Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa
File: KmTayuH13oeGwcbiE-XDcaxdwKw.roa (raw, json)
Hash identifier: HezlPeJ7qLE+eZ7oTay5QHyHavlp2rw3Q6oUiBr66ss=
Subject key identifier: 2A:64:DA:CA:E1:F5:DE:87:86:C1:C6:E2:13:E5:C3:71:AC:5D:C0:AC
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0EDC
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa
Signing time: Mon 26 Aug 2024 05:22:07 +0000
ROA not before: Mon 26 Aug 2024 05:22:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3804 (0xedc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Aug 26 05:22:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2A64DACAE1F5DE8786C1C6E213E5C371AC5DC0AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:63:42:80:c1:0f:28:f0:d3:d7:54:e9:87:
4d:a0:8c:ce:62:a6:63:1b:60:39:5d:be:2d:0b:07:
17:83:ad:98:66:c9:f0:bb:39:97:48:32:09:16:e9:
a1:51:fa:cc:ad:a1:6e:2f:f1:cc:d6:1b:81:da:6f:
0a:bd:c1:24:3d:d6:db:b6:06:66:7a:a7:38:2a:90:
f4:9d:26:82:37:53:bb:98:50:3b:02:79:f4:48:43:
da:1f:42:a7:cd:af:6d:5f:af:19:52:18:c7:e3:38:
54:f9:de:d2:e9:c2:2a:5c:68:07:3b:c2:0c:07:19:
0e:d1:1d:9b:21:57:db:70:0b:0a:16:bf:a7:37:af:
18:dc:a6:83:04:ce:63:99:ef:eb:93:5c:a7:9b:c0:
26:8f:8d:6e:b6:37:65:34:99:5e:7b:c7:1e:b6:06:
1c:8b:f6:fd:78:6f:93:80:9e:1c:e9:4f:42:ed:1f:
14:29:a6:61:be:df:f4:9f:8e:dc:f3:99:aa:60:35:
06:1d:60:eb:28:ad:4f:d2:06:6e:79:96:61:42:7a:
4e:40:10:9d:5b:6c:20:90:f8:12:d2:b3:12:28:b5:
fc:34:24:e2:14:53:9d:2f:f8:3a:da:53:c8:59:4c:
90:19:65:0a:0a:b5:e2:cf:4e:07:1f:62:57:54:7e:
88:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:64:DA:CA:E1:F5:DE:87:86:C1:C6:E2:13:E5:C3:71:AC:5D:C0:AC
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a9:2d:ed:13:3d:a6:1f:3a:e6:2c:17:2c:51:4d:bb:c8:d2:
2d:92:3d:92:99:60:d6:d1:17:2c:bf:9a:a2:96:e7:5e:fe:6b:
4b:bc:b3:84:f0:ec:d0:98:a5:27:0d:50:49:0b:58:f8:d9:fd:
f3:c1:29:c3:9d:b2:be:75:1b:e5:26:3e:40:df:8c:06:fe:fe:
71:8e:55:ec:25:36:a0:ce:da:9e:ba:d5:ed:fe:20:07:99:ff:
e7:60:f8:e3:9e:56:d9:af:05:09:29:41:e0:87:1f:f5:9a:f2:
ab:22:83:8b:bb:0f:aa:23:09:7e:39:ef:2b:a4:32:99:3d:f9:
70:8b:64:95:28:e7:e8:d2:ee:c9:29:33:4b:22:cf:60:b3:e9:
40:80:4f:05:03:a1:25:b7:ef:52:63:70:b7:4e:df:1e:74:dd:
ec:a2:fb:5d:95:b0:86:0c:30:f7:7d:be:82:de:fe:d7:57:af:
92:cf:7b:a9:f9:28:8e:93:32:3e:60:e7:7c:ef:86:96:c8:5e:
67:b7:d5:90:7d:0a:77:52:b7:a4:83:8a:a6:13:72:c1:30:ce:
c9:57:77:42:f9:3d:70:f5:1a:6a:45:27:66:59:87:21:a2:0d:
b8:52:90:9d:40:d9:5c:b3:00:e4:7d:2e:9f:e7:ff:2b:94:17:
b5:df:74:29
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDtwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw
NTIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNjREQUNBRTFGNURF
ODc4NkMxQzZFMjEzRTVDMzcxQUM1REMwQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvZGNCgMEPKPDT11Tph02gjM5ipmMbYDldvi0LBxeDrZhmyfC7
OZdIMgkW6aFR+sytoW4v8czWG4Habwq9wSQ91tu2BmZ6pzgqkPSdJoI3U7uYUDsC
efRIQ9ofQqfNr21frxlSGMfjOFT53tLpwipcaAc7wgwHGQ7RHZshV9twCwoWv6c3
rxjcpoMEzmOZ7+uTXKebwCaPjW62N2U0mV57xx62BhyL9v14b5OAnhzpT0LtHxQp
pmG+3/SfjtzzmapgNQYdYOsorU/SBm55lmFCek5AEJ1bbCCQ+BLSsxIotfw0JOIU
U50v+DraU8hZTJAZZQoKteLPTgcfYldUfojhAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUKmTayuH13oeGwcbiE+XDcaxdwKwwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS21UYXl1SDEzb2VHd2NiaUUtWERj
YXhkd0t3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN
BgkqhkiG9w0BAQsFAAOCAQEAaKkt7RM9ph865iwXLFFNu8jSLZI9kplg1tEXLL+a
opbnXv5rS7yzhPDs0JilJw1QSQtY+Nn988Epw52yvnUb5SY+QN+MBv7+cY5V7CU2
oM7anrrV7f4gB5n/52D4455W2a8FCSlB4Icf9ZryqyKDi7sPqiMJfjnvK6QymT35
cItklSjn6NLuySkzSyLPYLPpQIBPBQOhJbfvUmNwt07fHnTd7KL7XZWwhgww932+
gt7+11evks97qfkojpMyPmDnfO+GlsheZ7fVkH0Kd1K3pIOKphNywTDOyVd3Qvk9
cPUaakUnZlmHIaINuFKQnUDZXLMA5H0un+f/K5QXtd90KQ==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:22:05 2025 by rpki-client