Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa
File: hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa (raw, json)
Hash identifier: BPZjnvbdMQb/gk4nw+h5dBxrbd1HMxFJhpYJ+YjDkfU=
Subject key identifier: 84:EB:CE:F6:6F:1C:A6:12:DF:65:B2:41:3B:8F:A7:28:56:7C:22:1B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11A3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa
Signing time: Mon 26 Aug 2024 05:11:00 +0000
ROA not before: Mon 26 Aug 2024 05:11:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 150.116.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4515 (0x11a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=84EBCEF66F1CA612DF65B2413B8FA728567C221B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a0:c7:c4:69:86:48:85:c8:87:47:7d:ea:7f:
ab:41:73:9f:b8:b8:15:39:6d:91:88:ed:8c:d0:be:
b0:46:06:0c:27:bb:ff:96:55:45:04:61:c5:a4:0c:
f8:2f:c6:36:48:e6:4d:2b:99:57:6b:69:81:00:e5:
a8:24:f8:66:8b:0b:fb:d3:a9:14:f7:27:bb:10:3b:
57:5f:70:a5:5c:5c:4e:99:b7:ef:ad:3e:5f:b2:b9:
b6:2c:60:fc:64:3a:4d:75:e1:26:ba:17:15:cc:c0:
60:7f:6c:58:a0:44:78:2d:44:47:d8:e1:b1:05:e3:
31:c2:9b:48:66:ab:8c:6f:21:19:1c:9d:df:64:e5:
41:75:bc:a3:c4:93:ee:c5:a5:41:b0:cc:47:1d:06:
97:50:10:41:ac:42:6e:4b:a0:e2:ce:c8:70:8c:48:
01:82:29:c4:dd:05:24:f7:65:55:78:d8:22:6d:3c:
4f:55:40:59:c4:60:8f:95:ff:68:d2:c5:4b:d9:8e:
43:52:ad:6e:22:20:8e:45:8c:07:80:00:66:b8:eb:
84:68:6a:12:dc:c0:89:9c:cf:0c:c8:6c:e3:8d:7d:
67:be:dc:44:5f:89:e7:fb:0f:e0:91:36:ac:8f:33:
e3:54:1e:20:6a:4d:d1:8a:b6:8c:0a:82:89:82:4d:
05:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EB:CE:F6:6F:1C:A6:12:DF:65:B2:41:3B:8F:A7:28:56:7C:22:1B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.4.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:01:34:93:2d:c9:e5:1f:9d:ef:6e:75:14:ee:a6:84:b7:11:
c9:1e:00:d9:a8:10:8f:05:b2:08:92:41:84:c3:bb:21:9b:ff:
45:36:d8:d9:41:86:79:99:2b:7d:9b:24:29:1c:f1:31:3b:29:
11:18:35:23:6e:ad:21:ee:a9:24:75:48:e5:51:4f:85:63:cc:
fa:d7:d9:58:34:e5:58:4c:1a:99:9c:99:47:06:2f:2c:5d:88:
68:d8:8d:9e:6e:c3:c0:2f:a5:a7:b0:b8:60:7a:b0:dc:b2:0d:
95:e5:1c:2c:cb:29:f4:af:e8:ff:c4:22:ae:58:03:b6:2e:0c:
33:a4:06:ef:17:71:fb:6f:67:b5:64:e7:f0:3b:87:45:a9:d6:
2d:5d:aa:a8:c2:a0:99:60:38:0b:c3:cb:ad:a1:34:42:81:0d:
24:03:8d:b0:fd:e1:90:42:b0:48:00:d0:4b:b1:dd:52:de:37:
b6:ea:bf:81:fc:d9:b0:69:cf:02:78:a1:1d:7b:08:4f:18:ef:
3d:9f:6d:2c:0a:95:e7:77:81:2f:87:bd:ca:15:8b:e6:e5:1c:
7f:2f:aa:16:28:70:a5:59:6f:3b:91:2d:6c:eb:2d:b1:59:8f:
fc:5e:b3:26:9f:16:f4:41:19:5e:76:d7:5e:44:6f:1a:f2:12:
bc:a2:ec:a6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw
NTExMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0RUJDRUY2NkYxQ0E2
MTJERjY1QjI0MTNCOEZBNzI4NTY3QzIyMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsoMfEaYZIhciHR33qf6tBc5+4uBU5bZGI7YzQvrBGBgwnu/+W
VUUEYcWkDPgvxjZI5k0rmVdraYEA5agk+GaLC/vTqRT3J7sQO1dfcKVcXE6Zt++t
Pl+yubYsYPxkOk114Sa6FxXMwGB/bFigRHgtREfY4bEF4zHCm0hmq4xvIRkcnd9k
5UF1vKPEk+7FpUGwzEcdBpdQEEGsQm5LoOLOyHCMSAGCKcTdBST3ZVV42CJtPE9V
QFnEYI+V/2jSxUvZjkNSrW4iII5FjAeAAGa464RoahLcwImczwzIbOONfWe+3ERf
ief7D+CRNqyPM+NUHiBqTdGKtowKgomCTQUBAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUhOvO9m8cphLfZbJBO4+nKFZ8IhswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9oT3ZPOW04Y3BoTGZa
YkpCTzQtbktGWjhJaHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQEMA0GCSqGSIb3DQEBCwUAA4IBAQB8ATSTLcnlH53vbnUU7qaEtxHJHgDZ
qBCPBbIIkkGEw7shm/9FNtjZQYZ5mSt9myQpHPExOykRGDUjbq0h7qkkdUjlUU+F
Y8z619lYNOVYTBqZnJlHBi8sXYho2I2ebsPAL6WnsLhgerDcsg2V5Rwsyyn0r+j/
xCKuWAO2LgwzpAbvF3H7b2e1ZOfwO4dFqdYtXaqowqCZYDgLw8utoTRCgQ0kA42w
/eGQQrBIANBLsd1S3je26r+B/Nmwac8CeKEdewhPGO89n20sCpXnd4Evh73KFYvm
5Rx/L6oWKHClWW87kS1s6y2xWY/8XrMmnxb0QRledtdeRG8a8hK8ouym
-----END CERTIFICATE-----
Generated at Wed Apr 9 13:41:55 2025 by rpki-client