Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/CmY3nYAWfq72kZfELU-dXrCtuxg.roa
File: CmY3nYAWfq72kZfELU-dXrCtuxg.roa (raw, json)
Hash identifier: s3ArnqZSWaHwPELsEHU+TNjryLvEmysCvXaJtXRhYOs=
Subject key identifier: 0A:66:37:9D:80:16:7E:AE:F6:91:97:C4:2D:4F:9D:5E:B0:AD:BB:18
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 102D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CmY3nYAWfq72kZfELU-dXrCtuxg.roa
Signing time: Mon 26 Aug 2024 05:16:09 +0000
ROA not before: Mon 26 Aug 2024 05:16:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 222.156.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4141 (0x102d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0A66379D80167EAEF69197C42D4F9D5EB0ADBB18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1e:2e:1b:06:60:d3:c1:bc:12:a6:14:f4:2b:
d8:e8:4b:bd:98:06:8e:bf:c8:fe:93:c6:e6:bb:e0:
f6:6b:5b:f4:b9:21:52:0e:da:e6:89:6e:04:f1:99:
6f:b0:ce:fc:a9:3e:5b:9c:ff:90:fd:4c:52:f1:d3:
5c:d1:3b:72:9e:8d:83:a9:4d:4f:17:8c:02:a2:a4:
5b:fc:70:06:3c:d5:e9:ee:58:49:c1:e7:f0:b2:86:
08:ee:ce:8b:7a:38:06:1f:03:80:a1:57:f6:54:14:
f6:2f:fa:fa:a4:d0:02:9f:93:8a:cc:13:c7:b3:fb:
65:2e:28:f4:82:00:6c:72:9f:fb:fa:c1:a4:25:7b:
c7:f7:60:08:8c:7c:60:58:ee:92:a3:95:9d:17:a3:
8e:c1:4f:b7:9c:cb:f7:82:65:5b:d7:66:bb:87:b9:
3f:68:ac:f7:12:cc:d2:54:93:da:87:65:5e:29:de:
99:f9:7b:e9:68:71:78:fe:2d:a1:7c:fc:f3:2c:84:
55:a5:62:18:22:f3:c4:c5:5e:ad:a5:b6:0c:13:84:
f5:30:71:08:81:19:79:a8:10:25:15:ac:df:fe:9c:
8d:d7:91:1f:5a:b0:fb:d6:cc:d4:5e:b3:88:c4:e1:
5e:d3:55:70:78:dd:cf:02:a4:44:5e:07:8b:55:8f:
8b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:66:37:9D:80:16:7E:AE:F6:91:97:C4:2D:4F:9D:5E:B0:AD:BB:18
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CmY3nYAWfq72kZfELU-dXrCtuxg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.246.0/24
Signature Algorithm: sha256WithRSAEncryption
97:61:38:b6:68:7c:ab:36:10:d4:ce:9d:28:7b:e0:4b:95:a9:
b4:c5:e8:2c:87:5c:27:94:ff:54:35:48:41:a8:1a:8a:2a:90:
24:57:bd:34:08:ea:28:b3:58:fe:c2:e6:15:22:5e:02:f3:e5:
ed:37:23:8a:b1:d5:12:e0:7f:3a:66:f6:aa:06:e5:e5:ba:50:
5a:78:4c:de:fc:96:43:af:90:67:7e:3c:f5:6f:d1:d5:5f:25:
b7:61:da:07:03:25:a6:ed:50:27:27:c9:2a:5f:23:62:e2:54:
7e:bc:8a:54:a9:29:4f:aa:e2:8d:ee:e5:5b:e1:f5:2b:1e:b7:
88:15:01:02:15:25:0e:b0:de:07:97:db:cd:22:73:a8:2b:d3:
5b:c9:13:03:f4:e2:6b:9a:d7:2d:a1:8c:1d:3d:e9:00:5b:79:
73:bb:33:11:68:da:95:c4:aa:a8:4f:51:4d:69:27:72:d3:9f:
5d:c5:da:b7:53:44:d5:ff:c5:fe:19:d5:93:df:ed:4f:d3:d8:
60:b4:52:23:4d:8f:60:8d:93:e1:d1:da:a6:a6:21:b9:db:4d:
03:ef:11:07:ab:3c:a4:9f:07:4f:e0:fe:8a:be:50:2e:0d:1c:
c1:17:b8:00:0b:e1:51:d8:16:e9:bb:9c:6e:8b:ee:ca:61:d2:
af:a1:c3:6c
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw
NTE2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBBNjYzNzlEODAxNjdF
QUVGNjkxOTdDNDJENEY5RDVFQjBBREJCMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFHi4bBmDTwbwSphT0K9joS72YBo6/yP6Txua74PZrW/S5IVIO
2uaJbgTxmW+wzvypPluc/5D9TFLx01zRO3KejYOpTU8XjAKipFv8cAY81enuWEnB
5/Cyhgjuzot6OAYfA4ChV/ZUFPYv+vqk0AKfk4rME8ez+2UuKPSCAGxyn/v6waQl
e8f3YAiMfGBY7pKjlZ0Xo47BT7ecy/eCZVvXZruHuT9orPcSzNJUk9qHZV4p3pn5
e+locXj+LaF8/PMshFWlYhgi88TFXq2ltgwThPUwcQiBGXmoECUVrN/+nI3XkR9a
sPvWzNRes4jE4V7TVXB43c8CpEReB4tVj4v5AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUCmY3nYAWfq72kZfELU+dXrCtuxgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0NtWTNuWUFXZnE3MmtaZkVMVS1kWHJD
dHV4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADenPYwDQYJ
KoZIhvcNAQELBQADggEBAJdhOLZofKs2ENTOnSh74EuVqbTF6CyHXCeU/1Q1SEGo
GooqkCRXvTQI6iizWP7C5hUiXgLz5e03I4qx1RLgfzpm9qoG5eW6UFp4TN78lkOv
kGd+PPVv0dVfJbdh2gcDJabtUCcnySpfI2LiVH68ilSpKU+q4o3u5Vvh9Sset4gV
AQIVJQ6w3geX280ic6gr01vJEwP04mua1y2hjB096QBbeXO7MxFo2pXEqqhPUU1p
J3LTn13F2rdTRNX/xf4Z1ZPf7U/T2GC0UiNNj2CNk+HR2qamIbnbTQPvEQerPKSf
B0/g/oq+UC4NHMEXuAAL4VHYFum7nG6L7sph0q+hw2w=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:35 2025 by rpki-client