Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zy_5QUNpiHaq6MQhA9m6Lg2Tl84.roa
File: Zy_5QUNpiHaq6MQhA9m6Lg2Tl84.roa (raw, json)
Hash identifier: sdpU3Z5g40GY/D+m/1Iv2ElWcvlzRuEIobk/rNWAVTE=
Subject key identifier: 67:2F:F9:41:43:69:88:76:AA:E8:C4:21:03:D9:BA:2E:0D:93:97:CE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1150
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zy_5QUNpiHaq6MQhA9m6Lg2Tl84.roa
Signing time: Mon 26 Aug 2024 05:10:40 +0000
ROA not before: Mon 26 Aug 2024 05:10:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 118.150.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4432 (0x1150)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=672FF94143698876AAE8C42103D9BA2E0D9397CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:72:8b:56:3d:50:7e:30:23:f8:a6:88:87:
ea:f4:7a:1e:67:8f:4b:b3:9c:d5:51:10:60:53:69:
21:53:da:b8:60:38:c2:8a:7f:99:75:45:4d:8e:ac:
0c:36:40:36:4d:4b:3a:d3:b0:ae:9e:32:cd:1e:39:
89:bb:83:d7:97:a7:60:97:bd:04:72:ee:49:3c:73:
86:ae:31:b4:c0:77:a0:7c:00:8e:06:94:44:ff:fd:
f7:74:27:30:13:88:c4:a9:1d:3e:35:19:1e:01:d1:
e0:0a:f0:5a:d1:88:0a:b4:ff:6f:c8:95:3d:db:aa:
6a:1a:95:c0:e5:d9:98:dd:96:fd:63:84:bb:dd:56:
4a:c6:30:bb:72:1f:42:46:0d:83:7c:bc:e6:4d:80:
95:fb:eb:94:67:04:ba:3c:d0:13:18:61:0d:48:03:
61:19:6d:f5:4d:16:0c:6e:71:76:93:2c:c6:15:f7:
09:66:e9:a2:d6:af:15:05:2a:ae:8f:fb:ef:9a:bc:
c3:93:ea:a8:82:3e:0a:d0:6c:02:aa:b6:7b:27:7a:
65:86:f6:72:d6:95:55:e7:a3:10:1d:2a:99:ef:bd:
57:e1:83:4c:a3:0f:0e:22:76:5f:de:a4:b3:06:10:
7c:0b:7b:5a:bd:69:f7:48:66:80:96:1a:1d:ff:7b:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2F:F9:41:43:69:88:76:AA:E8:C4:21:03:D9:BA:2E:0D:93:97:CE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zy_5QUNpiHaq6MQhA9m6Lg2Tl84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.232.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:d0:3d:03:ac:13:d0:ae:c5:56:5b:d8:d9:0f:fa:d7:4c:39:
77:22:3b:62:0a:a8:12:1a:67:d4:63:f8:51:d4:43:18:47:17:
7e:fe:c2:f1:8b:49:95:12:c1:aa:f7:71:4f:16:a4:da:7e:e5:
37:8f:55:a7:9e:6b:8a:24:f7:0d:08:72:e1:12:7e:e1:85:e8:
e2:f1:ed:e5:2a:f7:f6:6c:ee:96:c5:11:95:12:b5:e2:1e:bb:
32:99:30:d3:52:6d:9b:e8:db:c0:66:1e:ed:cb:ba:51:61:fa:
96:87:be:c2:22:98:5b:e5:53:48:3f:79:1c:19:2f:1c:fd:72:
66:0f:86:f1:7b:9d:11:22:39:7e:9b:3d:73:2b:72:d4:4d:74:
1e:fa:b7:b5:d0:18:d2:82:0e:30:b6:e3:9c:d7:2b:ba:db:08:
26:2e:93:8a:e7:a7:fd:9b:5f:79:8d:9a:1d:12:4e:63:e7:dd:
82:25:40:bd:e5:f6:b6:f2:ea:1e:8e:da:d2:59:26:7b:54:39:
d6:a0:79:e2:8e:2b:9c:2c:d8:19:f9:04:a8:d4:71:a2:ac:84:
e6:50:cb:98:2d:1a:12:b9:df:1e:f7:91:04:2d:0d:32:c2:e9:
56:a0:41:78:c2:aa:46:8b:a1:54:4f:b4:4f:cb:12:4c:56:77:
c6:27:35:36
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw
NTEwNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3MkZGOTQxNDM2OTg4
NzZBQUU4QzQyMTAzRDlCQTJFMEQ5Mzk3Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/lXKLVj1QfjAj+KaIh+r0eh5nj0uznNVREGBTaSFT2rhgOMKK
f5l1RU2OrAw2QDZNSzrTsK6eMs0eOYm7g9eXp2CXvQRy7kk8c4auMbTAd6B8AI4G
lET//fd0JzATiMSpHT41GR4B0eAK8FrRiAq0/2/IlT3bqmoalcDl2Zjdlv1jhLvd
VkrGMLtyH0JGDYN8vOZNgJX765RnBLo80BMYYQ1IA2EZbfVNFgxucXaTLMYV9wlm
6aLWrxUFKq6P+++avMOT6qiCPgrQbAKqtnsnemWG9nLWlVXnoxAdKpnvvVfhg0yj
Dw4idl/epLMGEHwLe1q9afdIZoCWGh3/ezF1AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUZy/5QUNpiHaq6MQhA9m6Lg2Tl84wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aeV81UVVOcGlIYXE2
TVFoQTltNkxnMlRsODQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDdpboMA0GCSqGSIb3DQEBCwUAA4IBAQBL0D0DrBPQrsVWW9jZD/rXTDl3Ijti
CqgSGmfUY/hR1EMYRxd+/sLxi0mVEsGq93FPFqTafuU3j1WnnmuKJPcNCHLhEn7h
heji8e3lKvf2bO6WxRGVErXiHrsymTDTUm2b6NvAZh7ty7pRYfqWh77CIphb5VNI
P3kcGS8c/XJmD4bxe50RIjl+mz1zK3LUTXQe+re10BjSgg4wtuOc1yu62wgmLpOK
56f9m195jZodEk5j592CJUC95fa28uoejtrSWSZ7VDnWoHnijiucLNgZ+QSo1HGi
rITmUMuYLRoSud8e95EELQ0ywulWoEF4wqpGi6FUT7RPyxJMVnfGJzU2
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:58 2025 by rpki-client