Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa
File: qlydHYs3KJVz06YUKOm2SFa0Cd8.roa (raw, json)
Hash identifier: pAi+fUFDX9MgGMWXI96WedHhTCoDGNsJ70jmM5f3CWY=
Subject key identifier: AA:5C:9D:1D:8B:37:28:95:73:D3:A6:14:28:E9:B6:48:56:B4:09:DF
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0C98
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa
Signing time: Mon 26 Aug 2024 05:12:27 +0000
ROA not before: Mon 26 Aug 2024 05:12:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 61.65.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3224 (0xc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Aug 26 05:12:27 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AA5C9D1D8B37289573D3A61428E9B64856B409DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:67:bf:ec:6c:9e:9e:a6:f0:9f:19:11:9f:d5:
38:ab:9f:16:b9:ee:89:61:88:50:4c:7b:7a:35:a5:
70:e2:01:31:4c:9e:fa:83:71:c5:b9:b5:1b:74:4d:
f8:11:b6:c3:32:02:3b:9f:2b:3d:48:84:8d:75:dc:
a3:fd:03:45:a9:ac:73:64:e9:16:af:7b:41:76:9e:
bc:97:35:4c:e7:4e:cc:d7:1c:46:cc:de:0e:49:05:
c0:85:6d:ee:4a:94:b7:d0:b3:95:16:4c:c9:f9:c4:
2b:01:58:06:8b:2a:98:fd:00:b2:46:27:01:03:53:
dd:c7:25:a6:1f:66:a4:ed:a1:f2:cd:c0:8f:31:6a:
f5:46:a4:27:cf:2b:96:94:30:5e:08:e4:04:d1:18:
28:e2:ec:80:98:21:a1:c1:a2:f0:e5:a2:d0:53:7e:
69:84:db:1c:a1:f7:fa:d2:fd:4b:eb:c4:2b:c2:fc:
00:b5:3f:e7:41:18:0a:01:34:3e:8e:de:54:d0:d5:
d6:8a:48:2c:8b:a0:a1:32:e7:72:30:50:fa:dc:ab:
e2:24:1e:df:89:b4:28:0f:5d:7e:33:18:1e:3a:b0:
96:a3:84:7b:5c:9b:ed:07:5f:7c:e7:50:44:68:a5:
ed:c6:3f:6e:81:ff:71:e9:5b:04:51:8e:df:4e:2f:
fb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5C:9D:1D:8B:37:28:95:73:D3:A6:14:28:E9:B6:48:56:B4:09:DF
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:5e:f4:3f:b7:b4:1c:3e:82:b0:2c:af:e0:65:90:3c:4c:96:
ab:c0:52:0c:59:7b:9c:f4:d9:a2:82:ec:91:56:ec:bb:82:d5:
f8:a7:ef:fe:26:ab:c7:d8:43:5a:7f:ef:46:2b:b2:6e:4f:aa:
9c:ec:fa:e4:17:eb:57:b3:d2:13:48:cd:e1:e8:24:42:bf:88:
d9:f6:ac:37:e8:11:09:f8:23:e2:1b:9e:55:1b:9a:84:27:fe:
51:5b:19:0f:a5:ab:4e:af:30:1f:8e:df:f1:16:cc:81:11:d6:
0d:f1:e0:5f:dd:91:fa:0e:02:73:cc:da:34:7d:0e:f4:d4:0b:
19:0f:21:52:ec:81:7d:58:72:65:8f:34:31:ce:62:89:e2:c1:
67:5f:fb:68:f8:a3:ce:0c:25:cd:ae:f2:04:ea:6c:5a:7f:47:
e5:d5:04:41:a1:d3:d3:4e:8b:a6:19:02:0e:6a:8c:44:d0:7f:
8c:6e:14:e6:22:dc:ec:db:0c:c8:62:c3:45:51:ea:42:6d:38:
b8:44:c3:9a:2f:cb:bc:94:13:bb:e9:57:1d:c7:46:f1:d9:05:
a6:32:4c:96:ff:fc:fe:d4:3d:65:fd:60:df:e6:aa:d3:93:ed:
64:4f:a7:aa:28:64:49:49:13:6b:ca:5e:bb:0a:7b:07:28:11:
48:8b:53:f1
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDA4MjYw
NTEyMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBNUM5RDFEOEIzNzI4
OTU3M0QzQTYxNDI4RTlCNjQ4NTZCNDA5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGZ7/sbJ6epvCfGRGf1Tirnxa57olhiFBMe3o1pXDiATFMnvqD
ccW5tRt0TfgRtsMyAjufKz1IhI113KP9A0WprHNk6Rave0F2nryXNUznTszXHEbM
3g5JBcCFbe5KlLfQs5UWTMn5xCsBWAaLKpj9ALJGJwEDU93HJaYfZqTtofLNwI8x
avVGpCfPK5aUMF4I5ATRGCji7ICYIaHBovDlotBTfmmE2xyh9/rS/UvrxCvC/AC1
P+dBGAoBND6O3lTQ1daKSCyLoKEy53IwUPrcq+IkHt+JtCgPXX4zGB46sJajhHtc
m+0HX3znUERope3GP26B/3HpWwRRjt9OL/uBAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUqlydHYs3KJVz06YUKOm2SFa0Cd8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9xbHlkSFlzM0tKVnow
NllVS09tMlNGYTBDZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFPUHgMA0GCSqGSIb3DQEBCwUAA4IBAQBeXvQ/t7QcPoKwLK/gZZA8TJarwFIM
WXuc9NmiguyRVuy7gtX4p+/+JqvH2ENaf+9GK7JuT6qc7PrkF+tXs9ITSM3h6CRC
v4jZ9qw36BEJ+CPiG55VG5qEJ/5RWxkPpatOrzAfjt/xFsyBEdYN8eBf3ZH6DgJz
zNo0fQ701AsZDyFS7IF9WHJljzQxzmKJ4sFnX/to+KPODCXNrvIE6mxaf0fl1QRB
odPTToumGQIOaoxE0H+MbhTmItzs2wzIYsNFUepCbTi4RMOaL8u8lBO76Vcdx0bx
2QWmMkyW//z+1D1l/WDf5qrTk+1kT6eqKGRJSRNryl67CnsHKBFIi1Px
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:09:28 2025 by rpki-client