Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa
File: yjtOhC3SKdtjiufc1tD046-snQE.roa (raw, json)
Hash identifier: ieS9HMOg3WKyP2Bs6d5+wNhbF+NsBamOA0UZuV83ewM=
Subject key identifier: CA:3B:4E:84:2D:D2:29:DB:63:8A:E7:DC:D6:D0:F4:E3:AF:AC:9D:01
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16C5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa
Signing time: Mon 26 Aug 2024 05:22:36 +0000
ROA not before: Mon 26 Aug 2024 05:22:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 113.196.152.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5829 (0x16c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CA3B4E842DD229DB638AE7DCD6D0F4E3AFAC9D01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a5:1c:e1:53:29:fb:b3:c7:42:8d:31:82:4b:
8b:07:06:26:c2:2c:37:fc:68:04:33:c8:f9:74:f6:
49:e8:fe:d0:a6:7d:a9:5c:9b:59:72:0b:0b:0a:1a:
54:d9:b3:0b:49:84:71:af:38:52:51:2c:4d:34:80:
6a:b6:2b:7e:a5:f3:c7:6a:50:aa:bf:39:08:1d:18:
44:76:b8:1b:64:41:20:cf:9c:ee:f1:b6:57:5c:06:
39:5e:12:9f:20:6c:23:e7:58:bf:69:38:8d:f8:ef:
00:e1:15:5b:33:83:5f:8c:1a:42:2c:30:40:6d:60:
d8:60:e3:6e:50:4b:28:3c:8f:f7:c7:1a:b6:fd:cb:
13:b5:e3:69:f7:e5:7d:fb:b2:42:5b:e9:29:fe:cf:
9a:a5:85:1e:fe:a6:38:13:d5:84:48:b5:ab:48:4f:
94:64:6d:49:41:8a:8a:87:3f:49:03:57:a2:8e:ad:
0c:bc:83:8c:2d:5b:4a:b9:e9:7d:ab:0e:c6:f7:83:
99:5e:de:ba:e2:92:b3:05:19:8c:43:93:43:c3:91:
0f:08:f1:29:c1:6d:08:a7:0d:dc:c3:59:83:f3:b6:
83:20:7e:6c:42:40:d0:57:23:15:83:93:8f:d7:26:
f3:7b:c9:8d:dc:89:8f:f4:e1:49:9f:fa:39:86:3d:
83:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:3B:4E:84:2D:D2:29:DB:63:8A:E7:DC:D6:D0:F4:E3:AF:AC:9D:01
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.152.0/21
Signature Algorithm: sha256WithRSAEncryption
16:3f:b0:11:73:dd:41:60:85:8e:20:46:80:c3:9a:ca:0c:26:
de:a2:cb:f7:32:d9:67:52:45:a9:3e:92:86:9f:60:1e:80:67:
d1:65:60:37:44:86:9e:ce:c0:1a:a9:39:4a:46:36:7c:1f:3e:
5c:38:ff:33:bf:76:a0:09:5d:30:3e:d4:48:9c:0a:c4:12:4b:
a0:1e:6a:4c:c2:dd:cf:e5:93:ff:3c:8f:ef:1d:d5:a2:9e:66:
77:29:36:56:a9:f2:28:54:02:87:2b:d1:31:f5:84:b1:37:e9:
ca:ff:a1:b9:e3:c6:17:87:6a:be:50:ac:21:68:06:42:75:67:
fb:e9:60:d9:d7:d1:9b:47:6a:d7:87:ed:f8:c2:85:e1:2c:12:
a3:03:4e:78:10:b2:da:94:e4:72:71:bf:f3:c8:55:53:b3:c6:
74:4c:3e:ca:ee:d5:f5:02:77:74:b6:75:00:00:c9:e6:a0:b4:
54:17:03:66:84:81:99:4f:af:5a:5a:5a:72:e6:5f:2e:aa:96:
23:20:84:49:21:8c:ec:7f:24:fd:34:4c:03:97:12:ac:8c:e0:
2e:33:00:8d:94:ab:19:0b:4d:bc:26:20:82:5a:b0:05:36:c0:
c3:0a:6f:2a:0c:d2:8a:96:a1:4d:51:2d:67:81:38:0d:b0:34:
72:8b:86:a0
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBM0I0RTg0MkREMjI5
REI2MzhBRTdEQ0Q2RDBGNEUzQUZBQzlEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1pRzhUyn7s8dCjTGCS4sHBibCLDf8aAQzyPl09kno/tCmfalc
m1lyCwsKGlTZswtJhHGvOFJRLE00gGq2K36l88dqUKq/OQgdGER2uBtkQSDPnO7x
tldcBjleEp8gbCPnWL9pOI347wDhFVszg1+MGkIsMEBtYNhg425QSyg8j/fHGrb9
yxO142n35X37skJb6Sn+z5qlhR7+pjgT1YRItatIT5RkbUlBioqHP0kDV6KOrQy8
g4wtW0q56X2rDsb3g5le3rrikrMFGYxDk0PDkQ8I8SnBbQinDdzDWYPztoMgfmxC
QNBXIxWDk4/XJvN7yY3ciY/04Umf+jmGPYNxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUyjtOhC3SKdtjiufc1tD046+snQEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveWp0T2hDM1NLZHRqaXVmYzF0RDA0
Ni1zblFFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN
BgkqhkiG9w0BAQsFAAOCAQEAFj+wEXPdQWCFjiBGgMOaygwm3qLL9zLZZ1JFqT6S
hp9gHoBn0WVgN0SGns7AGqk5SkY2fB8+XDj/M792oAldMD7USJwKxBJLoB5qTMLd
z+WT/zyP7x3Vop5mdyk2VqnyKFQChyvRMfWEsTfpyv+huePGF4dqvlCsIWgGQnVn
++lg2dfRm0dq14ft+MKF4SwSowNOeBCy2pTkcnG/88hVU7PGdEw+yu7V9QJ3dLZ1
AADJ5qC0VBcDZoSBmU+vWlpacuZfLqqWIyCESSGM7H8k/TRMA5cSrIzgLjMAjZSr
GQtNvCYgglqwBTbAwwpvKgzSipahTVEtZ4E4DbA0couGoA==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:42:29 2025 by rpki-client