Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa
File: ggcJu91vAQpJDG_rTj-tLyt4qb8.roa (raw, json)
Hash identifier: oG00aEZEu95EV2Ppo6ZEWSCTwn/jYrVEFgrrFBobZ9s=
Subject key identifier: 82:07:09:BB:DD:6F:01:0A:49:0C:6F:EB:4E:3F:AD:2F:2B:78:A9:BF
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06D3
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa
Signing time: Mon 26 Aug 2024 05:18:30 +0000
ROA not before: Mon 26 Aug 2024 05:18:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.122.188.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1747 (0x6d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=820709BBDD6F010A490C6FEB4E3FAD2F2B78A9BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:51:6a:b4:5e:57:f4:27:4a:c2:21:13:8c:
83:a1:e7:44:01:ef:26:b1:1a:9d:3d:f1:72:1b:be:
46:8c:83:7c:03:c5:7e:a8:8d:b4:5f:7e:05:87:9c:
23:f3:78:2d:d2:56:6b:f9:fe:8e:cb:1d:69:ad:be:
92:3f:cc:40:c5:32:75:97:6a:5f:8f:d6:5a:ce:90:
20:cd:38:f4:67:7d:2d:56:77:37:40:f0:53:b1:8d:
3d:48:d7:47:db:c0:34:52:61:59:f8:af:0c:d3:fa:
9d:ea:26:57:c4:41:2d:0a:c1:24:b9:3a:25:e6:94:
2b:5c:73:9f:bc:7f:66:16:ba:95:bd:60:8e:62:c6:
3a:11:2d:6e:26:50:46:dd:c9:3b:61:ce:0e:7c:db:
16:26:8e:d6:d2:68:a1:09:66:69:e5:e0:c2:a5:47:
01:45:67:1b:d4:c0:7a:ef:b0:61:34:96:1d:2b:3a:
8b:f8:30:f2:f6:74:84:f3:2d:5d:4c:b6:d0:d0:b2:
5c:b8:6d:46:89:d8:60:36:25:9a:45:fd:fd:be:80:
9f:81:ad:6d:d4:fa:2b:2c:1b:cf:1c:97:07:55:1f:
05:d6:b7:d3:1e:6c:03:b9:a8:ac:44:66:55:0a:9b:
d7:40:a1:f3:7f:8a:e3:05:20:92:a2:4d:d4:d4:0c:
f3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:07:09:BB:DD:6F:01:0A:49:0C:6F:EB:4E:3F:AD:2F:2B:78:A9:BF
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:8f:f6:f5:33:be:e3:c3:30:cd:d2:f3:16:cc:f0:5a:0b:56:
59:a4:a7:57:c2:47:ad:13:d4:3b:1c:64:38:67:f6:69:52:4d:
aa:a1:de:b0:b8:65:99:24:2a:40:2b:da:a2:bd:fc:d6:2a:70:
28:f9:5b:b1:ce:68:54:06:f0:09:d0:56:4d:0b:f6:95:44:31:
58:88:3b:52:58:12:b6:bb:7d:51:ff:c2:43:bd:2f:ec:a8:6a:
51:d5:cc:31:da:15:d1:fd:5e:28:d3:8a:1d:bd:09:fe:eb:26:
ee:cf:74:84:26:55:0c:49:bf:77:5a:c1:e7:06:73:39:bb:2b:
43:96:b0:87:24:a4:62:fd:6f:33:2a:eb:6e:7f:5b:b8:36:b1:
d8:c2:80:05:4c:6f:06:85:0e:92:32:6c:d2:d9:5d:a2:b1:e1:
9d:9f:70:55:61:1f:41:e2:47:b0:cf:82:89:fd:51:a5:3f:23:
5a:5d:db:12:00:34:be:5d:6d:66:7a:6e:7f:c2:8d:1e:1f:55:
9c:7e:3b:16:81:aa:f8:f0:3d:51:23:81:d1:3c:3f:2c:be:23:
d5:bd:f9:59:34:13:40:b3:e6:72:03:18:3f:56:9e:8d:7b:a9:
31:b7:60:09:e9:ef:91:e1:88:b2:35:c7:c5:df:7b:15:0c:52:
4f:0e:e0:b4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw
NTE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyMDcwOUJCREQ2RjAx
MEE0OTBDNkZFQjRFM0ZBRDJGMkI3OEE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7Q1FqtF5X9CdKwiETjIOh50QB7yaxGp098XIbvkaMg3wDxX6o
jbRffgWHnCPzeC3SVmv5/o7LHWmtvpI/zEDFMnWXal+P1lrOkCDNOPRnfS1WdzdA
8FOxjT1I10fbwDRSYVn4rwzT+p3qJlfEQS0KwSS5OiXmlCtcc5+8f2YWupW9YI5i
xjoRLW4mUEbdyTthzg582xYmjtbSaKEJZmnl4MKlRwFFZxvUwHrvsGE0lh0rOov4
MPL2dITzLV1MttDQsly4bUaJ2GA2JZpF/f2+gJ+BrW3U+issG88clwdVHwXWt9Me
bAO5qKxEZlUKm9dAofN/iuMFIJKiTdTUDPO3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUggcJu91vAQpJDG/rTj+tLyt4qb8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2dnY0p1OTF2QVFwSkRHX3JU
ai10THl0NHFiOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn
erwwDQYJKoZIhvcNAQELBQADggEBALCP9vUzvuPDMM3S8xbM8FoLVlmkp1fCR60T
1DscZDhn9mlSTaqh3rC4ZZkkKkAr2qK9/NYqcCj5W7HOaFQG8AnQVk0L9pVEMViI
O1JYEra7fVH/wkO9L+yoalHVzDHaFdH9XijTih29Cf7rJu7PdIQmVQxJv3dawecG
czm7K0OWsIckpGL9bzMq625/W7g2sdjCgAVMbwaFDpIybNLZXaKx4Z2fcFVhH0Hi
R7DPgon9UaU/I1pd2xIANL5dbWZ6bn/CjR4fVZx+OxaBqvjwPVEjgdE8Pyy+I9W9
+Vk0E0Cz5nIDGD9Wno17qTG3YAnp75HhiLI1x8XfexUMUk8O4LQ=
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:48 2025 by rpki-client