Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/zo2PUHDcIYtzgr246s0WKMM5M0U.roa
File: zo2PUHDcIYtzgr246s0WKMM5M0U.roa (raw, json)
Hash identifier: R3CBAQWs2khJK8qpqTG8VTClsQ2JN0P3TmcbkICgibM=
Subject key identifier: CE:8D:8F:50:70:DC:21:8B:73:82:BD:B8:EA:CD:16:28:C3:39:33:45
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 0101
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/zo2PUHDcIYtzgr246s0WKMM5M0U.roa
Signing time: Tue 10 Dec 2024 15:57:46 +0000
ROA not before: Tue 10 Dec 2024 15:57:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150766
IP address blocks: 2401:5da0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257 (0x101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Dec 10 15:57:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CE8D8F5070DC218B7382BDB8EACD1628C3393345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b4:7b:a3:6b:7b:b4:47:33:2d:92:83:7d:b3:
36:c7:0e:95:6a:e4:79:57:ce:31:0b:eb:d8:1b:8e:
64:55:f1:d1:eb:88:d4:1f:cd:d2:31:43:77:9c:63:
f6:b2:8f:91:a2:cd:19:10:00:cc:1e:ac:63:11:40:
a3:e4:0b:75:c0:6a:a4:a1:ac:5a:4b:c4:b6:3d:99:
b9:e4:f8:db:1e:5e:5e:8b:b1:a7:47:91:06:7e:fd:
69:7e:08:ec:72:b2:50:4c:de:98:b7:f3:67:2f:79:
dd:56:cd:54:8a:a8:b8:db:82:df:76:2e:d4:cc:7d:
42:28:d5:c0:b9:e1:74:b1:99:88:33:65:c1:61:ce:
e7:1c:b2:4e:44:50:d2:c8:04:71:15:d7:d9:d0:02:
c2:fd:21:87:cd:fd:fb:a6:64:e7:17:73:14:58:43:
b8:30:a3:14:e8:e4:87:d2:4b:10:be:0a:a6:2a:60:
8f:8e:fb:bb:3f:18:9c:7e:e1:f7:3b:70:6a:b1:7b:
be:8b:87:a6:d1:f9:86:cd:61:99:40:e6:e2:4b:e6:
96:79:7d:24:d5:dc:d2:21:17:1e:97:99:13:28:51:
da:bc:0d:de:29:6e:b7:52:cd:50:8a:cc:1f:23:6f:
ae:92:b1:0d:03:d7:f3:68:e8:9e:e6:4d:75:ff:37:
ea:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:8D:8F:50:70:DC:21:8B:73:82:BD:B8:EA:CD:16:28:C3:39:33:45
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/zo2PUHDcIYtzgr246s0WKMM5M0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5da0::/32
Signature Algorithm: sha256WithRSAEncryption
8d:5e:1e:82:00:a7:56:7e:aa:d9:a9:5d:42:bf:5b:dc:27:3e:
bb:6c:63:3f:5c:6f:43:a9:00:4f:1c:0e:63:b9:f6:c1:65:3a:
fc:42:24:b4:25:be:dc:5f:c2:15:f2:3c:cc:e3:12:18:81:96:
c7:0f:47:a8:03:63:f7:c4:61:de:45:00:df:01:cd:75:f7:78:
15:48:67:31:db:3d:16:d4:f0:99:cb:e2:3a:da:46:46:39:14:
e0:48:da:10:4d:3e:90:e9:81:6c:0d:62:eb:54:61:d4:23:a2:
0c:8e:ea:b8:af:18:e4:0c:32:5e:4d:61:c3:d1:a3:46:dd:b1:
27:3e:10:fb:aa:6d:3d:54:05:8b:9a:2d:18:51:41:bf:5c:12:
5a:8b:3f:c4:ac:89:e3:f9:2b:c0:97:f5:3f:8e:6d:55:97:8b:
b0:bb:b0:c7:86:bd:31:66:ce:e5:b6:6c:ad:55:53:fc:37:d0:
0b:37:ef:41:59:53:6d:08:5f:4a:45:a5:88:9f:80:7d:a7:67:
42:d4:75:41:3a:1a:cc:16:18:b2:cf:b0:b0:2d:bb:ce:9d:cf:
cf:f4:bf:43:b6:54:d2:00:b6:e0:d7:4b:8e:2d:fd:ac:f9:54:
6f:1d:65:8f:dc:2b:e1:e0:fd:25:5b:0a:0d:7e:a3:d3:ac:45:
11:55:dd:97
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE
NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNDEyMTAx
NTU3NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFOEQ4RjUwNzBEQzIx
OEI3MzgyQkRCOEVBQ0QxNjI4QzMzOTMzNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4tHuja3u0RzMtkoN9szbHDpVq5HlXzjEL69gbjmRV8dHriNQf
zdIxQ3ecY/ayj5GizRkQAMwerGMRQKPkC3XAaqShrFpLxLY9mbnk+NseXl6LsadH
kQZ+/Wl+COxyslBM3pi382cved1WzVSKqLjbgt92LtTMfUIo1cC54XSxmYgzZcFh
zuccsk5EUNLIBHEV19nQAsL9IYfN/fumZOcXcxRYQ7gwoxTo5IfSSxC+CqYqYI+O
+7s/GJx+4fc7cGqxe76Lh6bR+YbNYZlA5uJL5pZ5fSTV3NIhFx6XmRMoUdq8Dd4p
brdSzVCKzB8jb66SsQ0D1/No6J7mTXX/N+qpAgMBAAGjggH1MIIB8TAdBgNVHQ4E
FgQUzo2PUHDcIYtzgr246s0WKMM5M0UwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5
goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ
R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL3pvMlBVSERjSVl0
emdyMjQ2czBXS01NNU0wVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC
MAcDBQAkAV2gMA0GCSqGSIb3DQEBCwUAA4IBAQCNXh6CAKdWfqrZqV1Cv1vcJz67
bGM/XG9DqQBPHA5jufbBZTr8QiS0Jb7cX8IV8jzM4xIYgZbHD0eoA2P3xGHeRQDf
Ac1193gVSGcx2z0W1PCZy+I62kZGORTgSNoQTT6Q6YFsDWLrVGHUI6IMjuq4rxjk
DDJeTWHD0aNG3bEnPhD7qm09VAWLmi0YUUG/XBJaiz/ErInj+SvAl/U/jm1Vl4uw
u7DHhr0xZs7ltmytVVP8N9ALN+9BWVNtCF9KRaWIn4B9p2dC1HVBOhrMFhiyz7Cw
LbvOnc/P9L9DtlTSALbg10uOLf2s+VRvHWWP3Cvh4P0lWwoNfqPTrEURVd2X
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:42:24 2025 by rpki-client