Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa
File: TaGLg-Usi35-26JPiCGFnN7iP-o.roa (raw, json)
Hash identifier: rhlBiXgZ5F52iJz5GfND09FyFJXziK8tNZFtaNOmtGM=
Subject key identifier: 4D:A1:8B:83:E5:2C:8B:7E:7E:DB:A2:4F:88:21:85:9C:DE:E2:3F:EA
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0C90
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa
Signing time: Mon 26 Aug 2024 05:17:12 +0000
ROA not before: Mon 26 Aug 2024 05:17:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 223.200.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3216 (0xc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Aug 26 05:17:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4DA18B83E52C8B7E7EDBA24F8821859CDEE23FEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:0f:e2:2d:21:ca:a7:38:43:23:29:76:60:
75:7e:a4:df:c9:cd:93:9c:7f:b4:3d:b4:4c:5c:96:
0b:ce:3a:7a:b2:d8:58:14:6c:d9:f8:fb:e0:d8:22:
9d:27:bb:87:69:51:1f:78:ef:35:8e:99:4c:7e:0e:
6e:ed:f5:54:a7:29:2b:93:a7:f2:f3:54:1d:1a:33:
3e:ea:a7:e8:c2:b8:0f:75:3c:20:f0:38:91:c8:d4:
28:fc:1a:6b:eb:b2:93:aa:a0:fc:70:c6:a1:07:a3:
fd:3a:aa:69:29:82:d8:ab:17:0f:c2:10:80:23:62:
63:10:69:4c:33:09:3e:24:2f:f4:6c:3d:67:21:11:
a4:5b:f1:ff:a1:45:a5:90:9a:21:50:7d:c7:c2:56:
7b:2d:67:bd:03:9c:aa:ee:31:7e:d6:0a:d8:60:f6:
62:1d:1a:26:f5:70:51:12:ce:df:5d:04:c9:a7:24:
de:27:f8:51:61:ca:e4:b5:c7:41:15:0b:b0:a5:40:
f5:b8:d0:72:76:c3:cb:cf:71:44:85:c6:e0:c2:b6:
e9:c3:f3:9d:f3:00:e7:7b:42:66:a9:89:ac:c1:57:
4b:10:69:db:38:21:89:dc:e4:cf:07:04:96:f7:c2:
b0:db:6c:a2:99:23:0b:d7:a1:86:d8:17:fc:e8:37:
5e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A1:8B:83:E5:2C:8B:7E:7E:DB:A2:4F:88:21:85:9C:DE:E2:3F:EA
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6a:c5:0f:99:71:1f:a1:f6:27:03:a3:32:4c:b4:de:8b:8e:a1:
b0:a9:d8:6a:b8:cb:82:33:23:a2:28:13:ad:2d:91:b1:4f:1c:
c4:94:ad:2b:f1:9e:e5:08:37:f3:dd:5f:23:0a:0a:c6:0b:f6:
c5:44:77:73:ca:4c:c3:3a:74:2f:25:c1:ca:84:04:92:e9:66:
5c:9e:3b:5d:1b:9f:bb:dd:21:42:55:93:51:24:18:ae:20:64:
a3:05:7f:27:5e:4e:bb:5a:7c:52:8f:11:3f:ab:3f:9e:17:f2:
39:fe:61:df:08:a5:8d:43:68:a3:13:1e:7a:21:da:ea:c8:c2:
16:b0:20:0d:a5:e7:ac:54:6e:c9:24:09:37:58:04:77:d8:08:
77:2b:63:c8:c5:4d:88:1e:c2:aa:13:6b:5f:ce:19:d5:6a:b2:
95:3b:fd:f1:4a:41:b4:1b:07:4f:6e:ff:ee:c7:58:bb:18:84:
4f:88:74:e1:3b:61:73:5e:0b:83:d8:7b:f0:2f:d2:fe:63:95:
b6:99:7c:85:c5:e9:69:37:2c:97:d7:f8:c6:f3:b2:ca:41:a3:
2b:5d:b6:d3:ac:03:5a:0c:4d:5d:40:dd:7d:60:2c:33:1a:a2:
4d:af:8b:47:43:34:cb:7c:4f:59:dc:68:b0:24:70:c1:29:7d:
af:97:c7:09
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw
NTE3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREQTE4QjgzRTUyQzhC
N0U3RURCQTI0Rjg4MjE4NTlDREVFMjNGRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUkA/iLSHKpzhDIyl2YHV+pN/JzZOcf7Q9tExclgvOOnqy2FgU
bNn4++DYIp0nu4dpUR947zWOmUx+Dm7t9VSnKSuTp/LzVB0aMz7qp+jCuA91PCDw
OJHI1Cj8GmvrspOqoPxwxqEHo/06qmkpgtirFw/CEIAjYmMQaUwzCT4kL/RsPWch
EaRb8f+hRaWQmiFQfcfCVnstZ70DnKruMX7WCthg9mIdGib1cFESzt9dBMmnJN4n
+FFhyuS1x0EVC7ClQPW40HJ2w8vPcUSFxuDCtunD853zAOd7QmapiazBV0sQads4
IYnc5M8HBJb3wrDbbKKZIwvXoYbYF/zoN17nAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUTaGLg+Usi35+26JPiCGFnN7iP+owHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1RhR0xnLVVzaTM1LTI2SlBpQ0dGbk43
aVAtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfyDANBgkq
hkiG9w0BAQsFAAOCAQEAasUPmXEfofYnA6MyTLTei46hsKnYarjLgjMjoigTrS2R
sU8cxJStK/Ge5Qg3891fIwoKxgv2xUR3c8pMwzp0LyXByoQEkulmXJ47XRufu90h
QlWTUSQYriBkowV/J15Ou1p8Uo8RP6s/nhfyOf5h3wiljUNooxMeeiHa6sjCFrAg
DaXnrFRuySQJN1gEd9gIdytjyMVNiB7CqhNrX84Z1WqylTv98UpBtBsHT27/7sdY
uxiET4h04Tthc14Lg9h78C/S/mOVtpl8hcXpaTcsl9f4xvOyykGjK12206wDWgxN
XUDdfWAsMxqiTa+LR0M0y3xPWdxosCRwwSl9r5fHCQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:13:20 2025 by rpki-client