Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa
File: zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa (raw, json)
Hash identifier: LgVIYCnDpCJX91dU09XcbhuBRmI+JulGnNMZABdT9Nw=
Subject key identifier: CF:37:DB:35:66:12:D9:25:B8:CA:C5:13:08:46:20:E3:1F:FA:A8:07
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1028
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa
Signing time: Mon 26 Aug 2024 05:13:26 +0000
ROA not before: Mon 26 Aug 2024 05:13:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:56:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4136 (0x1028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 26 05:13:26 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CF37DB356612D925B8CAC513084620E31FFAA807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bf:0d:7f:9c:60:b0:7c:60:74:20:6f:79:38:
fe:eb:ac:1e:4f:67:0b:21:06:4d:f5:c4:9d:7f:6a:
21:0b:75:ad:05:80:50:4c:74:ba:84:1b:9d:ef:52:
5b:51:d6:a4:8f:de:8f:42:89:99:17:ef:76:51:fd:
43:c8:0d:6c:8e:60:7a:28:e1:61:12:c1:d2:7d:8f:
c7:11:54:f4:a4:1b:95:db:44:ec:97:6f:50:48:82:
e5:15:9e:62:01:13:b6:f9:6f:aa:1f:f2:0b:55:7e:
60:39:e1:78:e6:a1:2c:5f:1e:a6:de:97:20:f3:5e:
bf:ec:a7:1a:6a:7d:38:4d:d7:0a:49:c3:34:b5:4f:
6c:31:68:71:d7:c7:88:df:52:f7:36:06:d8:c8:f2:
52:bd:2a:2b:79:07:78:e1:65:cf:78:64:b2:5f:59:
07:07:dd:45:0b:2f:1a:71:fd:55:fc:1c:4b:3a:f3:
2a:61:2b:f6:66:13:a3:c1:0d:7a:53:7b:43:cd:b8:
65:54:cf:10:18:f1:88:9f:8f:ba:5e:1d:50:ac:fd:
a3:90:b0:1d:9c:fd:64:ae:12:f6:a8:75:5f:89:a9:
fe:08:6c:f6:7e:c9:f4:33:20:29:57:44:7a:64:1a:
d3:05:66:f5:99:c0:67:df:92:c3:26:32:4c:4c:1c:
ef:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:37:DB:35:66:12:D9:25:B8:CA:C5:13:08:46:20:E3:1F:FA:A8:07
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/19
Signature Algorithm: sha256WithRSAEncryption
55:c9:60:e4:3b:e7:5e:79:b5:8e:53:9c:b3:b7:02:10:2c:ed:
de:68:d1:57:ad:1b:f6:fb:ca:3e:f0:44:4a:4b:6e:ad:13:84:
91:19:42:e8:19:df:39:6a:1e:ad:d4:d8:1d:6c:db:f1:6d:54:
3f:5f:96:e4:d3:50:9e:a2:64:96:27:39:60:01:b3:29:8e:b4:
b6:f4:b4:c7:84:ac:96:02:cf:2c:e2:83:13:b5:ae:49:c3:ff:
02:d2:8d:aa:47:b6:40:f2:de:e5:35:5f:97:a6:88:05:3c:ca:
a4:18:fe:4f:a8:4c:85:44:90:33:b2:72:7b:2e:e3:39:00:4f:
77:f5:a3:c1:b2:c9:54:f3:59:36:13:b6:13:e1:63:9f:e0:ec:
16:30:07:04:99:1e:e8:e2:83:f4:0b:27:28:ac:54:84:b5:2a:
28:e3:af:02:b9:ca:80:aa:7c:25:73:94:51:f7:08:4a:3d:35:
1b:d8:c9:37:78:c8:d5:2b:af:23:cb:a9:7e:b0:b6:06:8a:37:
72:24:3b:64:86:50:54:14:1b:41:49:6e:6c:ec:7a:11:30:03:
c2:3a:a6:b0:f5:18:9d:3f:77:87:72:06:eb:28:0b:45:fd:c1:
cc:06:12:fd:55:c9:ef:09:e2:22:19:54:3f:a4:cf:bb:e0:67:
c7:ea:cc:22
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICECgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw
NTEzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGMzdEQjM1NjYxMkQ5
MjVCOENBQzUxMzA4NDYyMEUzMUZGQUE4MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLvw1/nGCwfGB0IG95OP7rrB5PZwshBk31xJ1/aiELda0FgFBM
dLqEG53vUltR1qSP3o9CiZkX73ZR/UPIDWyOYHoo4WESwdJ9j8cRVPSkG5XbROyX
b1BIguUVnmIBE7b5b6of8gtVfmA54XjmoSxfHqbelyDzXr/spxpqfThN1wpJwzS1
T2wxaHHXx4jfUvc2BtjI8lK9Kit5B3jhZc94ZLJfWQcH3UULLxpx/VX8HEs68yph
K/ZmE6PBDXpTe0PNuGVUzxAY8Yifj7peHVCs/aOQsB2c/WSuEvaodV+Jqf4IbPZ+
yfQzIClXRHpkGtMFZvWZwGffksMmMkxMHO9bAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUzzfbNWYS2SW4ysUTCEYg4x/6qAcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvenpmYk5XWVMyU1c0eXNVVENFWWc0
eF82cUFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9gDAN
BgkqhkiG9w0BAQsFAAOCAQEAVclg5DvnXnm1jlOcs7cCECzt3mjRV60b9vvKPvBE
SkturROEkRlC6BnfOWoerdTYHWzb8W1UP1+W5NNQnqJklic5YAGzKY60tvS0x4Ss
lgLPLOKDE7WuScP/AtKNqke2QPLe5TVfl6aIBTzKpBj+T6hMhUSQM7Jyey7jOQBP
d/WjwbLJVPNZNhO2E+Fjn+DsFjAHBJke6OKD9AsnKKxUhLUqKOOvArnKgKp8JXOU
UfcISj01G9jJN3jI1SuvI8upfrC2Boo3ciQ7ZIZQVBQbQUlubOx6ETADwjqmsPUY
nT93h3IG6ygLRf3BzAYS/VXJ7wniIhlUP6TPu+Bnx+rMIg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:13 2025 by rpki-client