Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa
File: Waulo8EnQkCU7W25sN7bEIaF3Ow.roa (raw, json)
Hash identifier: 0LsM06WUFUy/OTSJO5FnX0zgGOQ0FV+oUIlwuwe4gYg=
Subject key identifier: 59:AB:A5:A3:C1:27:42:40:94:ED:6D:B9:B0:DE:DB:10:86:85:DC:EC
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0CF0
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa
Signing time: Mon 26 Aug 2024 05:12:51 +0000
ROA not before: Mon 26 Aug 2024 05:12:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9244
IP address blocks: 61.56.72.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3312 (0xcf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Aug 26 05:12:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=59ABA5A3C127424094ED6DB9B0DEDB108685DCEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:ff:97:74:79:3c:85:ad:98:26:3e:30:48:
d6:a9:4a:08:ee:9b:32:bb:1a:25:90:04:58:08:84:
a6:85:67:ef:83:93:d4:e0:fe:e7:b6:22:d1:d9:eb:
97:0a:57:5a:61:58:17:db:a9:15:51:06:3f:f2:76:
2e:5a:38:1e:f4:fb:48:68:b7:2b:70:22:01:48:b1:
fb:0f:2a:8a:11:8c:98:c6:06:0f:76:3a:a8:70:06:
0a:81:5c:dc:7b:68:19:87:58:06:b5:40:a0:49:d6:
eb:bc:a3:ab:38:2b:99:14:b4:36:89:d3:74:80:9d:
c3:69:7c:c9:91:4a:eb:6d:b9:4e:97:fd:13:93:87:
68:9c:51:5f:06:46:20:b1:4d:20:f4:27:7c:3c:bd:
c9:54:54:2d:9c:6c:f8:95:9d:b9:50:e4:11:4c:9e:
6f:41:f1:d9:df:29:60:7c:a7:94:cf:ee:98:c6:0e:
23:b1:77:50:f3:39:6a:66:cb:dd:4b:a2:71:09:8a:
1b:c4:64:2d:4e:a0:1a:61:c4:13:5a:25:bc:90:75:
51:35:c8:bb:1d:f3:32:c1:a9:53:fe:8d:0d:31:f8:
4f:14:06:ad:80:78:34:e3:98:d3:8d:2c:5d:8c:5a:
80:99:f8:61:fd:c0:8e:27:ef:e1:71:72:b3:5a:2c:
02:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AB:A5:A3:C1:27:42:40:94:ED:6D:B9:B0:DE:DB:10:86:85:DC:EC
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.72.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:75:38:f1:92:58:72:68:13:1f:dd:83:db:e7:f8:49:24:40:
a3:e7:4e:3b:c5:e6:59:1c:5b:c1:26:ec:3a:cd:c9:89:5d:aa:
cc:eb:7f:1e:4f:48:a2:35:7c:74:48:97:f0:d5:45:1f:00:42:
c7:70:5f:f9:db:71:46:d2:88:47:c7:a3:36:d8:e5:18:77:80:
87:f0:7c:8c:f8:3e:9c:1a:18:49:9c:02:d4:09:2b:39:fc:a2:
da:1d:15:ef:c1:0c:ce:46:35:2c:80:ab:4f:05:02:26:2e:95:
53:85:3c:24:0f:bc:24:53:36:9d:6d:d7:7a:fb:2f:e3:b9:fe:
e6:a4:61:da:3d:f1:05:d9:17:74:b4:c4:5e:7d:dc:ef:19:41:
5b:e3:48:0a:c1:ea:e5:62:57:03:fc:2e:be:4f:74:57:a6:6a:
a5:ed:f7:88:20:03:80:ff:f3:8e:e7:aa:1f:39:1b:dd:00:21:
af:18:b0:ef:4e:66:90:bc:4a:c7:f5:d1:b4:86:68:60:9b:f0:
82:60:80:05:59:de:26:21:ec:ae:59:88:5b:08:42:13:61:18:
54:cd:7e:b8:91:3c:5d:9b:a5:9d:e5:30:f0:6f:d8:b0:38:eb:
37:41:39:5c:76:21:0c:89:de:6d:93:5c:0a:7c:69:0d:a0:be:
4c:07:97:b2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw
NTEyNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5QUJBNUEzQzEyNzQy
NDA5NEVENkRCOUIwREVEQjEwODY4NURDRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC58v+XdHk8ha2YJj4wSNapSgjumzK7GiWQBFgIhKaFZ++Dk9Tg
/ue2ItHZ65cKV1phWBfbqRVRBj/ydi5aOB70+0hotytwIgFIsfsPKooRjJjGBg92
OqhwBgqBXNx7aBmHWAa1QKBJ1uu8o6s4K5kUtDaJ03SAncNpfMmRSuttuU6X/ROT
h2icUV8GRiCxTSD0J3w8vclUVC2cbPiVnblQ5BFMnm9B8dnfKWB8p5TP7pjGDiOx
d1DzOWpmy91LonEJihvEZC1OoBphxBNaJbyQdVE1yLsd8zLBqVP+jQ0x+E8UBq2A
eDTjmNONLF2MWoCZ+GH9wI4n7+FxcrNaLAKBAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUWaulo8EnQkCU7W25sN7bEIaF3OwwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1dhdWxvOEVuUWtDVTdXMjVz
TjdiRUlhRjNPdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
OEgwDQYJKoZIhvcNAQELBQADggEBACt1OPGSWHJoEx/dg9vn+EkkQKPnTjvF5lkc
W8Em7DrNyYldqszrfx5PSKI1fHRIl/DVRR8AQsdwX/nbcUbSiEfHozbY5Rh3gIfw
fIz4PpwaGEmcAtQJKzn8otodFe/BDM5GNSyAq08FAiYulVOFPCQPvCRTNp1t13r7
L+O5/uakYdo98QXZF3S0xF593O8ZQVvjSArB6uViVwP8Lr5PdFemaqXt94ggA4D/
847nqh85G90AIa8YsO9OZpC8Ssf10bSGaGCb8IJggAVZ3iYh7K5ZiFsIQhNhGFTN
friRPF2bpZ3lMPBv2LA46zdBOVx2IQyJ3m2TXAp8aQ2gvkwHl7I=
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:32:01 2025 by rpki-client