Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/sldh58fIJdjmT6FZHtszNbSCBIo.roa
File: sldh58fIJdjmT6FZHtszNbSCBIo.roa (raw, json)
Hash identifier: JaGr11nrOfQ1lJFl/16nHAHJD+Mgobl5S0CZ5v3LvBY=
Subject key identifier: B2:57:61:E7:C7:C8:25:D8:E6:4F:A1:59:1E:DB:33:35:B4:82:04:8A
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0DA9
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/sldh58fIJdjmT6FZHtszNbSCBIo.roa
Signing time: Mon 07 Jul 2025 09:34:49 +0000
ROA not before: Mon 07 Jul 2025 09:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38136
IP address blocks: 43.224.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Jul 2025 16:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3497 (0xda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Jul 7 09:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B25761E7C7C825D8E64FA1591EDB3335B482048A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:28:9e:d7:f6:9b:ee:d9:9d:56:1a:b7:61:
ac:b0:de:ff:30:ee:e0:99:cc:d7:99:47:ff:9f:62:
29:c1:e7:8e:b8:98:f9:42:7d:10:be:93:28:ac:af:
59:86:4e:da:d6:9a:74:bb:dc:c7:71:cb:12:c2:ae:
43:d8:82:4b:e0:73:aa:c5:76:41:ba:26:e6:5d:38:
48:9b:b5:68:2f:37:9b:60:54:c2:7d:41:1a:51:1d:
a0:80:f3:12:6f:2b:93:c4:e9:93:2b:4c:c5:a4:ae:
61:6a:10:a7:ff:17:fd:3d:44:c7:8a:91:a5:e8:7b:
16:f5:4e:28:05:4d:85:46:92:57:d3:5b:df:3f:63:
74:01:ab:80:16:8d:07:13:02:1b:bc:e2:4c:68:8f:
e0:7f:0c:ac:2b:74:87:23:ba:ea:02:9a:20:a3:dd:
af:dd:77:df:c9:7a:63:fd:5a:0a:4a:9c:ba:93:06:
95:78:6f:86:15:6d:1f:6f:f7:c6:a9:15:89:ef:63:
a9:45:2a:9e:ef:20:ae:9b:1c:db:cb:9f:24:fc:a6:
f4:a0:7a:34:bf:f5:ce:9b:6d:28:a0:d1:69:b2:84:
3a:2d:0f:8d:af:63:d5:51:45:78:5e:53:83:d5:28:
3d:fb:87:a6:84:84:af:6c:ec:8a:64:44:a9:ea:98:
b2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:57:61:E7:C7:C8:25:D8:E6:4F:A1:59:1E:DB:33:35:B4:82:04:8A
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/sldh58fIJdjmT6FZHtszNbSCBIo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.21.0/24
Signature Algorithm: sha256WithRSAEncryption
05:de:8b:ad:5b:f9:1a:e1:7d:15:51:61:2a:3a:f5:74:54:bd:
9e:54:6f:11:30:bb:35:48:83:cd:b8:b7:d4:40:0f:b3:fc:e9:
6e:90:12:57:04:9a:17:2b:d2:c6:80:6e:ad:76:0e:dc:a5:41:
54:43:4d:06:00:52:ee:3a:cd:fa:00:07:41:c7:06:7c:5a:ff:
b9:f0:d5:92:fd:a8:b0:3a:20:39:fc:73:8d:f7:2f:c8:35:38:
0e:e7:bb:7a:62:b5:7d:d9:d0:34:b0:89:cf:f1:40:8e:3a:cb:
7d:91:24:61:ca:b3:83:13:73:5e:15:71:62:e3:bb:af:59:b3:
75:df:7e:79:3a:f3:3d:a6:a9:9c:89:15:06:d6:65:70:d0:d6:
a5:a6:da:05:bc:de:dc:84:be:2d:f5:7c:04:e0:52:c9:b7:5a:
4f:81:f2:de:1f:ec:c6:1e:14:9e:50:a2:47:ac:39:4f:3d:78:
96:e0:25:48:61:8b:3a:83:70:93:16:86:2c:3f:f6:6f:68:12:
bd:b9:a4:94:2f:e7:f6:fb:68:a8:5a:d8:44:3a:77:45:ea:7f:
70:c3:04:65:a9:76:63:85:98:f2:6a:ff:89:11:06:c8:b9:92:
92:f0:de:e6:b1:a5:ea:92:02:95:36:38:ce:7b:f2:24:7a:bf:
b8:bd:00:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 06:11:26 2025 by rpki-client