Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/K4AIm5oR8Mljk_O_7RwjHmxw6nQ.roa
File: K4AIm5oR8Mljk_O_7RwjHmxw6nQ.roa (raw, json)
Hash identifier: L1j7YVWQxFyOI3NF7HsZqQKXDwVC0Es4+aH/VbG6nCw=
Subject key identifier: 2B:80:08:9B:9A:11:F0:C9:63:93:F3:BF:ED:1C:23:1E:6C:70:EA:74
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 054A
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/K4AIm5oR8Mljk_O_7RwjHmxw6nQ.roa
Signing time: Mon 26 Aug 2024 05:09:26 +0000
ROA not before: Mon 26 Aug 2024 05:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 60614
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 09:05:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1354 (0x54a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Aug 26 05:09:26 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2B80089B9A11F0C96393F3BFED1C231E6C70EA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:c2:4c:69:4f:1c:18:2a:f8:06:06:0b:5b:
94:95:dc:7c:30:7d:ed:20:4b:f4:0a:40:2a:09:aa:
e2:df:85:55:2a:05:14:42:7c:b9:33:19:38:2f:f4:
e4:b6:53:3b:00:5d:7c:55:27:02:d6:c2:3e:1b:cb:
5c:1f:33:e7:cf:76:f1:de:e8:47:2f:fe:86:d0:bb:
99:cf:9e:db:fb:79:b2:76:48:5a:83:bd:29:59:c1:
3b:be:41:f3:eb:97:04:11:41:38:8c:6a:97:38:44:
44:df:36:62:33:4b:25:2c:f4:3a:f0:68:07:b3:e0:
cb:cb:76:aa:41:d1:90:46:2d:fe:d2:d7:44:db:d4:
30:e0:e3:52:a9:71:25:f1:a0:6d:d9:38:03:01:b9:
d1:b8:a7:60:71:41:a3:b6:c4:51:79:8b:b6:98:e4:
57:cd:59:fc:b4:4e:bb:d9:f8:5d:52:10:67:c9:d6:
ca:29:30:46:77:d3:65:4c:97:4a:d2:3c:a7:8b:a8:
84:39:91:9d:22:b8:fd:0f:5a:29:03:ab:4f:dc:9f:
d8:4e:3c:5e:f6:c4:9a:d4:ed:60:4b:83:b3:64:69:
81:5c:c1:02:20:97:85:53:39:db:84:47:19:52:2a:
5f:d2:5a:af:d0:aa:08:8b:49:b3:24:f1:b3:5d:c8:
13:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:80:08:9B:9A:11:F0:C9:63:93:F3:BF:ED:1C:23:1E:6C:70:EA:74
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/K4AIm5oR8Mljk_O_7RwjHmxw6nQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9a:72:b1:06:7a:81:ce:3d:cc:72:cf:99:52:9a:40:56:a1:
33:4b:38:ae:39:9e:42:e7:fe:80:3d:f4:07:04:e7:2f:6f:f8:
02:bb:1a:84:49:dd:e8:1e:54:c5:4d:3b:25:05:e1:2c:15:40:
ba:07:d3:74:fb:3e:a1:c9:b2:2a:02:2c:6b:d2:5d:82:4d:d1:
6e:66:e2:ca:3f:d0:4c:79:48:24:bc:a1:1f:16:43:38:8d:11:
ca:0c:6e:f3:7f:12:cd:46:4b:b2:16:56:c5:1e:b3:ae:02:00:
8a:d7:b4:66:c0:40:fd:4f:da:4e:de:ac:f6:78:1c:fa:2f:c2:
cb:44:ff:6d:15:30:69:bb:16:41:0d:b9:de:18:78:b6:df:e1:
8d:f4:cf:b1:e5:e3:cc:dd:94:2a:4a:f5:73:8a:6b:f4:62:92:
da:c2:4f:cf:5f:cf:2a:82:71:6d:5c:2a:04:cf:c9:c7:4a:0f:
53:6e:c3:2a:6a:72:b7:fe:2d:d1:92:61:60:3a:87:44:6a:42:
c7:a1:4c:04:88:1b:e4:9a:06:88:1e:3d:c5:51:37:b8:d9:6d:
14:fa:fc:dc:46:b5:fa:c3:f2:75:4c:f6:8e:79:48:d4:6f:27:
1b:18:63:0b:9a:cb:d9:74:ad:47:b6:3a:98:26:d9:bd:2d:62:
75:df:e6:f0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB
OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNDA4MjYw
NTA5MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCODAwODlCOUExMUYw
Qzk2MzkzRjNCRkVEMUMyMzFFNkM3MEVBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCk0MJMaU8cGCr4BgYLW5SV3Hwwfe0gS/QKQCoJquLfhVUqBRRC
fLkzGTgv9OS2UzsAXXxVJwLWwj4by1wfM+fPdvHe6Ecv/obQu5nPntv7ebJ2SFqD
vSlZwTu+QfPrlwQRQTiMapc4RETfNmIzSyUs9DrwaAez4MvLdqpB0ZBGLf7S10Tb
1DDg41KpcSXxoG3ZOAMBudG4p2BxQaO2xFF5i7aY5FfNWfy0TrvZ+F1SEGfJ1sop
MEZ302VMl0rSPKeLqIQ5kZ0iuP0PWikDq0/cn9hOPF72xJrU7WBLg7NkaYFcwQIg
l4VTOduERxlSKl/SWq/QqgiLSbMk8bNdyBNTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUK4AIm5oR8Mljk/O/7RwjHmxw6nQwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc
apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT
Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvSzRBSW01b1I4TWxqa19P
XzdSd2pIbXh3Nm5RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGecuTANBgkqhkiG9w0BAQsFAAOCAQEAIZpysQZ6gc49zHLPmVKaQFahM0s4rjme
Quf+gD30BwTnL2/4ArsahEnd6B5UxU07JQXhLBVAugfTdPs+ocmyKgIsa9Jdgk3R
bmbiyj/QTHlIJLyhHxZDOI0Rygxu838SzUZLshZWxR6zrgIAite0ZsBA/U/aTt6s
9ngc+i/Cy0T/bRUwabsWQQ253hh4tt/hjfTPseXjzN2UKkr1c4pr9GKS2sJPz1/P
KoJxbVwqBM/Jx0oPU27DKmpyt/4t0ZJhYDqHRGpCx6FMBIgb5JoGiB49xVE3uNlt
FPr83Ea1+sPydUz2jnlI1G8nGxhjC5rL2XStR7Y6mCbZvS1idd/m8A==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:52 2025 by rpki-client