Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa
File: lbIDhE1ikIrLrDa2wOJOecWylYM.roa (raw, json)
Hash identifier: YCji7XzRu7ng8Kjv/NtMa1ltI8MI+TNOVgo4qvwKj8k=
Subject key identifier: 95:B2:03:84:4D:62:90:8A:CB:AC:36:B6:C0:E2:4E:79:C5:B2:95:83
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0C7C
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa
Signing time: Mon 26 Aug 2024 04:56:20 +0000
ROA not before: Mon 26 Aug 2024 04:56:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 202.12.76.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3196 (0xc7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Aug 26 04:56:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=95B203844D62908ACBAC36B6C0E24E79C5B29583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:30:ca:09:ce:dc:44:d8:d2:35:59:63:17:
8c:8a:7b:00:c3:51:c6:6e:64:34:cb:3d:20:06:dc:
e7:6a:bc:99:a6:ab:bd:88:95:07:8d:40:21:7c:bc:
70:14:71:b3:99:0e:8a:54:40:e2:15:e3:23:08:34:
4a:55:1a:fb:ba:b5:0f:03:9b:57:75:d7:e7:f0:38:
88:ec:79:2b:f1:82:84:c9:ad:b8:07:d2:cd:15:8d:
43:27:ea:e7:17:f3:f5:f2:87:1d:45:02:7c:09:03:
7f:90:9b:75:68:d8:13:12:7f:62:01:8d:26:89:6e:
69:4b:d7:df:4b:fe:4e:31:7d:7e:d9:5a:f9:32:83:
df:85:55:0a:a0:5f:f9:52:08:30:66:63:c5:0b:8c:
22:aa:77:ea:3e:da:27:07:a1:c4:2a:56:7c:08:63:
a1:ae:9b:c6:ed:88:84:ea:9a:bd:c9:e7:d8:1a:02:
af:50:8e:7b:51:af:bd:fd:f3:fd:5c:c5:55:04:52:
d2:0e:b6:17:6f:cc:84:48:73:bd:d0:98:90:a0:86:
e2:82:f0:56:84:e1:7d:1e:1b:f7:ff:3b:4e:cd:31:
3b:f4:54:5c:f8:04:60:cd:87:7f:0b:87:78:ed:ca:
97:7b:8e:7b:21:9a:d5:a1:4c:0f:cc:b7:ea:9c:f4:
1a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B2:03:84:4D:62:90:8A:CB:AC:36:B6:C0:E2:4E:79:C5:B2:95:83
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.76.0/22
Signature Algorithm: sha256WithRSAEncryption
37:f3:2b:7d:90:54:6e:53:ff:34:44:db:94:1c:9a:51:60:1a:
c8:6a:48:3d:c3:79:6a:6f:18:8d:0a:3e:67:69:82:bb:c9:ff:
b8:bb:bc:9a:66:f4:f8:46:96:f9:b0:ec:05:d3:e1:03:21:bf:
9d:f4:98:7b:98:5f:96:43:3e:a1:3c:f2:30:1b:d9:c8:c2:2a:
a0:54:ea:b9:94:05:b3:35:99:a8:4c:a4:2d:9f:4d:20:49:e4:
08:8e:36:ef:1e:bf:14:07:a5:81:41:dd:b2:0c:a1:c4:10:87:
32:79:35:dd:36:ff:6b:f6:0b:27:6b:71:6e:88:31:0a:97:60:
6b:61:96:2f:2a:72:70:08:bb:2b:6e:9c:96:fc:46:f1:99:a6:
3d:1f:64:4e:b1:a0:1c:16:ee:70:72:92:ee:fa:7b:70:6c:75:
5b:1c:50:cf:b6:eb:dd:a3:1f:34:79:48:07:36:0c:f9:8e:db:
cb:ca:32:b4:c1:c2:05:c1:74:5a:7b:b6:29:63:1f:6c:f2:3c:
2e:70:65:b0:08:c3:d4:15:86:9d:17:47:16:9e:d8:e2:a2:66:
a1:6f:14:0d:bd:74:44:e8:7a:ce:e9:9a:eb:04:ca:78:69:44:
8b:0d:48:ff:84:6a:13:73:d1:a3:b9:e0:90:c7:be:92:c7:3e:
35:24:13:31
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw
NDU2MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1QjIwMzg0NEQ2Mjkw
OEFDQkFDMzZCNkMwRTI0RTc5QzVCMjk1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhmTDKCc7cRNjSNVljF4yKewDDUcZuZDTLPSAG3OdqvJmmq72I
lQeNQCF8vHAUcbOZDopUQOIV4yMINEpVGvu6tQ8Dm1d11+fwOIjseSvxgoTJrbgH
0s0VjUMn6ucX8/Xyhx1FAnwJA3+Qm3Vo2BMSf2IBjSaJbmlL199L/k4xfX7ZWvky
g9+FVQqgX/lSCDBmY8ULjCKqd+o+2icHocQqVnwIY6Gum8btiITqmr3J59gaAq9Q
jntRr7398/1cxVUEUtIOthdvzIRIc73QmJCghuKC8FaE4X0eG/f/O07NMTv0VFz4
BGDNh38Lh3jtypd7jnshmtWhTA/Mt+qc9Bp/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUlbIDhE1ikIrLrDa2wOJOecWylYMwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9sYklEaEUxaWtJckxy
RGEyd09KT2VjV3lsWU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCygxMMA0GCSqGSIb3DQEBCwUAA4IBAQA38yt9kFRuU/80RNuUHJpRYBrIakg9
w3lqbxiNCj5naYK7yf+4u7yaZvT4Rpb5sOwF0+EDIb+d9Jh7mF+WQz6hPPIwG9nI
wiqgVOq5lAWzNZmoTKQtn00gSeQIjjbvHr8UB6WBQd2yDKHEEIcyeTXdNv9r9gsn
a3FuiDEKl2BrYZYvKnJwCLsrbpyW/EbxmaY9H2ROsaAcFu5wcpLu+ntwbHVbHFDP
tuvdox80eUgHNgz5jtvLyjK0wcIFwXRae7YpYx9s8jwucGWwCMPUFYadF0cWntji
omahbxQNvXRE6HrO6ZrrBMp4aUSLDUj/hGoTc9GjueCQx76Sxz41JBMx
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:18:09 2025 by rpki-client