Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/pMF5rrFbcESlPIQgkhNcUXpCK0U.roa
File: pMF5rrFbcESlPIQgkhNcUXpCK0U.roa (raw, json)
Hash identifier: Qe1A9Uyb/JF9UwGLoX3b8ktKwP0Wq3rDk324ljRtqSo=
Subject key identifier: A4:C1:79:AE:B1:5B:70:44:A5:3C:84:20:92:13:5C:51:7A:42:2B:45
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06BE
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/pMF5rrFbcESlPIQgkhNcUXpCK0U.roa
Signing time: Mon 26 Aug 2024 05:18:25 +0000
ROA not before: Mon 26 Aug 2024 05:18:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1726 (0x6be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4C179AEB15B7044A53C842092135C517A422B45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:74:15:88:cd:86:d7:be:96:c9:a2:6b:bd:0e:
f1:7c:e5:14:5e:7a:9b:4b:09:39:ed:26:46:f2:ad:
fd:c0:d7:f6:9a:44:37:85:35:1c:50:5c:5a:2c:a3:
23:46:fa:8c:3b:c9:57:97:e8:c0:d2:e4:ee:58:6e:
c7:5d:da:75:07:6e:23:71:2a:1d:64:11:f1:23:a0:
61:4d:61:4f:8e:f6:4a:a7:7a:3c:cb:89:27:4f:04:
73:ca:56:8c:a8:4b:2d:66:78:a3:33:ec:c3:e2:f5:
3c:8e:fb:9f:e6:99:7c:63:4e:ab:bb:a4:fe:5d:0b:
66:6f:ad:26:57:05:0b:00:0a:c9:f9:6f:24:ac:45:
05:1e:79:53:01:d7:b0:05:18:69:7d:13:6d:33:2e:
12:3c:b2:ee:27:de:6c:c6:f5:24:5f:b1:3b:89:64:
a3:e9:7f:ff:1b:ee:b8:96:58:39:f4:9a:50:27:f7:
60:ee:6b:1f:31:c7:27:b5:57:df:83:a7:e5:0b:8d:
a5:18:ac:be:11:90:c4:20:e8:82:bd:eb:4c:0c:2e:
d3:46:8e:67:87:2f:3f:3b:82:bd:b7:44:29:c3:bc:
cb:bf:b8:93:b2:ac:09:0f:32:cc:83:9e:2d:0b:d0:
9c:a2:c5:dc:8f:7f:c8:2a:6c:9f:b8:25:df:4f:92:
16:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C1:79:AE:B1:5B:70:44:A5:3C:84:20:92:13:5C:51:7A:42:2B:45
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/pMF5rrFbcESlPIQgkhNcUXpCK0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:15:21:54:9d:9e:20:63:0f:40:4f:b5:bf:ec:e2:4d:33:21:
9a:9f:07:81:0a:1f:cc:73:21:d8:6f:25:78:d1:13:6d:67:a5:
d7:82:39:04:2a:6a:63:9d:56:cd:a7:11:be:03:ce:f1:c6:55:
14:09:af:6a:1b:4b:36:33:97:7e:44:83:42:56:eb:a8:95:db:
db:37:de:25:a8:8d:fd:d7:35:78:b9:78:13:d6:49:a0:ad:7f:
e7:0a:a0:6f:13:6e:a8:33:25:8a:be:22:57:dd:4d:e0:7e:1c:
d2:05:b6:e9:be:90:2b:aa:83:1d:a8:bb:a6:bc:05:f9:44:b1:
dc:76:e3:17:d3:84:61:cd:25:f2:2e:ec:d4:1e:5b:83:95:d5:
48:0b:07:da:75:6d:f5:0b:75:3b:4b:41:0a:1e:e1:df:3c:04:
bc:0b:b8:7d:f6:75:58:5d:62:e5:20:c4:80:62:72:f9:04:11:
c9:15:84:c0:d4:9f:db:44:7b:b2:fe:79:43:57:73:50:00:26:
6f:7a:8c:bd:ff:78:38:81:6b:71:90:33:54:34:f8:3a:41:b7:
5f:67:06:c7:48:9a:01:81:40:5e:94:c0:17:b6:04:fb:d1:66:
0b:00:7d:df:d6:3d:a0:23:8a:8f:ef:12:46:2d:11:f5:e9:37:
65:96:0c:64
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw
NTE4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0QzE3OUFFQjE1Qjcw
NDRBNTNDODQyMDkyMTM1QzUxN0E0MjJCNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCudBWIzYbXvpbJomu9DvF85RReeptLCTntJkbyrf3A1/aaRDeF
NRxQXFosoyNG+ow7yVeX6MDS5O5Ybsdd2nUHbiNxKh1kEfEjoGFNYU+O9kqnejzL
iSdPBHPKVoyoSy1meKMz7MPi9TyO+5/mmXxjTqu7pP5dC2ZvrSZXBQsACsn5bySs
RQUeeVMB17AFGGl9E20zLhI8su4n3mzG9SRfsTuJZKPpf/8b7riWWDn0mlAn92Du
ax8xxye1V9+Dp+ULjaUYrL4RkMQg6IK960wMLtNGjmeHLz87gr23RCnDvMu/uJOy
rAkPMsyDni0L0JyixdyPf8gqbJ+4Jd9Pkha3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUpMF5rrFbcESlPIQgkhNcUXpCK0UwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3BNRjVyckZiY0VTbFBJUWdr
aE5jVVhwQ0swVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
erwwDQYJKoZIhvcNAQELBQADggEBAFsVIVSdniBjD0BPtb/s4k0zIZqfB4EKH8xz
IdhvJXjRE21npdeCOQQqamOdVs2nEb4DzvHGVRQJr2obSzYzl35Eg0JW66iV29s3
3iWojf3XNXi5eBPWSaCtf+cKoG8TbqgzJYq+IlfdTeB+HNIFtum+kCuqgx2ou6a8
BflEsdx24xfThGHNJfIu7NQeW4OV1UgLB9p1bfULdTtLQQoe4d88BLwLuH32dVhd
YuUgxIBicvkEEckVhMDUn9tEe7L+eUNXc1AAJm96jL3/eDiBa3GQM1Q0+DpBt19n
BsdImgGBQF6UwBe2BPvRZgsAfd/WPaAjio/vEkYtEfXpN2WWDGQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:09 2025 by rpki-client