Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/6VPY15cGh8PRAnycBmBwK84l8eg.roa
File: 6VPY15cGh8PRAnycBmBwK84l8eg.roa (raw, json)
Hash identifier: tOU0/u++mZ8m4K7BcsjalJYADUJhXecHWEUq3V9oNf4=
Subject key identifier: E9:53:D8:D7:97:06:87:C3:D1:02:7C:9C:06:60:70:2B:CE:25:F1:E8
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D1E
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/6VPY15cGh8PRAnycBmBwK84l8eg.roa
Signing time: Mon 10 Feb 2025 14:04:35 +0000
ROA not before: Mon 10 Feb 2025 14:04:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 61.65.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Mar 2025 09:54:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3358 (0xd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E953D8D7970687C3D1027C9C0660702BCE25F1E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d5:62:a5:7c:78:a1:8e:08:9f:c7:92:e4:d5:
fa:58:90:de:e0:b9:12:30:8b:71:08:1c:2c:2d:78:
94:7d:55:ce:fe:ca:59:84:86:90:39:38:72:c1:07:
b7:2c:39:de:cf:c0:b6:11:2f:0b:c4:39:92:5b:06:
aa:53:12:3a:0c:07:7b:8d:9c:9e:70:b8:16:1f:78:
1f:6f:e4:77:29:7c:93:f4:63:66:b5:38:93:2b:ab:
a6:c7:58:20:7a:e1:6c:05:8c:b4:4a:15:fa:36:c9:
79:eb:2c:6a:5e:29:ee:79:42:82:26:eb:41:75:61:
f3:02:65:bd:c3:d7:d0:37:a2:46:a6:05:88:4f:d0:
37:80:5b:26:ca:25:81:fe:ca:2b:1c:4e:5a:d4:fd:
90:3b:78:63:71:d7:d3:c9:d6:87:2b:18:8f:83:07:
12:85:92:76:05:15:0f:aa:5f:50:53:18:2e:01:67:
7a:07:18:2d:af:2f:25:9e:76:92:31:3c:a5:2f:f6:
8f:16:69:10:ef:2f:fb:5f:ca:b2:0a:bc:f6:2a:70:
a0:e0:01:f4:a2:74:3d:6b:8f:94:02:a8:1f:aa:77:
aa:c2:2d:56:8a:69:f4:db:25:8b:07:ca:f0:8c:f5:
d2:23:d9:bf:e5:52:26:97:27:0d:31:6a:9c:3a:38:
52:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:53:D8:D7:97:06:87:C3:D1:02:7C:9C:06:60:70:2B:CE:25:F1:E8
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/6VPY15cGh8PRAnycBmBwK84l8eg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.238.0/24
Signature Algorithm: sha256WithRSAEncryption
48:79:43:2e:fe:ed:5d:93:46:85:25:4e:ea:57:e2:25:18:18:
c4:fc:7c:eb:32:e9:20:c0:f9:54:24:4e:67:de:ac:32:53:97:
65:7a:f0:a7:f3:9a:dc:be:9b:bd:86:dd:ee:0e:06:18:b7:38:
cd:e2:54:b0:6e:ee:d9:b3:0b:67:0c:08:a4:8e:0d:84:5c:b4:
cc:f4:a2:a1:b7:8d:09:92:52:0e:8a:d3:03:9e:62:3a:ee:c9:
e4:e7:55:19:ed:87:1d:d4:cd:3e:ac:93:5e:44:49:52:45:bb:
a9:72:52:67:79:f9:c1:d7:56:da:b4:5b:4c:f8:c9:ea:36:23:
de:6e:cf:f2:30:24:a3:20:99:71:77:d6:42:4a:51:19:78:44:
b1:b5:cb:aa:75:c0:e7:f2:d8:a7:96:10:a0:7a:9c:ba:05:aa:
c3:10:99:c4:3d:34:c3:56:1e:93:74:84:7d:a2:3e:0d:99:4c:
e1:5d:16:f9:36:69:77:0c:e2:f0:57:31:1a:74:41:10:fe:b2:
f4:89:7a:6b:1b:02:6d:20:86:a6:13:6c:ed:c0:e8:dd:9f:ae:
dc:61:e4:06:f5:11:75:a5:fb:2e:fc:d3:12:9d:6e:2e:dc:8f:
17:fb:5c:88:5f:ac:d5:ea:57:8b:6a:d9:7e:c6:60:0c:bc:c8:
5c:ec:8d:04
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTAyMTAx
NDA0MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5NTNEOEQ3OTcwNjg3
QzNEMTAyN0M5QzA2NjA3MDJCQ0UyNUYxRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDN1WKlfHihjgifx5Lk1fpYkN7guRIwi3EIHCwteJR9Vc7+ylmE
hpA5OHLBB7csOd7PwLYRLwvEOZJbBqpTEjoMB3uNnJ5wuBYfeB9v5HcpfJP0Y2a1
OJMrq6bHWCB64WwFjLRKFfo2yXnrLGpeKe55QoIm60F1YfMCZb3D19A3okamBYhP
0DeAWybKJYH+yiscTlrU/ZA7eGNx19PJ1ocrGI+DBxKFknYFFQ+qX1BTGC4BZ3oH
GC2vLyWedpIxPKUv9o8WaRDvL/tfyrIKvPYqcKDgAfSidD1rj5QCqB+qd6rCLVaK
afTbJYsHyvCM9dIj2b/lUiaXJw0xapw6OFKjAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU6VPY15cGh8PRAnycBmBwK84l8egwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy82VlBZMTVjR2g4UFJB
bnljQm1Cd0s4NGw4ZWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAPUHuMA0GCSqGSIb3DQEBCwUAA4IBAQBIeUMu/u1dk0aFJU7qV+IlGBjE/Hzr
MukgwPlUJE5n3qwyU5dlevCn85rcvpu9ht3uDgYYtzjN4lSwbu7ZswtnDAikjg2E
XLTM9KKht40JklIOitMDnmI67snk51UZ7Ycd1M0+rJNeRElSRbupclJnefnB11ba
tFtM+MnqNiPebs/yMCSjIJlxd9ZCSlEZeESxtcuqdcDn8tinlhCgepy6BarDEJnE
PTTDVh6TdIR9oj4NmUzhXRb5Nml3DOLwVzEadEEQ/rL0iXprGwJtIIamE2ztwOjd
n67cYeQG9RF1pfsu/NMSnW4u3I8X+1yIX6zV6leLatl+xmAMvMhc7I0E
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:01:10 2025 by rpki-client