Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa
File: VaVVKchW3CP3DSDl4PK48y87Gd8.roa (raw, json)
Hash identifier: OGf/Ln98Opu9vpS+4q2EiyiTW2T07qX4B2o4Jw7/eno=
Subject key identifier: 55:A5:55:29:C8:56:DC:23:F7:0D:20:E5:E0:F2:B8:F3:2F:3B:19:DF
Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Certificate serial: 0C4B
Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa
Signing time: Mon 26 Aug 2024 05:12:27 +0000
ROA not before: Mon 26 Aug 2024 05:12:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 159.117.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3147 (0xc4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Validity
Not Before: Aug 26 05:12:27 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=55A55529C856DC23F70D20E5E0F2B8F32F3B19DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5f:d7:1b:53:e2:55:22:07:7f:cf:35:6c:66:
0c:7d:b3:3d:a5:1a:7b:ec:17:13:03:41:ca:96:73:
1f:1b:80:6e:95:40:28:25:4d:ea:ad:bb:fa:57:af:
41:ce:37:c2:0f:1a:02:6f:ef:77:2b:4c:cd:59:9b:
c1:81:a6:bf:72:29:fb:3b:16:9a:c7:1c:37:40:41:
d2:dd:ad:33:bf:22:85:3c:77:f1:46:b2:f5:cc:d5:
fb:e2:cd:f2:5f:a4:c3:a3:9f:12:5c:d1:ef:92:1e:
58:bf:53:1f:86:25:3f:52:13:6c:48:3e:90:e7:fa:
8f:33:a5:fc:dd:3b:74:78:13:e5:d7:fa:56:95:51:
b1:87:95:2c:33:ef:84:62:01:23:0c:6e:6c:92:2a:
eb:f3:b5:7d:95:00:38:ac:e2:b3:df:fe:c9:40:37:
63:c9:4d:f5:a3:83:91:50:f9:29:12:7a:95:ae:f5:
ab:22:11:bf:ff:ab:11:d9:64:aa:cd:a3:3d:ab:3f:
e0:e1:eb:b0:a0:d7:ed:b4:3f:a0:2b:a2:1d:b3:48:
88:fa:ea:39:3a:e2:23:ed:7c:77:7f:97:b7:43:1c:
4f:10:3b:02:80:0e:76:58:e9:5a:46:8e:3e:df:33:
a7:88:1e:1c:22:7d:47:95:f4:9d:cc:db:ee:b9:01:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A5:55:29:C8:56:DC:23:F7:0D:20:E5:E0:F2:B8:F3:2F:3B:19:DF
X509v3 Authority Key Identifier:
keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
159.117.84.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:59:60:e8:82:06:86:79:30:59:5a:d8:6e:59:db:6e:f6:a2:
0e:c8:ee:d6:a2:fe:92:32:27:1a:28:3d:8e:2a:7e:79:be:aa:
24:62:fc:b5:60:53:45:0e:43:47:56:36:b0:ef:a5:94:88:4d:
8a:88:d8:fd:b5:9c:d7:81:9b:00:88:e2:1b:13:65:cf:0f:57:
78:aa:23:d0:ac:67:de:72:af:ea:6f:b7:68:ee:ea:b3:2e:3b:
a2:b1:3e:6a:00:74:c7:6f:75:03:48:09:f1:06:7c:43:28:12:
e3:00:db:92:80:65:63:6b:6c:dc:02:37:ca:7d:8e:88:24:a0:
74:ab:69:2e:a1:fa:f9:d2:44:4e:92:b2:d7:d0:90:fc:c8:6a:
4e:33:d7:6f:ad:aa:78:0f:bb:8b:2a:43:dc:59:c7:63:0b:bd:
65:da:8a:eb:e2:0b:cb:d0:3b:46:23:08:60:ef:8f:77:cb:4e:
8c:f8:a5:4f:df:b8:1d:73:33:65:4c:4d:bc:21:d7:55:c5:2e:
9e:ad:4b:aa:14:1f:1b:e3:80:a2:aa:c8:39:87:5e:c2:c2:cc:
dc:ff:0b:fe:1b:66:01:37:60:10:ea:cc:92:c5:a4:5d:fa:90:
cd:28:5c:88:9e:03:c1:79:a3:85:87:76:a6:29:52:3f:ce:e9:
0b:5e:67:9d
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1
OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNDA4MjYw
NTEyMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1QTU1NTI5Qzg1NkRD
MjNGNzBEMjBFNUUwRjJCOEYzMkYzQjE5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDX9cbU+JVIgd/zzVsZgx9sz2lGnvsFxMDQcqWcx8bgG6VQCgl
Teqtu/pXr0HON8IPGgJv73crTM1Zm8GBpr9yKfs7FprHHDdAQdLdrTO/IoU8d/FG
svXM1fvizfJfpMOjnxJc0e+SHli/Ux+GJT9SE2xIPpDn+o8zpfzdO3R4E+XX+laV
UbGHlSwz74RiASMMbmySKuvztX2VADis4rPf/slAN2PJTfWjg5FQ+SkSepWu9asi
Eb//qxHZZKrNoz2rP+Dh67Cg1+20P6Aroh2zSIj66jk64iPtfHd/l7dDHE8QOwKA
DnZY6VpGjj7fM6eIHhwifUeV9J3M2+65ASvxAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUVaVVKchW3CP3DSDl4PK48y87Gd8wHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW
gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9WYVZWS2NoVzNDUDNE
U0RsNFBLNDh5ODdHZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAn3VUMA0GCSqGSIb3DQEBCwUAA4IBAQBvWWDoggaGeTBZWthuWdtu9qIOyO7W
ov6SMicaKD2OKn55vqokYvy1YFNFDkNHVjaw76WUiE2KiNj9tZzXgZsAiOIbE2XP
D1d4qiPQrGfecq/qb7do7uqzLjuisT5qAHTHb3UDSAnxBnxDKBLjANuSgGVja2zc
AjfKfY6IJKB0q2kuofr50kROkrLX0JD8yGpOM9dvrap4D7uLKkPcWcdjC71l2orr
4gvL0DtGIwhg7493y06M+KVP37gdczNlTE28IddVxS6erUuqFB8b44Ciqsg5h17C
wszc/wv+G2YBN2AQ6sySxaRd+pDNKFyIngPBeaOFh3amKVI/zukLXmed
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:01:08 2025 by rpki-client