Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h2RdFKsJkpcYIN940yTEvMSsud4.roa
File: h2RdFKsJkpcYIN940yTEvMSsud4.roa (raw, json)
Hash identifier: 5N3CXDQX0pL1R35yU4PAanny+LMKoh+6eqfDwKNtiFQ=
Subject key identifier: 87:64:5D:14:AB:09:92:97:18:20:DF:78:D3:24:C4:BC:C4:AC:B9:DE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 118B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h2RdFKsJkpcYIN940yTEvMSsud4.roa
Signing time: Mon 26 Aug 2024 05:10:54 +0000
ROA not before: Mon 26 Aug 2024 05:10:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 113.21.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4491 (0x118b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=87645D14AB0992971820DF78D324C4BCC4ACB9DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1d:2e:50:ab:a6:8f:d1:43:b6:95:d0:62:a5:
61:7f:35:b8:a4:37:13:8d:1d:e7:46:7a:d1:47:6d:
2f:20:bf:00:14:b9:6b:d0:c5:e6:a1:6e:b6:d0:46:
55:25:65:bc:6d:be:1f:e2:17:c5:54:fa:4c:33:7f:
74:75:56:9f:56:fd:e5:b1:04:59:b7:52:72:5f:c3:
ba:b1:53:a6:91:f9:fe:89:e7:52:f4:78:79:a8:98:
5c:29:db:06:a1:ab:ef:42:69:59:15:8d:64:ad:00:
41:97:ff:94:82:26:c4:35:24:b7:c6:84:3a:4e:55:
7c:cd:f2:28:6e:a0:48:36:c3:bd:96:df:9e:49:5a:
ad:29:d5:8c:c7:97:2b:dc:46:97:a2:cd:5b:f6:91:
f5:13:38:6b:be:9f:bf:ec:99:88:e3:4a:0f:01:3a:
8e:e7:6e:db:a3:bb:09:0e:72:e5:97:1b:24:44:03:
10:bf:c6:18:8f:af:08:27:cd:bb:ce:94:6d:80:70:
87:15:d3:77:0a:a3:21:87:13:6b:8f:33:26:ff:6d:
c4:a4:0a:6f:57:12:02:46:00:c2:16:22:c7:98:05:
6a:f9:82:4d:11:fb:01:e0:b1:ad:26:ce:15:51:05:
8c:ec:63:fa:19:86:c5:4a:ad:05:cc:07:b5:40:f4:
0b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:64:5D:14:AB:09:92:97:18:20:DF:78:D3:24:C4:BC:C4:AC:B9:DE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h2RdFKsJkpcYIN940yTEvMSsud4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.88.0/21
Signature Algorithm: sha256WithRSAEncryption
16:7c:94:c0:b1:0b:82:06:6e:43:d6:46:bf:09:c4:b0:b8:09:
c0:a8:92:84:4b:ba:1d:23:23:95:c7:07:d6:72:51:68:f6:dc:
45:c1:16:82:09:24:9b:97:46:e5:ad:c1:2e:59:34:23:f5:4d:
18:59:82:a7:43:29:94:a6:40:3d:99:7b:ed:08:20:07:b3:e1:
83:af:83:7a:ed:4c:3c:fd:88:07:7b:93:de:8a:98:75:6e:34:
c2:7b:02:05:fc:36:a8:6d:7b:ca:ac:62:fa:8b:9f:f7:c9:97:
8d:17:07:f1:16:c4:8e:d4:8a:0e:85:9a:c6:df:db:b6:78:19:
42:69:96:7b:3c:55:3e:10:97:65:42:46:c9:0b:69:97:33:36:
f8:68:37:cf:68:52:0d:1c:e7:81:7c:97:6d:a0:fd:48:4f:b4:
37:1a:d1:3b:9d:05:30:27:7d:41:5a:0e:1d:76:b0:3b:84:c7:
c9:0e:9b:8c:b1:9f:89:c0:6f:c4:14:37:77:05:1d:81:ad:40:
dd:63:3e:a7:2e:d4:b5:5c:81:13:ee:ad:c5:6f:88:2d:a7:aa:
97:38:6e:bf:5c:73:fd:e2:3a:3f:ff:1a:e0:0b:4e:42:d3:29:
3f:05:b7:72:6b:24:0a:ef:24:fe:e6:5a:a9:9c:5d:04:67:35:
55:21:ab:55
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEYswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw
NTEwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg3NjQ1RDE0QUIwOTky
OTcxODIwREY3OEQzMjRDNEJDQzRBQ0I5REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyHS5Qq6aP0UO2ldBipWF/NbikNxONHedGetFHbS8gvwAUuWvQ
xeahbrbQRlUlZbxtvh/iF8VU+kwzf3R1Vp9W/eWxBFm3UnJfw7qxU6aR+f6J51L0
eHmomFwp2wahq+9CaVkVjWStAEGX/5SCJsQ1JLfGhDpOVXzN8ihuoEg2w72W355J
Wq0p1YzHlyvcRpeizVv2kfUTOGu+n7/smYjjSg8BOo7nbtujuwkOcuWXGyREAxC/
xhiPrwgnzbvOlG2AcIcV03cKoyGHE2uPMyb/bcSkCm9XEgJGAMIWIseYBWr5gk0R
+wHgsa0mzhVRBYzsY/oZhsVKrQXMB7VA9AtbAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUh2RdFKsJkpcYIN940yTEvMSsud4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9oMlJkRktzSmtwY1lJ
Tjk0MHlURXZNU3N1ZDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDcRVYMA0GCSqGSIb3DQEBCwUAA4IBAQAWfJTAsQuCBm5D1ka/CcSwuAnAqJKE
S7odIyOVxwfWclFo9txFwRaCCSSbl0blrcEuWTQj9U0YWYKnQymUpkA9mXvtCCAH
s+GDr4N67Uw8/YgHe5Peiph1bjTCewIF/DaobXvKrGL6i5/3yZeNFwfxFsSO1IoO
hZrG39u2eBlCaZZ7PFU+EJdlQkbJC2mXMzb4aDfPaFINHOeBfJdtoP1IT7Q3GtE7
nQUwJ31BWg4ddrA7hMfJDpuMsZ+JwG/EFDd3BR2BrUDdYz6nLtS1XIET7q3Fb4gt
p6qXOG6/XHP94jo//xrgC05C0yk/BbdyayQK7yT+5lqpnF0EZzVVIatV
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:40 2025 by rpki-client