Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/QVrJkv1hJsWVo2IcLCCEAoilQk4.roa
File: QVrJkv1hJsWVo2IcLCCEAoilQk4.roa (raw, json)
Hash identifier: fjmqmcZWXg73lP+nlTyAG6hfpjJ8SghS9VyVrEWr/80=
Subject key identifier: 41:5A:C9:92:FD:61:26:C5:95:A3:62:1C:2C:20:84:02:88:A5:42:4E
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0CA1
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/QVrJkv1hJsWVo2IcLCCEAoilQk4.roa
Signing time: Mon 26 Aug 2024 05:12:30 +0000
ROA not before: Mon 26 Aug 2024 05:12:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 61.65.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3233 (0xca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Aug 26 05:12:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=415AC992FD6126C595A3621C2C20840288A5424E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:43:2d:9a:d3:61:4c:4b:a1:af:6c:d2:b9:69:
30:3a:f0:ba:aa:59:94:8f:58:73:6c:95:09:36:4c:
9f:1f:a2:ea:aa:66:eb:3b:79:2f:55:a0:41:41:78:
e9:5a:90:6d:8b:7d:4e:2a:51:84:2a:f2:de:56:bb:
9b:90:5a:93:6e:e3:85:ce:4e:ba:34:1c:51:9f:86:
c5:75:5a:02:60:23:5f:e5:b0:11:3a:f1:6a:db:9e:
38:ed:2b:6d:35:f8:b1:a3:a3:ed:f0:6a:21:94:a6:
65:b8:16:11:75:ea:1f:ba:60:80:10:ae:fe:70:1a:
66:09:bc:11:8c:04:9e:45:6a:45:27:de:30:47:73:
d1:c9:f7:8a:a1:62:4c:55:f4:13:ef:78:c6:b4:c3:
36:4b:e8:c3:d0:94:b5:94:cf:f4:1d:cb:7d:fd:e7:
ee:d3:3e:e9:b9:01:4c:30:33:09:a9:52:72:b3:87:
8c:40:cb:24:e1:da:73:95:4f:b7:67:ff:00:53:f3:
c4:ca:2f:49:05:e7:08:17:96:43:a4:30:bd:1b:00:
fa:76:2f:68:69:cf:bf:6c:a5:86:2a:04:00:4a:00:
15:20:cc:87:3c:91:dd:92:59:72:91:44:fc:76:98:
d9:66:53:73:d8:89:1e:0b:13:4c:5d:f3:2b:20:1a:
86:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5A:C9:92:FD:61:26:C5:95:A3:62:1C:2C:20:84:02:88:A5:42:4E
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/QVrJkv1hJsWVo2IcLCCEAoilQk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:63:ee:55:dc:74:88:d4:c8:76:91:48:90:5b:40:cb:a1:a8:
95:70:6c:8c:19:e9:88:eb:7b:9b:ca:ad:66:9c:e9:f1:1e:df:
99:7e:b8:33:7c:2c:90:dd:da:ee:8c:16:72:e3:6a:57:bd:63:
38:fd:8d:86:46:47:92:40:d7:d4:40:57:5f:31:30:51:c6:a5:
f5:40:7a:2d:51:d1:b2:6e:9a:7b:af:48:4a:4e:8e:ad:3e:cd:
83:65:66:f9:63:f8:63:5b:63:6f:44:37:d4:72:17:22:b4:0e:
c0:70:94:69:5c:9f:29:77:dc:a9:46:f0:ac:5f:0f:e8:41:8e:
73:7d:d9:55:1f:17:42:1d:9e:18:c0:19:f7:2a:04:9a:a8:24:
26:3f:87:2b:35:d6:4e:bf:be:ef:9e:e6:b2:b2:d4:3c:22:67:
e8:0d:2f:95:6c:13:30:d5:bd:60:01:77:a6:eb:55:bb:2b:49:
46:4b:e2:2d:29:bb:11:8a:43:d2:79:ce:35:cc:61:3b:00:2a:
36:8d:9b:ce:dd:4e:d7:d9:46:1d:0f:2d:4a:10:2a:67:b4:93:
ba:2a:aa:b6:d4:2a:e6:b6:c3:90:3b:51:08:56:33:07:ef:9b:
eb:9b:8e:b5:f7:0b:f8:7c:a0:18:58:15:d7:dc:b1:fd:8c:90:
ac:5c:8e:96
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDA4MjYw
NTEyMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxNUFDOTkyRkQ2MTI2
QzU5NUEzNjIxQzJDMjA4NDAyODhBNTQyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFQy2a02FMS6GvbNK5aTA68LqqWZSPWHNslQk2TJ8fouqqZus7
eS9VoEFBeOlakG2LfU4qUYQq8t5Wu5uQWpNu44XOTro0HFGfhsV1WgJgI1/lsBE6
8WrbnjjtK201+LGjo+3waiGUpmW4FhF16h+6YIAQrv5wGmYJvBGMBJ5FakUn3jBH
c9HJ94qhYkxV9BPveMa0wzZL6MPQlLWUz/Qdy3395+7TPum5AUwwMwmpUnKzh4xA
yyTh2nOVT7dn/wBT88TKL0kF5wgXlkOkML0bAPp2L2hpz79spYYqBABKABUgzIc8
kd2SWXKRRPx2mNlmU3PYiR4LE0xd8ysgGoY7AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUQVrJkv1hJsWVo2IcLCCEAoilQk4wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9RVnJKa3YxaEpzV1Zv
MkljTENDRUFvaWxRazQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAPUHvMA0GCSqGSIb3DQEBCwUAA4IBAQBLY+5V3HSI1Mh2kUiQW0DLoaiVcGyM
GemI63ubyq1mnOnxHt+ZfrgzfCyQ3drujBZy42pXvWM4/Y2GRkeSQNfUQFdfMTBR
xqX1QHotUdGybpp7r0hKTo6tPs2DZWb5Y/hjW2NvRDfUchcitA7AcJRpXJ8pd9yp
RvCsXw/oQY5zfdlVHxdCHZ4YwBn3KgSaqCQmP4crNdZOv77vnuaystQ8ImfoDS+V
bBMw1b1gAXem61W7K0lGS+ItKbsRikPSec41zGE7ACo2jZvO3U7X2UYdDy1KECpn
tJO6Kqq21CrmtsOQO1EIVjMH75vrm4619wv4fKAYWBXX3LH9jJCsXI6W
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:17:48 2025 by rpki-client