Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/AIu-J8ixCgvSwWmUsMcaZXwHM7o.roa
File: AIu-J8ixCgvSwWmUsMcaZXwHM7o.roa (raw, json)
Hash identifier: u0zpIhDd95RFdpn6SlOR5tt13kmrupxNDovu+Y8aFnQ=
Subject key identifier: 00:8B:BE:27:C8:B1:0A:0B:D2:C1:69:94:B0:C7:1A:65:7C:07:33:BA
Certificate issuer: /CN=09C34B8ACA620F628C7A1E6821440EEE680E4CD8
Certificate serial: 03
Authority key identifier: 09:C3:4B:8A:CA:62:0F:62:8C:7A:1E:68:21:44:0E:EE:68:0E:4C:D8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CcNLispiD2KMeh5oIUQO7mgOTNg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/AIu-J8ixCgvSwWmUsMcaZXwHM7o.roa
Signing time: Thu 19 Dec 2024 03:30:06 +0000
ROA not before: Thu 19 Dec 2024 03:30:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131683
IP address blocks: 103.161.90.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:31:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09C34B8ACA620F628C7A1E6821440EEE680E4CD8
Validity
Not Before: Dec 19 03:30:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=008BBE27C8B10A0BD2C16994B0C71A657C0733BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:3c:f4:1e:0e:9b:f5:9d:c9:48:55:89:11:
75:f0:8d:7e:bd:01:b7:2f:00:7f:d5:a3:42:1b:a1:
a7:49:68:dd:22:ba:f9:cd:0b:d5:fa:fb:b4:84:30:
93:c5:47:54:84:d4:1b:35:06:fd:4a:87:ce:9f:44:
3c:7d:04:2c:91:2e:09:23:8c:ea:8b:c2:61:66:4d:
83:ec:66:26:04:9c:d1:2f:13:43:c9:ed:c0:af:d9:
58:36:4a:2b:a4:d9:0b:01:ca:7a:1c:79:e2:bc:8c:
6c:81:d7:ef:d9:6b:2f:05:37:6e:5d:86:51:09:46:
09:28:3a:8d:a5:0b:8e:15:c0:ce:63:19:23:1d:1c:
bc:2a:86:cd:06:74:79:24:4e:0c:fc:8f:75:6f:71:
9d:ef:57:4a:76:a5:17:27:82:50:5c:31:0b:c4:08:
e1:c1:7c:a9:c1:72:a4:51:45:06:73:25:e9:3b:b9:
b7:7e:26:1f:5e:d2:b6:e3:28:db:34:be:70:5b:ce:
cc:39:f7:4b:1e:72:91:0f:b5:5c:cd:f3:b2:61:71:
ab:e6:7c:27:4e:b2:5d:05:90:1a:4a:1c:33:c7:1f:
83:a9:36:ee:c1:f1:d7:53:cb:63:e0:fe:02:33:bf:
31:1c:02:08:b1:a8:5f:51:98:37:5d:a1:b8:a1:75:
46:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8B:BE:27:C8:B1:0A:0B:D2:C1:69:94:B0:C7:1A:65:7C:07:33:BA
X509v3 Authority Key Identifier:
keyid:09:C3:4B:8A:CA:62:0F:62:8C:7A:1E:68:21:44:0E:EE:68:0E:4C:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/CcNLispiD2KMeh5oIUQO7mgOTNg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CcNLispiD2KMeh5oIUQO7mgOTNg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/AIu-J8ixCgvSwWmUsMcaZXwHM7o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.90.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:7a:9d:a5:d3:77:5c:a9:16:cf:b1:5e:70:6a:70:6d:89:55:
dd:50:ce:c7:5b:2e:6e:e4:b4:d4:82:da:5e:0c:dd:bf:9b:6c:
33:ff:31:ea:d7:77:b5:33:d9:57:30:20:1e:65:71:cd:f8:c0:
68:18:b7:6e:fb:dd:75:1e:e3:ca:c5:d9:e0:ea:18:a6:7f:02:
29:9a:3c:0a:95:bb:cc:65:12:51:b3:3d:19:65:02:f9:49:8b:
08:bc:a2:81:03:14:fa:7c:e1:91:a7:b0:3a:24:97:52:ab:7f:
5d:96:ba:22:06:25:ca:3a:e6:ae:fb:cd:91:df:f4:58:69:eb:
13:88:b8:40:08:21:26:8d:6d:95:73:51:47:ba:a5:57:17:b5:
c1:83:5e:32:04:87:1c:8a:26:9c:b5:43:48:b2:26:b1:68:4f:
bb:96:bc:9b:af:ac:ef:6f:a1:9f:89:8d:aa:cd:71:1d:65:95:
de:7f:55:a4:fa:34:db:e5:cc:21:7f:05:60:20:62:04:09:af:
91:d1:c0:3a:97:7f:c4:17:af:a5:26:1c:1a:0f:19:c1:c6:11:
ee:8f:35:da:bc:b5:57:5c:07:ff:0a:a7:08:be:e7:96:cd:2c:
5d:e1:27:4f:c3:9b:be:bf:8b:fd:65:ef:50:cb:e9:63:9f:47:
a2:1d:21:5f
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwOUMz
NEI4QUNBNjIwRjYyOEM3QTFFNjgyMTQ0MEVFRTY4MEU0Q0Q4MB4XDTI0MTIxOTAz
MzAwNloXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoMDA4QkJFMjdDOEIxMEEw
QkQyQzE2OTk0QjBDNzFBNjU3QzA3MzNCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKf5PPQeDpv1nclIVYkRdfCNfr0Bty8Af9WjQhuhp0lo3SK6+c0L
1fr7tIQwk8VHVITUGzUG/UqHzp9EPH0ELJEuCSOM6ovCYWZNg+xmJgSc0S8TQ8nt
wK/ZWDZKK6TZCwHKehx54ryMbIHX79lrLwU3bl2GUQlGCSg6jaULjhXAzmMZIx0c
vCqGzQZ0eSRODPyPdW9xne9XSnalFyeCUFwxC8QI4cF8qcFypFFFBnMl6Tu5t34m
H17StuMo2zS+cFvOzDn3Sx5ykQ+1XM3zsmFxq+Z8J06yXQWQGkocM8cfg6k27sHx
11PLY+D+AjO/MRwCCLGoX1GYN12huKF1RnsCAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBQAi74nyLEKC9LBaZSwxxplfAczujAfBgNVHSMEGDAWgBQJw0uKymIPYox6Hmgh
RA7uaA5M2DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTk5PTFVY
L0NjTkxpc3BpRDJLTWVoNW9JVVFPN21nT1ROZy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ2NOTGlzcGlEMktNZWg1b0lVUU83bWdPVE5nLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5OT0xVWC9BSXUtSjhpeENndlN3V21V
c01jYVpYd0hNN28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Z6FaMA0GCSqGSIb3DQEBCwUAA4IBAQC9ep2l03dcqRbPsV5wanBtiVXdUM7HWy5u
5LTUgtpeDN2/m2wz/zHq13e1M9lXMCAeZXHN+MBoGLdu+911HuPKxdng6himfwIp
mjwKlbvMZRJRsz0ZZQL5SYsIvKKBAxT6fOGRp7A6JJdSq39dlroiBiXKOuau+82R
3/RYaesTiLhACCEmjW2Vc1FHuqVXF7XBg14yBIcciiactUNIsiaxaE+7lrybr6zv
b6GfiY2qzXEdZZXef1Wk+jTb5cwhfwVgIGIECa+R0cA6l3/EF6+lJhwaDxnBxhHu
jzXavLVXXAf/CqcIvueWzSxd4SdPw5u+v4v9Ze9Qy+ljn0eiHSFf
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:28:21 2025 by rpki-client