Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa
File: KHVBanBGLo8ZMeceI191SAwcdOc.roa (raw, json)
Hash identifier: Gy4xcuJ21emuDCATP7vmTlWUlJgz15p1x97mYL2Wz6k=
Subject key identifier: 28:75:41:6A:70:46:2E:8F:19:31:E7:1E:23:5F:75:48:0C:1C:74:E7
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0D84
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa
Signing time: Mon 26 Aug 2024 05:35:01 +0000
ROA not before: Mon 26 Aug 2024 05:35:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24168
IP address blocks: 2405:8700:3000::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3460 (0xd84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Aug 26 05:35:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2875416A70462E8F1931E71E235F75480C1C74E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:72:a0:c4:b2:e5:d7:78:8a:56:2f:af:82:6e:
6d:0a:13:eb:70:d5:39:2d:78:d4:f0:f6:ac:19:46:
1c:92:ea:52:08:ae:13:d7:0a:6a:80:2a:80:60:c6:
8a:13:5a:12:a4:10:f9:40:d8:aa:17:f1:c3:d6:f4:
6e:44:b9:05:b3:20:af:28:6f:c2:a4:d8:dc:36:14:
5c:48:dc:3d:fd:05:9d:00:2d:b1:64:13:1f:e7:29:
a9:d4:6d:ba:91:7f:3d:12:cf:55:d2:f6:ad:d6:7c:
1a:74:b0:e6:77:48:73:22:16:a0:f9:eb:e4:6c:8c:
de:08:18:c0:21:05:62:64:c7:ca:b9:50:c1:75:be:
98:01:f8:86:24:a1:a5:db:8d:df:a4:a6:6a:3c:ee:
01:e0:ef:f3:44:c4:f9:a7:13:41:ed:8b:54:ae:46:
a3:1c:e5:14:15:96:d4:b8:0b:50:6d:de:d1:b4:97:
07:87:fd:39:69:41:58:43:91:b2:11:b0:a8:d9:6b:
3c:88:9d:a0:f2:50:9d:54:68:b0:40:e9:5e:b1:d5:
1b:f0:ec:7f:ec:30:dc:31:7d:f6:46:6e:ad:38:96:
76:89:90:e1:47:e5:6d:35:a0:b6:30:f9:cf:43:38:
41:3c:74:0b:b7:24:f2:f0:3d:4f:2d:d7:45:5d:0e:
f2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:75:41:6A:70:46:2E:8F:19:31:E7:1E:23:5F:75:48:0C:1C:74:E7
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:8700:3000::/48
Signature Algorithm: sha256WithRSAEncryption
04:dd:77:aa:0f:31:06:15:b1:de:46:24:46:91:f1:5c:3a:46:
70:26:56:e7:b4:88:42:28:f4:3f:73:29:71:ce:2c:2f:22:09:
37:6e:44:5b:ce:6d:a4:51:85:50:0e:f1:db:e7:7f:f8:94:c5:
f0:33:f8:7a:16:a9:4e:85:b0:ee:8a:d4:4f:71:36:78:7b:11:
42:f0:c3:81:73:3c:83:f2:84:de:c2:ce:4c:2e:e3:3e:95:da:
5f:70:b9:e4:11:c7:e7:c6:e5:e4:1a:33:61:40:c3:99:10:c2:
ed:97:e6:2c:c0:e0:c2:b9:ac:7e:9a:a8:36:e6:9b:8b:0f:75:
d8:2c:e3:24:a1:54:2a:55:2a:6f:3a:25:ad:98:71:ea:4d:85:
c8:40:26:69:0b:af:fa:82:a8:93:d7:ee:8e:8c:04:2a:16:d2:
af:72:f8:c0:0a:3a:2f:43:e5:7b:f0:dc:8e:92:e2:40:4c:4b:
95:ff:68:61:8e:70:33:54:58:a3:23:5f:69:d0:d7:5e:42:6f:
c2:c2:49:35:88:38:a1:17:05:dc:aa:94:4b:4f:b1:39:a5:c1:
7d:6e:c6:be:32:1e:8e:0d:85:8d:ef:af:11:c8:72:9d:15:00:
b8:4b:c3:dc:9b:72:0c:ae:17:de:46:d1:74:6d:66:c4:82:f3:
dc:5c:f6:c9
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA4MjYw
NTM1MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4NzU0MTZBNzA0NjJF
OEYxOTMxRTcxRTIzNUY3NTQ4MEMxQzc0RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOcqDEsuXXeIpWL6+Cbm0KE+tw1TkteNTw9qwZRhyS6lIIrhPX
CmqAKoBgxooTWhKkEPlA2KoX8cPW9G5EuQWzIK8ob8Kk2Nw2FFxI3D39BZ0ALbFk
Ex/nKanUbbqRfz0Sz1XS9q3WfBp0sOZ3SHMiFqD56+RsjN4IGMAhBWJkx8q5UMF1
vpgB+IYkoaXbjd+kpmo87gHg7/NExPmnE0Hti1SuRqMc5RQVltS4C1Bt3tG0lweH
/TlpQVhDkbIRsKjZazyInaDyUJ1UaLBA6V6x1Rvw7H/sMNwxffZGbq04lnaJkOFH
5W01oLYw+c9DOEE8dAu3JPLwPU8t10VdDvLfAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUKHVBanBGLo8ZMeceI191SAwcdOcwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0tIVkJhbkJHTG84
Wk1lY2VJMTkxU0F3Y2RPYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAATdd6oPMQYVsd5GJEaR8Vw6
RnAmVue0iEIo9D9zKXHOLC8iCTduRFvObaRRhVAO8dvnf/iUxfAz+HoWqU6FsO6K
1E9xNnh7EULww4FzPIPyhN7Czkwu4z6V2l9wueQRx+fG5eQaM2FAw5kQwu2X5izA
4MK5rH6aqDbmm4sPddgs4yShVCpVKm86Ja2YcepNhchAJmkLr/qCqJPX7o6MBCoW
0q9y+MAKOi9D5Xvw3I6S4kBMS5X/aGGOcDNUWKMjX2nQ115Cb8LCSTWIOKEXBdyq
lEtPsTmlwX1uxr4yHo4NhY3vrxHIcp0VALhLw9ybcgyuF95G0XRtZsSC89xc9sk=
-----END CERTIFICATE-----
Generated at Tue Apr 22 14:33:46 2025 by rpki-client