Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/zYfTpZMq0uZYkmQaosh_8e8u_88.roa
File: zYfTpZMq0uZYkmQaosh_8e8u_88.roa (raw, json)
Hash identifier: eE4UJMR0G9OKKCOfkOBUY0T1NoC8WHSQ0v75Eftypls=
Subject key identifier: CD:87:D3:A5:93:2A:D2:E6:58:92:64:1A:A2:C8:7F:F1:EF:2E:FF:CF
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0DAB
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/zYfTpZMq0uZYkmQaosh_8e8u_88.roa
Signing time: Mon 07 Jul 2025 09:35:01 +0000
ROA not before: Mon 07 Jul 2025 09:35:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38136
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Jul 2025 16:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3499 (0xdab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Jul 7 09:35:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD87D3A5932AD2E65892641AA2C87FF1EF2EFFCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f5:a4:fa:5e:47:6e:77:df:4c:b6:0b:e0:04:
c8:f0:91:d3:e5:77:bd:07:11:b6:47:63:f0:d3:14:
a5:63:68:b3:0e:8c:75:76:0a:fc:3b:9d:9f:75:5a:
55:ca:db:d4:2c:79:44:f0:c8:2f:33:55:10:7e:40:
a3:eb:32:a3:a5:5b:e2:44:7e:74:8f:e8:17:14:0d:
d0:5a:64:3c:4d:62:02:b0:a2:c8:7f:03:9c:e8:da:
0b:50:94:15:b0:d9:e1:99:b2:05:ee:34:2f:bb:f3:
b1:88:a2:fb:0a:f0:35:82:48:96:11:f0:ab:91:3d:
7e:ed:cc:77:3d:f2:81:f3:c4:56:38:83:2c:91:d2:
c7:4d:c6:0a:a8:18:70:f4:de:f9:5c:2d:76:30:ef:
eb:25:37:c1:72:9f:35:fb:48:39:93:e7:bc:59:a8:
d7:8d:3e:67:09:49:a3:84:01:9b:5b:bf:93:e5:3d:
d0:f9:de:8a:9a:b5:1b:b5:de:38:e3:9c:d4:cb:34:
1a:e2:bd:24:f9:5e:5b:3e:60:63:71:b3:99:ac:93:
f1:8c:fa:b7:78:98:39:e4:ae:44:d6:96:26:0d:aa:
fe:0d:b7:20:35:18:57:4d:5c:4f:83:58:8a:f7:55:
dd:ed:ac:ae:38:16:b0:c0:a1:ad:f7:0a:d6:be:db:
81:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:87:D3:A5:93:2A:D2:E6:58:92:64:1A:A2:C8:7F:F1:EF:2E:FF:CF
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/zYfTpZMq0uZYkmQaosh_8e8u_88.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:17:29:24:20:3a:dd:a7:23:21:3e:d3:62:8f:f0:29:90:73:
64:08:d8:85:23:ae:13:6f:02:42:65:41:de:ad:0a:75:92:fe:
53:cf:01:fe:15:b2:15:27:5c:63:38:e3:d3:e4:45:54:ef:d7:
0c:46:9e:da:14:e6:37:a9:d7:b0:75:2e:5f:56:17:14:b8:0e:
20:ab:8f:3d:01:95:c6:11:d7:ad:fd:1c:b6:61:56:26:4f:ab:
40:bf:d0:6d:92:13:fc:69:d8:db:fe:eb:d6:b8:29:96:79:08:
1d:c0:58:b3:54:e4:21:5c:10:05:8d:99:32:5f:0d:40:28:80:
8d:c8:17:fc:2b:c6:f5:4e:ee:43:5b:7a:fc:8f:f5:3f:24:b1:
5b:6b:8c:ac:ac:4c:08:02:8b:46:6d:d6:eb:8f:e2:55:e4:ee:
49:92:8a:0f:b2:80:55:4a:fd:9f:1a:d9:c0:70:ed:a4:71:c9:
db:76:95:8f:9e:c9:d3:09:80:65:ed:0b:64:b8:36:b9:40:f8:
09:8a:9d:32:ac:08:d2:b7:ad:bb:9c:53:71:f8:da:cf:a1:47:
1a:d1:ef:50:c7:12:11:ef:d4:90:5f:bb:5a:4d:f0:3b:16:73:
37:37:8c:87:f5:29:a6:c2:ea:d6:93:a6:1d:e8:25:e8:c0:b0:
bd:39:c2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 23:40:37 2025 by rpki-client