Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/cW9VXy-5Wmg0VT9I5ajvx3UFFQc.roa
File: cW9VXy-5Wmg0VT9I5ajvx3UFFQc.roa (raw, json)
Hash identifier: P3QGRUTyvzwZ4wys3LR4y4vAKD04WpMP5WEf+yU79yY=
Subject key identifier: 71:6F:55:5F:2F:B9:5A:68:34:55:3F:48:E5:A8:EF:C7:75:05:15:07
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 026D
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/cW9VXy-5Wmg0VT9I5ajvx3UFFQc.roa
Signing time: Tue 08 Jul 2025 00:04:20 +0000
ROA not before: Tue 08 Jul 2025 00:04:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 211.76.186.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Jul 2025 00:41:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 621 (0x26d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Jul 8 00:04:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=716F555F2FB95A6834553F48E5A8EFC775051507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:06:0d:d2:09:d8:b7:9c:86:00:83:42:87:be:
4e:f4:6f:59:ff:ea:84:ae:ee:b7:8c:a4:87:e3:30:
d3:e7:4b:8f:cd:43:7c:f6:c7:95:e6:41:03:44:88:
69:8e:95:a8:31:83:64:ac:eb:7f:2c:fc:93:64:f9:
ce:2f:e7:8a:e1:67:67:5d:25:a1:e2:2a:ef:21:f4:
57:3f:e7:0c:c4:f5:84:71:3f:08:c0:02:cd:49:71:
f4:bd:45:d6:ce:30:59:92:e8:2a:43:27:5c:d5:58:
17:db:7c:28:dc:a1:0d:ee:d9:5d:c5:d3:58:60:85:
2f:d8:db:56:89:94:ee:59:97:f9:9b:df:3a:d6:b0:
f9:64:c7:f4:10:c3:48:53:18:56:9b:0a:27:84:48:
96:38:d1:d0:e8:de:1b:f1:62:11:4b:b2:6a:66:19:
f7:a2:6a:f3:03:54:9c:5b:bb:b6:31:d0:8d:7e:26:
f9:b9:80:06:8b:34:c6:80:36:c3:f9:56:cd:a7:1e:
ee:95:77:39:b1:91:b2:d1:ad:19:42:47:93:75:ab:
9e:ad:76:01:e5:a4:c2:18:e6:e5:a1:2b:90:fd:c2:
ba:b0:dc:6e:69:86:94:33:4b:e3:49:9a:07:18:ee:
52:c7:52:8d:b6:49:43:73:ea:40:0f:c9:33:ec:0a:
57:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6F:55:5F:2F:B9:5A:68:34:55:3F:48:E5:A8:EF:C7:75:05:15:07
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/cW9VXy-5Wmg0VT9I5ajvx3UFFQc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.186.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:eb:77:7b:c3:8d:4a:5b:04:48:2b:50:c0:b4:55:e4:94:bb:
06:61:77:85:22:dd:3b:78:ea:e0:60:43:ad:dd:95:3d:74:09:
7c:9b:7c:42:4d:bd:fe:4b:bb:c1:3e:49:97:ab:a5:01:31:cc:
28:e5:16:5e:e7:6f:d8:c9:56:e7:11:2a:15:6f:67:66:24:9b:
71:b9:86:91:fd:7d:1d:58:8b:0f:37:bf:16:61:d5:78:4d:70:
ac:f4:95:36:dc:64:7c:ff:38:15:3c:d0:c8:6a:db:bc:aa:34:
38:ba:fd:63:14:a2:5f:11:e3:a3:e1:44:3c:75:39:35:f6:2a:
51:8e:6d:a7:e4:78:2b:29:73:80:30:45:1c:71:da:c4:20:cb:
be:3d:94:03:50:36:bc:f7:ec:0b:40:9b:a3:8f:94:18:47:7d:
c6:5d:2c:09:e0:2a:1c:b0:82:e1:46:47:7a:89:11:7c:6d:e9:
12:70:89:65:f3:80:65:9c:92:9a:fc:28:62:1f:9b:60:97:be:
77:e4:a7:48:77:5d:7c:f1:10:a6:ee:07:38:e6:a6:01:ef:1f:
68:16:89:06:a0:38:d6:d3:be:da:82:2d:01:32:43:6a:4f:7e:
89:b4:5c:5b:66:7f:20:22:85:8c:85:12:e0:a9:d7:b8:65:98:
43:7c:30:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 09:11:34 2025 by rpki-client