Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa
File: ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa (raw, json)
Hash identifier: +G8XfPqkOeCysqKsWUxJqS9WFkdEKyEDHr6OZDUBZ3Y=
Subject key identifier: 65:D4:DC:5B:AE:F5:4E:5F:FB:47:C6:73:97:13:A7:16:BA:FB:50:9C
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0C78
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa
Signing time: Mon 26 Aug 2024 05:11:22 +0000
ROA not before: Mon 26 Aug 2024 05:11:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24172
IP address blocks: 103.234.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:10:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Aug 26 05:11:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=65D4DC5BAEF54E5FFB47C6739713A716BAFB509C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5b:ca:39:33:7e:1d:b7:a6:5c:73:c3:ef:c7:
7a:4d:13:9a:ce:f5:c1:5f:4b:eb:81:03:c0:9a:10:
42:1f:7d:2b:03:f2:a6:ab:82:55:52:2f:08:44:68:
ab:84:10:49:e0:5e:8f:7d:2f:79:7f:9d:35:83:04:
4e:60:3e:34:37:e9:55:75:f7:ad:c2:53:6d:79:98:
11:b3:db:64:6d:4f:d2:53:96:02:0b:7e:63:ad:ca:
76:4a:f0:63:15:b6:86:da:01:60:aa:64:f5:9c:e0:
a7:2d:67:0c:36:dc:0b:e0:8f:f3:b2:51:6c:ce:08:
43:98:41:cc:35:49:25:0e:c8:74:f8:60:10:bd:c3:
6f:a5:f8:7f:20:2a:d9:9e:5c:14:09:6d:dd:2a:d4:
60:78:e4:e9:9c:5d:97:dd:fd:9c:31:12:92:4e:b5:
fc:35:1d:d7:a7:e6:0c:10:2f:47:8f:f8:ff:31:04:
93:7d:bc:0f:63:c8:39:7a:70:c8:2f:20:00:73:65:
29:89:2e:21:50:39:c1:bb:64:e9:f1:ff:b4:c8:cc:
f2:a9:d2:aa:6a:7c:43:74:ae:3f:ea:ee:34:2a:13:
7f:7c:6b:46:7a:b2:86:d0:09:4e:30:4f:e4:77:9b:
bb:d7:61:4a:bd:d7:00:99:bb:1c:4e:bd:af:68:14:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D4:DC:5B:AE:F5:4E:5F:FB:47:C6:73:97:13:A7:16:BA:FB:50:9C
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:66:b2:29:f9:9f:20:88:7c:93:31:fe:6c:e9:35:d6:ee:cc:
7d:d6:c5:95:b7:ea:c5:eb:a6:03:28:66:32:cb:f8:9c:b4:22:
1f:54:bc:f0:24:4b:ed:2d:33:3c:f4:38:4a:32:55:e1:c9:24:
51:e5:e3:59:4c:73:c7:65:a8:72:85:86:34:58:82:84:52:85:
0c:4c:1c:cc:7f:5b:8b:9f:ee:b6:76:94:a6:ce:6c:9a:85:23:
10:67:ed:2c:3e:de:4b:26:3d:65:a6:2d:f7:e7:49:cc:f1:f1:
21:3b:80:7c:5f:33:14:89:b7:a3:7c:5d:e2:be:b2:e5:06:5a:
f1:fd:6d:e2:55:67:d8:f6:65:64:9c:56:6e:d0:58:bf:04:00:
4d:bf:b9:2c:ba:d5:e1:a5:89:38:b5:c9:fe:65:a3:02:7d:30:
43:75:98:41:74:e1:c3:f1:0f:c7:d7:8f:8d:76:6c:c2:bd:a5:
32:50:69:46:f8:14:be:fb:f6:c3:5e:96:fd:a1:0c:ac:ec:cd:
0f:d3:27:f7:0c:3d:c4:54:22:d8:4c:5a:10:29:98:84:aa:03:
a3:5e:30:4a:50:2e:a4:03:9d:a2:81:5b:cb:7b:71:c4:be:f2:
ed:62:fc:42:48:55:1f:94:60:1a:12:ff:ee:f2:04:16:69:e5:
8a:88:c6:81
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1
NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw
NTExMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1RDREQzVCQUVGNTRF
NUZGQjQ3QzY3Mzk3MTNBNzE2QkFGQjUwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyW8o5M34dt6Zcc8Pvx3pNE5rO9cFfS+uBA8CaEEIffSsD8qar
glVSLwhEaKuEEEngXo99L3l/nTWDBE5gPjQ36VV1963CU215mBGz22RtT9JTlgIL
fmOtynZK8GMVtobaAWCqZPWc4KctZww23Avgj/OyUWzOCEOYQcw1SSUOyHT4YBC9
w2+l+H8gKtmeXBQJbd0q1GB45OmcXZfd/ZwxEpJOtfw1Hden5gwQL0eP+P8xBJN9
vA9jyDl6cMgvIABzZSmJLiFQOcG7ZOnx/7TIzPKp0qpqfEN0rj/q7jQqE398a0Z6
sobQCU4wT+R3m7vXYUq91wCZuxxOva9oFNeLAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUZdTcW671Tl/7R8ZzlxOnFrr7UJwwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU
LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t
Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vWmRUY1c2NzFU
bF83Ujhaemx4T25GcnI3VUp3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAGfq4DANBgkqhkiG9w0BAQsFAAOCAQEAsmayKfmfIIh8kzH+bOk11u7M
fdbFlbfqxeumAyhmMsv4nLQiH1S88CRL7S0zPPQ4SjJV4ckkUeXjWUxzx2WocoWG
NFiChFKFDEwczH9bi5/utnaUps5smoUjEGftLD7eSyY9ZaYt9+dJzPHxITuAfF8z
FIm3o3xd4r6y5QZa8f1t4lVn2PZlZJxWbtBYvwQATb+5LLrV4aWJOLXJ/mWjAn0w
Q3WYQXThw/EPx9ePjXZswr2lMlBpRvgUvvv2w16W/aEMrOzND9Mn9ww9xFQi2Exa
ECmYhKoDo14wSlAupAOdooFby3txxL7y7WL8QkhVH5RgGhL/7vIEFmnliojGgQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 16:09:34 2025 by rpki-client