91:26:
29:30:ce:76:4b:26:b1:00:6f:d1:f6:fb:07:58:b3:2a:34:e9:
d4:40:72:36:dc:55:0f:de:06:0f:2b:95:43:2e:74:8f:92:19:
67:30:8f:9f:ca:a0:e9:01:0b:f4:ef:99:40:51:7f:29:80:fc:
3a:a0:11:39:f2:0d:89:82:7e:b1:b7:9a:39:4c:4d:fb:5d:62:
33:04:f4:95:ac:47:93:14:f2:5b:fa:32:e2:da:18:bf:c0:5d:
4a:1d:b3:6e:84:24:79:50:e6:7a:90:23:56:e4:be:df:d8:f8:
3a:b0:a9:c3:6f:f5:71:b6:4e:8d:49:fa:2e:f9:c6:a8:31:59:
27:a1:e8:5a:2d:4a:9e:63:82:9a:0b:3c:3d:f6:8d:1b:3b:d7:
d7:6b:55:7b:4a:69:e2:84:dc:33:8c:a5:63:e6:18:ac:d6:9d:
8d:f3:76:32:48:44:15:9d:27:c3:f5:f0:f8:eb:27:cd:49:5f:
5b:09:fa:88:0d:61:48:c5:b6:29:78:94:41:c7:b8:f1:73:e9:
bf:30:ad:a2
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yMzA5MDEx
MDI0MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE4RjM0NjVCNUQ3MjBD
RURDNTA5RTgwNDI0NjMwMjg4MjRENUMxNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKXaVRxo9nWezY7mjSxzRJE4CAgE0nh9oyDCr+8yNjQ+HDTS0D
cWvvQqFxLIMKO0AWE4UfH3Va1+3EQgnizE1smp8mAlU95ealZeh69hRB68bEaJ21
2+Uk/SziOu6w5zyJhH1TAVah1A11yUQ0oZPCQclSyBfnXVpaMKqEroN+4W4E+UrY
YLrlp3eBj3vAdLKbRW+ij3ittwx+3ll8CylZRdmkXjFUPqEUs2MkDn+rVLjoSr6F
Y4BsOh7WwZ7l81kXu4t+gR4BTXcSnXIsONPgAfILQ9WowBAfU+ntzH2j0BRdWgQD
EqR+cIfKe+17zDkMvqcZlLxFnM3hnN+bVBMfAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUqPNGW11yDO3FCegEJGMCiCTVwUAwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9xUE5HVzExeURPM0ZD
ZWdFSkdNQ2lDVFZ3VUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZwHcMA0GCSqGSIb3DQEBCwUAA4IBAQAbFOmuK5mTpAQneo7oGphRneYzsIjq
9f7YcBmC2+iGMsHbGKW0AFdE8BJ74GtTZ9P7yWz2kSYpMM52SyaxAG/R9vsHWLMq
NOnUQHI23FUP3gYPK5VDLnSPkhlnMI+fyqDpAQv075lAUX8pgPw6oBE58g2Jgn6x
t5o5TE37XWIzBPSVrEeTFPJb+jLi2hi/wF1KHbNuhCR5UOZ6kCNW5L7f2Pg6sKnD
b/Vxtk6NSfou+caoMVknoehaLUqeY4KaCzw99o0bO9fXa1V7SmnihNwzjKVj5his
1p2N83YySEQVnSfD9fD46yfNSV9bCfqIDWFIxbYpeJRBx7jxc+m/MK2i
-----END CERTIFICATE-----
Generated at Mon Oct 16 04:36:22 2023 by rpki-client on console-fra.rpki-client.org