Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa
File: UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa (raw, json)
Hash identifier: FpHZLjXFhsN13RfE+FHMtQlx3AXAPbdetq3M2/a1vHo=
Subject key identifier: 52:65:3B:FC:6C:E3:61:7D:8C:FF:4B:4F:07:6A:75:2C:45:AE:85:92
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 168A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa
Signing time: Mon 26 Aug 2024 05:22:18 +0000
ROA not before: Mon 26 Aug 2024 05:22:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131597
IP address blocks: 106.105.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5770 (0x168a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=52653BFC6CE3617D8CFF4B4F076A752C45AE8592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:39:a6:95:83:01:87:3f:f9:f7:91:2a:67:de:
73:db:4a:92:39:02:de:e2:08:6b:a3:01:f1:fd:5a:
39:c4:ec:d8:3e:3b:c3:58:a6:ba:1d:79:1e:2f:7d:
a5:be:36:09:be:e0:b4:83:bb:a0:06:25:34:e2:ef:
d6:0f:fc:76:36:3e:2d:a9:a0:98:4c:b7:56:1a:0f:
05:ee:3e:dc:cb:71:76:52:74:6c:03:8b:89:24:a4:
e4:c4:64:70:a3:a9:d2:8f:8c:02:18:57:67:d4:d1:
f9:0d:e3:6c:9c:00:1c:1d:92:75:6e:72:30:a1:7b:
bf:50:56:d1:15:36:64:ea:08:32:27:2b:5a:ac:5a:
ab:d2:ac:dd:11:5a:b7:45:39:e6:84:dc:99:41:a6:
a3:f6:7e:b3:b1:7b:e0:8a:58:a7:bc:b9:17:c1:cd:
70:dc:7f:01:7c:c1:cb:1f:0c:3f:4b:4f:07:72:1c:
48:b5:75:8d:75:d8:28:ad:6a:a0:bd:8f:b8:52:98:
dd:c7:2e:36:80:26:aa:46:fa:0e:51:7e:5c:1a:c9:
38:3e:d9:0a:33:f5:8b:39:7c:e5:56:29:80:1b:dc:
95:07:7f:32:c6:d1:50:cd:60:19:30:ae:42:bc:bd:
ac:91:6a:fd:4c:3b:05:93:20:9e:e4:29:db:98:32:
64:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:65:3B:FC:6C:E3:61:7D:8C:FF:4B:4F:07:6A:75:2C:45:AE:85:92
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.232.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:a1:c3:39:f5:4a:45:9d:12:f7:eb:3b:6e:6d:25:aa:14:d4:
b5:7c:60:6d:b5:5c:5e:3d:b7:f6:ae:c4:1b:12:06:40:32:97:
9c:f8:f2:4d:86:a9:8c:d6:a7:d1:40:37:be:44:3a:a8:3b:17:
84:c9:a2:cb:3e:ee:f6:39:4a:b7:19:bf:de:03:db:b6:62:40:
67:af:9a:b7:ce:36:cf:37:18:0f:52:40:03:11:b6:dd:17:97:
53:07:9d:6a:dd:4c:06:83:af:6d:73:ea:a4:07:f0:cf:1a:3a:
58:ac:77:41:95:b6:9c:61:24:f2:da:bf:8f:86:91:be:4c:8b:
bc:9b:d4:66:84:3e:6c:6b:b4:7b:12:74:0a:db:e6:8d:45:24:
e4:59:ef:05:95:96:3b:de:ee:45:80:65:d2:57:59:ba:72:ad:
07:56:79:93:f1:04:fb:17:40:8a:81:5b:38:5f:a2:24:c5:90:
26:09:26:c0:3a:03:d5:7b:7a:eb:2c:41:c1:57:6d:e1:51:51:
e7:e2:60:c1:77:9e:32:2b:51:6a:13:da:e4:c2:3e:8b:f3:8d:
4d:af:6f:04:c5:90:70:51:08:6d:39:3c:8c:e2:b0:2d:1d:36:
ab:65:e1:dc:f0:9f:70:1a:8a:85:2b:67:a0:87:83:0e:90:65:
a7:38:b1:a3
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyNjUzQkZDNkNFMzYx
N0Q4Q0ZGNEI0RjA3NkE3NTJDNDVBRTg1OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDOaaVgwGHP/n3kSpn3nPbSpI5At7iCGujAfH9WjnE7Ng+O8NY
prodeR4vfaW+Ngm+4LSDu6AGJTTi79YP/HY2Pi2poJhMt1YaDwXuPtzLcXZSdGwD
i4kkpOTEZHCjqdKPjAIYV2fU0fkN42ycABwdknVucjChe79QVtEVNmTqCDInK1qs
WqvSrN0RWrdFOeaE3JlBpqP2frOxe+CKWKe8uRfBzXDcfwF8wcsfDD9LTwdyHEi1
dY112CitaqC9j7hSmN3HLjaAJqpG+g5RflwayTg+2Qoz9Ys5fOVWKYAb3JUHfzLG
0VDNYBkwrkK8vayRav1MOwWTIJ7kKduYMmTJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUUmU7/GzjYX2M/0tPB2p1LEWuhZIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVW1VN19HempZWDJNXzB0UEIycDFM
RVd1aFpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp6DAN
BgkqhkiG9w0BAQsFAAOCAQEAnKHDOfVKRZ0S9+s7bm0lqhTUtXxgbbVcXj239q7E
GxIGQDKXnPjyTYapjNan0UA3vkQ6qDsXhMmiyz7u9jlKtxm/3gPbtmJAZ6+at842
zzcYD1JAAxG23ReXUwedat1MBoOvbXPqpAfwzxo6WKx3QZW2nGEk8tq/j4aRvkyL
vJvUZoQ+bGu0exJ0CtvmjUUk5FnvBZWWO97uRYBl0ldZunKtB1Z5k/EE+xdAioFb
OF+iJMWQJgkmwDoD1Xt66yxBwVdt4VFR5+JgwXeeMitRahPa5MI+i/ONTa9vBMWQ
cFEIbTk8jOKwLR02q2Xh3PCfcBqKhStnoIeDDpBlpzixow==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:33:32 2025 by rpki-client