Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/UJEQ7-2s6XI9kPmDdwVmt_m6npY.roa
File: UJEQ7-2s6XI9kPmDdwVmt_m6npY.roa (raw, json)
Hash identifier: olfqE3XHqfN/JLGIYpR+2AgoNpyg0g5q1x90BDHP1hw=
Subject key identifier: 50:91:10:EF:ED:AC:E9:72:3D:90:F9:83:77:05:66:B7:F9:BA:9E:96
Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Certificate serial: 01E7
Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/UJEQ7-2s6XI9kPmDdwVmt_m6npY.roa
Signing time: Sat 09 Nov 2024 02:31:14 +0000
ROA not before: Sat 09 Nov 2024 02:31:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 174
IP address blocks: 160.30.78.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Validity
Not Before: Nov 9 02:31:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=509110EFEDACE9723D90F983770566B7F9BA9E96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c1:25:b3:0b:7f:b6:fa:79:06:d5:f7:0c:3b:
dc:3c:04:22:16:69:32:3c:24:42:c3:6b:11:f0:6b:
fe:83:d5:0e:19:72:4f:3c:aa:7c:c7:da:b1:f6:9c:
ed:c2:76:a2:a5:78:71:42:db:06:c2:b9:89:c0:f0:
93:70:13:d4:54:7d:0d:a3:16:3d:64:3a:aa:6e:38:
9b:f7:d8:6b:5c:11:66:47:dc:3d:cc:5f:33:74:f6:
d8:19:fe:6f:51:48:e2:a4:39:53:34:53:fd:d4:9b:
de:7a:0f:ba:43:ab:c0:4b:d6:20:3c:66:66:0b:d5:
6d:49:66:bb:84:06:a8:8a:07:66:47:30:1a:9b:6b:
8f:43:b1:55:6a:77:8c:78:64:84:77:21:99:9d:39:
91:95:bb:8f:4a:df:3e:29:88:3c:e5:06:d8:32:1e:
11:66:b1:0d:de:25:f6:e0:70:3a:19:6a:ae:47:5b:
39:91:d3:c7:c4:95:f7:a1:24:48:86:7e:a4:1c:9e:
00:1a:d0:da:f3:60:34:a9:cd:d5:97:87:13:17:d7:
09:6f:c7:0f:6e:cc:9a:c2:7e:eb:67:e1:8d:39:57:
6c:07:61:54:9a:32:93:54:de:7e:19:01:9e:9a:58:
a8:a3:ec:5e:71:56:e4:e0:a4:60:f7:8e:33:4b:24:
b9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:91:10:EF:ED:AC:E9:72:3D:90:F9:83:77:05:66:B7:F9:BA:9E:96
X509v3 Authority Key Identifier:
keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/UJEQ7-2s6XI9kPmDdwVmt_m6npY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:c4:8d:16:86:f4:cf:6f:3a:28:b5:06:f7:5a:4b:17:e2:71:
76:04:45:aa:de:ea:ae:35:20:b6:21:5b:82:ea:64:b9:e7:38:
c7:ed:e1:77:27:41:09:2d:43:d5:fd:3d:ee:0f:66:3e:35:9d:
8a:19:b2:57:ea:39:b3:9e:6a:a3:38:b4:a8:90:50:ef:9a:86:
10:8a:0e:ef:26:43:23:64:2e:ab:7a:93:8d:73:11:9b:22:96:
44:bf:f9:cf:8a:f0:08:a7:f3:4c:4e:b9:31:79:14:c5:eb:ec:
52:68:df:59:ba:ac:f8:74:93:ab:d7:db:14:01:da:69:57:f8:
95:7c:36:b0:97:bf:f1:31:4c:97:5f:be:35:49:8b:4b:14:6c:
45:f8:6a:58:d3:e6:31:b2:3c:a3:e1:eb:0d:d6:d6:97:ee:4c:
7e:6f:bc:8f:14:21:86:e8:85:74:e0:83:08:09:d9:f7:d5:5d:
4f:6a:7a:90:ee:73:88:c2:ef:92:40:11:31:3b:d5:59:17:23:
d0:01:6f:5a:ef:ea:fc:f9:19:a1:1c:10:b9:5a:ba:b5:66:03:
cb:15:41:0e:61:1b:de:21:9b:11:68:22:7b:7e:39:f4:e5:7d:
ca:c1:9d:1c:22:04:0d:0f:5b:f7:b4:d7:bb:af:ef:47:de:9c:
c3:96:1e:f9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICAecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG
OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNDExMDkw
MjMxMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwOTExMEVGRURBQ0U5
NzIzRDkwRjk4Mzc3MDU2NkI3RjlCQTlFOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQwSWzC3+2+nkG1fcMO9w8BCIWaTI8JELDaxHwa/6D1Q4Zck88
qnzH2rH2nO3CdqKleHFC2wbCuYnA8JNwE9RUfQ2jFj1kOqpuOJv32GtcEWZH3D3M
XzN09tgZ/m9RSOKkOVM0U/3Um956D7pDq8BL1iA8ZmYL1W1JZruEBqiKB2ZHMBqb
a49DsVVqd4x4ZIR3IZmdOZGVu49K3z4piDzlBtgyHhFmsQ3eJfbgcDoZaq5HWzmR
08fElfehJEiGfqQcngAa0NrzYDSpzdWXhxMX1wlvxw9uzJrCfutn4Y05V2wHYVSa
MpNU3n4ZAZ6aWKij7F5xVuTgpGD3jjNLJLlbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUUJEQ7+2s6XI9kPmDdwVmt/m6npYwHwYDVR0jBBgwFoAURPjc9msltxkFbR7W
XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V
L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL1VKRVE3LTJzNlhJOWtQbURk
d1ZtdF9tNm5wWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg
Hk4wDQYJKoZIhvcNAQELBQADggEBAH7EjRaG9M9vOii1BvdaSxficXYERare6q41
ILYhW4LqZLnnOMft4XcnQQktQ9X9Pe4PZj41nYoZslfqObOeaqM4tKiQUO+ahhCK
Du8mQyNkLqt6k41zEZsilkS/+c+K8Ain80xOuTF5FMXr7FJo31m6rPh0k6vX2xQB
2mlX+JV8NrCXv/ExTJdfvjVJi0sUbEX4aljT5jGyPKPh6w3W1pfuTH5vvI8UIYbo
hXTggwgJ2ffVXU9qepDuc4jC75JAETE71VkXI9ABb1rv6vz5GaEcELlaurVmA8sV
QQ5hG94hmxFoInt+OfTlfcrBnRwiBA0PW/e017uv70fenMOWHvk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:05:04 2025 by rpki-client