Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/Gq_9-W57V2LUdm-3vvOxajQ6Xg8.roa
File: Gq_9-W57V2LUdm-3vvOxajQ6Xg8.roa (raw, json)
Hash identifier: uOrUJYiqXalgOFFdTcYCd5s/q6Zifmmn+9LSQ/KUpEk=
Subject key identifier: 1A:AF:FD:F9:6E:7B:57:62:D4:76:6F:B7:BE:F3:B1:6A:34:3A:5E:0F
Certificate issuer: /CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5
Certificate serial: 0111
Authority key identifier: 60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/Gq_9-W57V2LUdm-3vvOxajQ6Xg8.roa
Signing time: Sun 22 Sep 2024 18:08:23 +0000
ROA not before: Sun 22 Sep 2024 18:08:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 200213
IP address blocks: 103.69.80.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 11:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273 (0x111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5
Validity
Not Before: Sep 22 18:08:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1AAFFDF96E7B5762D4766FB7BEF3B16A343A5E0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:23:6b:a9:a9:65:0e:fe:d2:d0:5e:81:cc:a3:
61:80:ee:64:5c:16:13:b0:6a:7e:3f:a0:d7:2b:03:
0e:5b:42:cc:e4:9c:3b:b4:69:12:db:f5:3d:b5:4e:
42:33:cd:54:e5:ea:59:b3:e5:c8:48:27:17:5d:22:
cd:6d:90:56:79:88:bb:65:3f:1d:df:a8:dc:d6:5c:
07:48:2f:d9:f9:28:c4:d5:7d:a8:d6:90:2b:46:23:
ca:c5:7f:a2:7f:06:40:a2:55:76:9c:9e:e3:78:7e:
b7:19:ab:f5:3f:47:cd:c2:8c:72:5b:e0:14:62:cf:
f1:01:4e:5c:aa:8c:1a:4c:5b:c8:b1:d6:08:68:8a:
a2:71:0f:fa:9c:8b:de:5e:92:8e:72:0c:ef:f5:51:
79:e3:eb:2c:33:c5:20:3e:ac:bd:9b:0d:c8:a2:03:
5c:73:e6:1b:b0:90:d4:f1:2d:41:7e:bd:c0:cc:5d:
12:d0:c7:33:33:0a:02:8e:c0:8c:88:b4:b0:bb:cc:
bc:d9:6f:54:8d:4f:57:6b:37:bb:bb:d1:bf:2f:5b:
1c:8c:1a:f1:5b:bd:1e:6d:44:cb:b7:5f:a9:8c:ed:
33:a7:ce:13:b7:d1:bd:6c:3c:ac:76:90:0e:08:80:
b1:ef:a0:08:8f:69:76:ac:e5:3d:73:cb:92:79:b0:
ee:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AF:FD:F9:6E:7B:57:62:D4:76:6F:B7:BE:F3:B1:6A:34:3A:5E:0F
X509v3 Authority Key Identifier:
keyid:60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/Gq_9-W57V2LUdm-3vvOxajQ6Xg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.80.0/23
Signature Algorithm: sha256WithRSAEncryption
53:c3:7a:33:af:0f:0e:83:1c:6d:4e:64:f8:05:d0:57:95:54:
59:49:fc:74:fe:e3:90:04:5e:81:af:5c:73:22:e0:49:9f:7f:
fb:19:9c:db:f0:c7:ef:57:d8:9b:d3:2d:52:c0:d0:5b:cd:fb:
06:37:4b:2b:29:73:b4:57:98:56:12:63:61:be:c9:37:73:08:
f4:1c:95:c3:38:76:cf:35:f6:33:21:52:6b:53:02:d7:7e:d1:
1d:02:a1:44:6e:85:2f:87:dc:8e:2b:39:64:d3:d6:9c:08:31:
f3:99:2b:c5:34:43:c1:fb:17:4e:22:3f:a7:a1:b4:3a:06:fb:
4d:18:f5:78:de:19:dc:94:32:b3:6e:e9:30:10:5a:01:ac:e1:
59:22:75:95:d7:ae:a4:44:0e:0d:64:3b:c7:dc:84:a5:f6:a2:
8b:b8:ad:7f:0d:f8:a2:ac:f1:6b:61:28:0b:b1:0d:0a:cb:3b:
90:7a:b9:53:e1:f0:08:64:07:63:23:f8:81:10:82:b3:e5:37:
ff:e8:dc:f2:69:39:97:34:ec:1e:11:21:8a:ae:a3:2c:fe:bb:
6b:bc:2f:ca:3b:38:c4:6d:48:f5:3a:fe:95:07:35:31:e8:69:
f9:57:1a:b2:0c:5d:e2:33:82:89:42:80:42:d0:66:61:8a:f0:
e7:73:41:df
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAx
NkVGNDFGMzIxQzlBQTZDMUUxM0QxMTVCNUI2MEEzMDI5QzhFNTAeFw0yNDA5MjIx
ODA4MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBQUZGREY5NkU3QjU3
NjJENDc2NkZCN0JFRjNCMTZBMzQzQTVFMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCUI2upqWUO/tLQXoHMo2GA7mRcFhOwan4/oNcrAw5bQszknDu0
aRLb9T21TkIzzVTl6lmz5chIJxddIs1tkFZ5iLtlPx3fqNzWXAdIL9n5KMTVfajW
kCtGI8rFf6J/BkCiVXacnuN4frcZq/U/R83CjHJb4BRiz/EBTlyqjBpMW8ix1gho
iqJxD/qci95eko5yDO/1UXnj6ywzxSA+rL2bDciiA1xz5huwkNTxLUF+vcDMXRLQ
xzMzCgKOwIyItLC7zLzZb1SNT1drN7u70b8vWxyMGvFbvR5tRMu3X6mM7TOnzhO3
0b1sPKx2kA4IgLHvoAiPaXas5T1zy5J5sO5tAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUGq/9+W57V2LUdm+3vvOxajQ6Xg8wHwYDVR0jBBgwFoAUYBbvQfMhyapsHhPR
FbW2CjApyOUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdT
SEVOL1lCYnZRZk1oeWFwc0hoUFJGYlcyQ2pBcHlPVS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvWUJidlFmTWh5YXBzSGhQUkZiVzJDakFweU9VLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdTSEVOL0dxXzktVzU3VjJM
VWRtLTN2dk94YWpRNlhnOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnRVAwDQYJKoZIhvcNAQELBQADggEBAFPDejOvDw6DHG1OZPgF0FeVVFlJ
/HT+45AEXoGvXHMi4Emff/sZnNvwx+9X2JvTLVLA0FvN+wY3Syspc7RXmFYSY2G+
yTdzCPQclcM4ds819jMhUmtTAtd+0R0CoURuhS+H3I4rOWTT1pwIMfOZK8U0Q8H7
F04iP6ehtDoG+00Y9XjeGdyUMrNu6TAQWgGs4VkidZXXrqREDg1kO8fchKX2oou4
rX8N+KKs8WthKAuxDQrLO5B6uVPh8AhkB2Mj+IEQgrPlN//o3PJpOZc07B4RIYqu
oyz+u2u8L8o7OMRtSPU6/pUHNTHoaflXGrIMXeIzgolCgELQZmGK8OdzQd8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:18 2025 by rpki-client