Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/JietcOepEOL4g3G4msPCZ2NVSkw.roa
File: JietcOepEOL4g3G4msPCZ2NVSkw.roa (raw, json)
Hash identifier: qHesYiisD4f+4ueeYa72lakNKCX4wmvNamUKKpsCGPU=
Subject key identifier: 26:27:AD:70:E7:A9:10:E2:F8:83:71:B8:9A:C3:C2:67:63:55:4A:4C
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 0A79
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/JietcOepEOL4g3G4msPCZ2NVSkw.roa
Signing time: Thu 06 Mar 2025 02:12:20 +0000
ROA not before: Thu 06 Mar 2025 02:12:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 15263
IP address blocks: 2405:6440::/32 maxlen: 38
Validation: Failed, certificate revoked on Wed 12 Mar 2025 08:40:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2681 (0xa79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Mar 6 02:12:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2627AD70E7A910E2F88371B89AC3C26763554A4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:94:b0:5d:a0:27:ad:57:cd:44:af:32:15:1f:
dd:bc:bb:e8:02:25:0a:50:c1:b6:e7:34:a3:1f:c1:
75:6e:0b:44:fa:07:71:d1:48:c7:2f:f9:7d:ac:8c:
de:16:d3:35:55:aa:21:a6:a3:db:54:cf:81:76:25:
e6:ec:64:2a:3f:d1:1d:66:a0:52:87:1a:46:5b:35:
d7:a7:e9:34:7b:9f:8d:55:0a:0f:83:eb:80:b5:14:
0b:f6:6c:8a:cf:d2:b1:10:a6:a9:2c:30:20:d3:1f:
25:0f:00:30:c0:fc:f9:8f:1c:58:84:56:0a:57:37:
04:83:7e:4c:6f:85:60:7d:53:ff:db:f4:4b:1e:c9:
7f:7e:94:11:ea:b6:ea:e0:87:46:ca:e7:77:1f:ec:
25:36:15:8e:ed:82:b0:43:56:e7:70:2a:11:6a:bf:
0b:a2:14:f3:ee:b8:93:cf:85:f1:0b:53:ae:62:77:
67:f3:bd:61:a1:b8:c6:7d:1c:15:54:a6:d7:98:bf:
95:86:13:be:e6:bf:eb:15:a4:fa:c1:3d:c7:db:60:
60:8b:8e:37:d3:a9:db:f9:0d:8e:bb:00:12:2e:54:
0d:5e:ed:a1:1d:53:87:03:40:12:6d:7a:30:63:60:
36:02:d0:dc:74:c9:a4:cf:b3:ee:73:09:1a:f2:9d:
0e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:27:AD:70:E7:A9:10:E2:F8:83:71:B8:9A:C3:C2:67:63:55:4A:4C
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/JietcOepEOL4g3G4msPCZ2NVSkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:6440::/32
Signature Algorithm: sha256WithRSAEncryption
2d:38:b1:e3:10:31:f3:26:9b:89:95:68:ab:56:a4:17:7b:5e:
82:07:5e:80:f1:b3:75:b2:23:d6:d0:83:a8:c9:c3:44:12:7e:
78:19:67:8a:93:f8:06:87:ed:b7:12:a4:84:0a:38:2f:65:41:
9b:58:f4:ca:4c:7b:91:1e:5d:0c:3a:57:f4:7d:2b:b8:51:c7:
fb:6e:9e:e0:70:6f:e1:92:f2:b7:52:b0:b9:eb:9b:3c:52:93:
40:09:f7:ba:5f:b4:97:f2:01:9f:13:a9:68:a6:44:98:74:fc:
2b:23:98:78:f6:59:b9:b7:11:49:37:ca:89:3c:d2:b6:2c:cb:
32:2f:29:6b:9c:76:d1:66:dc:60:b7:61:27:61:65:f6:a3:60:
99:57:2b:c7:f1:b5:d2:72:6e:fa:4f:07:6e:27:16:a3:f2:a1:
58:a4:7f:8d:46:ef:84:82:aa:0d:bb:dd:01:0f:af:e6:cc:76:
0d:cf:ef:69:56:67:3f:31:5d:47:11:96:a8:5f:df:c9:04:7a:
4b:37:24:62:91:e0:4c:9f:eb:d4:da:bf:4e:31:15:73:21:86:
90:8f:1c:2a:ef:45:31:f4:41:c9:8b:18:ff:7a:1c:57:3d:7e:
a3:26:f6:9a:53:5a:da:91:8f:55:c2:e6:cd:e4:85:b5:74:31:
f6:9b:03:81
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz
RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNTAzMDYw
MjEyMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2MjdBRDcwRTdBOTEw
RTJGODgzNzFCODlBQzNDMjY3NjM1NTRBNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGlLBdoCetV81ErzIVH928u+gCJQpQwbbnNKMfwXVuC0T6B3HR
SMcv+X2sjN4W0zVVqiGmo9tUz4F2JebsZCo/0R1moFKHGkZbNden6TR7n41VCg+D
64C1FAv2bIrP0rEQpqksMCDTHyUPADDA/PmPHFiEVgpXNwSDfkxvhWB9U//b9Ese
yX9+lBHqturgh0bK53cf7CU2FY7tgrBDVudwKhFqvwuiFPPuuJPPhfELU65id2fz
vWGhuMZ9HBVUpteYv5WGE77mv+sVpPrBPcfbYGCLjjfTqdv5DY67ABIuVA1e7aEd
U4cDQBJtejBjYDYC0Nx0yaTPs+5zCRrynQ75AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUJietcOepEOL4g3G4msPCZ2NVSkwwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1
OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6
MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL0ppZXRjT2VwRU9MNGczRzRtc1BDWjJO
VlNrdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBWRAMA0G
CSqGSIb3DQEBCwUAA4IBAQAtOLHjEDHzJpuJlWirVqQXe16CB16A8bN1siPW0IOo
ycNEEn54GWeKk/gGh+23EqSECjgvZUGbWPTKTHuRHl0MOlf0fSu4Ucf7bp7gcG/h
kvK3UrC565s8UpNACfe6X7SX8gGfE6lopkSYdPwrI5h49lm5txFJN8qJPNK2LMsy
LylrnHbRZtxgt2EnYWX2o2CZVyvH8bXScm76TwduJxaj8qFYpH+NRu+EgqoNu90B
D6/mzHYNz+9pVmc/MV1HEZaoX9/JBHpLNyRikeBMn+vU2r9OMRVzIYaQjxwq70Ux
9EHJixj/ehxXPX6jJvaaU1rakY9VwubN5IW1dDH2mwOB
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:45:50 2025 by rpki-client