Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ETkOY4J4Tzs31PYmspbY8Npg4BM.roa
File: ETkOY4J4Tzs31PYmspbY8Npg4BM.roa (raw, json)
Hash identifier: LX0qAe1xbVb0+O59R1tyXE9U3J0K0QrZYMapqBjVARE=
Subject key identifier: 11:39:0E:63:82:78:4F:3B:37:D4:F6:26:B2:96:D8:F0:DA:60:E0:13
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1019
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ETkOY4J4Tzs31PYmspbY8Npg4BM.roa
Signing time: Mon 26 Aug 2024 05:16:03 +0000
ROA not before: Mon 26 Aug 2024 05:16:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9674
IP address blocks: 39.8.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4121 (0x1019)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=11390E6382784F3B37D4F626B296D8F0DA60E013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a8:dd:98:ab:3f:ff:20:ba:e7:4a:e5:53:89:
55:34:ba:2f:ba:2b:c8:dd:b8:ce:6f:4d:3c:07:16:
1d:22:60:c8:dc:73:6c:98:d7:f6:a1:ce:44:86:81:
3d:c5:70:1e:1c:48:89:bc:1d:ac:4e:a7:df:55:5e:
2d:31:a9:67:c6:56:e1:f1:bb:fb:50:58:34:6c:d4:
c5:fb:b1:53:f3:4b:60:7d:e4:f5:af:a3:89:36:13:
9f:49:b0:71:a2:cb:f0:83:a0:78:4f:54:41:e2:16:
af:15:0a:a0:c6:47:e6:98:41:b3:52:30:e8:98:a1:
87:80:86:65:18:12:18:78:59:6b:94:12:37:6a:09:
61:1e:4b:42:46:0b:d5:d4:20:23:8d:55:c5:6f:b7:
e1:4d:31:38:8a:4b:fe:41:7f:fb:ba:f5:b3:2b:24:
09:a2:de:97:df:fc:07:cc:9a:58:81:af:7d:a5:a3:
31:04:ff:ff:4e:0c:56:24:f5:f2:7c:9d:a8:d6:97:
e3:aa:40:61:b3:ed:51:78:6b:74:0e:cb:cd:ef:6e:
d6:e6:7d:20:68:99:02:03:5c:0c:98:2f:ad:1e:76:
d5:e9:7d:b0:e2:43:95:a9:48:33:5c:37:fc:49:31:
67:6d:36:8f:9f:4f:ea:88:df:59:63:8c:6b:dc:ea:
f0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:39:0E:63:82:78:4F:3B:37:D4:F6:26:B2:96:D8:F0:DA:60:E0:13
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ETkOY4J4Tzs31PYmspbY8Npg4BM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.8.0.0/13
Signature Algorithm: sha256WithRSAEncryption
07:19:4e:af:43:1c:00:21:c8:11:84:3f:4b:4e:04:a7:88:d9:
dc:c8:15:e3:81:a2:0b:f0:a3:a8:89:3f:f7:16:6b:ea:1b:f4:
b6:07:a0:98:0c:b6:28:dd:9c:9a:dc:3a:a6:3f:25:d2:3e:af:
db:f8:d6:39:66:e5:8a:aa:89:dd:d7:5b:9b:fb:92:f9:b9:79:
ef:02:9d:4c:38:f6:08:a3:71:2c:73:2c:72:89:f7:b4:f3:6c:
23:21:40:e3:ab:ef:8b:8a:96:04:7f:20:b4:a8:21:c1:0e:d8:
15:c9:c4:f0:cc:63:32:a3:24:bc:bb:d1:60:4b:ab:ee:5a:f0:
35:45:a6:63:42:59:ff:92:d9:5a:5c:0f:1d:55:2a:50:94:91:
26:9b:fe:f1:f7:34:e6:2a:c6:94:91:c7:d5:0f:94:6f:ca:ba:
2a:d8:df:6b:f8:fa:2e:20:fa:55:21:9d:f2:f8:42:46:3f:30:
dc:c5:8e:67:ca:ec:f5:63:5a:16:82:2e:35:b1:d1:a2:b1:0d:
e9:54:c0:cb:45:47:47:1e:70:cb:55:6f:4e:5a:75:14:e9:e2:
4b:f1:63:1c:e0:95:88:8a:8f:4e:66:35:9f:2c:c1:7e:86:f1:
44:27:5f:1d:7c:17:da:e4:93:01:16:bd:01:bf:e4:84:4f:59:
0e:f5:8c:97
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICEBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw
NTE2MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExMzkwRTYzODI3ODRG
M0IzN0Q0RjYyNkIyOTZEOEYwREE2MEUwMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbqN2Yqz//ILrnSuVTiVU0ui+6K8jduM5vTTwHFh0iYMjcc2yY
1/ahzkSGgT3FcB4cSIm8HaxOp99VXi0xqWfGVuHxu/tQWDRs1MX7sVPzS2B95PWv
o4k2E59JsHGiy/CDoHhPVEHiFq8VCqDGR+aYQbNSMOiYoYeAhmUYEhh4WWuUEjdq
CWEeS0JGC9XUICONVcVvt+FNMTiKS/5Bf/u69bMrJAmi3pff/AfMmliBr32lozEE
//9ODFYk9fJ8najWl+OqQGGz7VF4a3QOy83vbtbmfSBomQIDXAyYL60edtXpfbDi
Q5WpSDNcN/xJMWdtNo+fT+qI31ljjGvc6vBtAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUETkOY4J4Tzs31PYmspbY8Npg4BMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0VUa09ZNEo0VHpzMzFQWW1zcGJZOE5w
ZzRCTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwMnCDANBgkq
hkiG9w0BAQsFAAOCAQEABxlOr0McACHIEYQ/S04Ep4jZ3MgV44GiC/CjqIk/9xZr
6hv0tgegmAy2KN2cmtw6pj8l0j6v2/jWOWbliqqJ3ddbm/uS+bl57wKdTDj2CKNx
LHMscon3tPNsIyFA46vvi4qWBH8gtKghwQ7YFcnE8MxjMqMkvLvRYEur7lrwNUWm
Y0JZ/5LZWlwPHVUqUJSRJpv+8fc05irGlJHH1Q+Ub8q6Ktjfa/j6LiD6VSGd8vhC
Rj8w3MWOZ8rs9WNaFoIuNbHRorEN6VTAy0VHRx5wy1VvTlp1FOniS/FjHOCViIqP
TmY1nyzBfobxRCdfHXwX2uSTARa9Ab/khE9ZDvWMlw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:46 2025 by rpki-client