Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/h5ZVqSf_oxIZJC40ChTaeyDVxD8.roa
File: h5ZVqSf_oxIZJC40ChTaeyDVxD8.roa (raw, json)
Hash identifier: jYGA7KUeFJNTWWe2FkYMOGVgpo412g34yttfBfVCtxs=
Subject key identifier: 87:96:55:A9:27:FF:A3:12:19:24:2E:34:0A:14:DA:7B:20:D5:C4:3F
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 11BF
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/h5ZVqSf_oxIZJC40ChTaeyDVxD8.roa
Signing time: Mon 10 Feb 2025 14:26:58 +0000
ROA not before: Mon 10 Feb 2025 14:26:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 01 Apr 2025 05:28:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4543 (0x11bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Feb 10 14:26:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=879655A927FFA31219242E340A14DA7B20D5C43F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a6:6e:8a:8d:c7:eb:36:5c:4e:52:a8:92:23:
70:4c:4d:40:38:06:52:48:31:f4:00:b3:5b:67:df:
2b:23:35:2e:9c:72:a5:84:e3:a1:eb:fa:83:70:6c:
53:85:11:c3:75:f7:d8:7a:9c:c3:5c:50:8c:ec:3e:
53:a8:a6:95:dd:a9:cc:44:f9:52:66:24:0d:4a:be:
85:1f:b1:5e:66:23:ec:bc:0d:4e:fb:88:a6:75:71:
11:0e:f7:d6:da:ad:2c:95:40:19:25:80:c6:b2:37:
9c:91:20:9c:1d:89:cb:f5:cc:1c:3b:a4:ce:8d:fc:
9f:0f:75:11:97:17:28:05:b4:c3:80:1b:07:4f:ed:
30:26:bd:61:8c:86:e6:ee:80:8a:d9:01:27:ee:5d:
92:62:89:c0:ad:be:ef:a6:a8:ed:1b:12:81:5b:0e:
a1:8d:8e:85:7d:27:24:27:1c:fc:dc:e7:ce:a8:6e:
d9:a2:18:da:c3:39:69:8a:f2:79:45:61:e4:5f:2f:
21:a2:3f:27:8b:79:c0:08:4f:f2:a1:c1:aa:87:74:
0e:25:70:9a:4c:e7:fc:dd:cc:c5:ef:f4:ca:7a:8f:
41:9b:bb:2e:af:98:7e:6f:8b:b9:39:a3:19:dd:53:
9d:40:c3:87:f3:ab:83:b0:cb:f2:57:b4:2c:c6:64:
f4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:96:55:A9:27:FF:A3:12:19:24:2E:34:0A:14:DA:7B:20:D5:C4:3F
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/h5ZVqSf_oxIZJC40ChTaeyDVxD8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.242.0/23
Signature Algorithm: sha256WithRSAEncryption
69:0f:d8:96:f7:d6:aa:7e:9d:42:a8:02:cf:58:63:f0:af:0c:
2a:a9:6f:03:61:42:8f:78:34:e2:39:cb:c1:be:a5:30:90:a0:
f5:f2:90:ca:aa:dd:dd:34:7d:c8:89:83:33:3e:78:05:3e:bf:
36:55:d6:9a:c0:68:f9:4a:f2:fc:fa:0e:a8:be:5f:31:99:05:
ae:cb:fc:d0:e3:2f:1b:dd:48:c7:23:74:23:6a:8c:a7:1a:53:
e8:78:ad:78:66:b6:f9:cc:ea:47:18:a8:7a:98:be:91:59:a3:
84:39:1f:4e:13:f3:23:c8:c5:ac:9d:81:b4:a1:40:8b:86:2b:
b0:4f:1c:0b:45:dc:2c:4e:63:84:c2:a6:54:85:9c:b6:3a:6b:
8c:fe:27:b4:67:5e:3f:88:7a:b7:4c:4b:6c:71:05:ae:64:f2:
13:fa:7a:ef:87:60:82:94:20:64:fe:a3:91:a8:ef:ff:77:0d:
35:0a:63:a4:ac:7a:cb:91:44:09:40:32:2c:53:96:56:ab:9d:
fa:b6:31:c7:4a:a0:99:fc:0e:8c:1e:4b:ee:ea:49:e6:53:e1:
c8:00:d4:19:3e:cb:7e:14:2f:84:9f:03:72:47:95:fb:fa:c5:
42:9e:69:39:40:99:f1:72:91:f4:4d:0e:fb:e8:95:15:e8:5d:
6f:f1:e0:32
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3
MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yNTAyMTAx
NDI2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg3OTY1NUE5MjdGRkEz
MTIxOTI0MkUzNDBBMTREQTdCMjBENUM0M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDpm6KjcfrNlxOUqiSI3BMTUA4BlJIMfQAs1tn3ysjNS6ccqWE
46Hr+oNwbFOFEcN199h6nMNcUIzsPlOoppXdqcxE+VJmJA1KvoUfsV5mI+y8DU77
iKZ1cREO99barSyVQBklgMayN5yRIJwdicv1zBw7pM6N/J8PdRGXFygFtMOAGwdP
7TAmvWGMhubugIrZASfuXZJiicCtvu+mqO0bEoFbDqGNjoV9JyQnHPzc586obtmi
GNrDOWmK8nlFYeRfLyGiPyeLecAIT/KhwaqHdA4lcJpM5/zdzMXv9Mp6j0Gbuy6v
mH5vi7k5oxndU51Aw4fzq4Owy/JXtCzGZPTtAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUh5ZVqSf/oxIZJC40ChTaeyDVxD8wHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b
Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ
TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9oNVpWcVNmX294SVpK
QzQwQ2hUYWV5RFZ4RDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ3/yMA0GCSqGSIb3DQEBCwUAA4IBAQBpD9iW99aqfp1CqALPWGPwrwwqqW8D
YUKPeDTiOcvBvqUwkKD18pDKqt3dNH3IiYMzPngFPr82VdaawGj5SvL8+g6ovl8x
mQWuy/zQ4y8b3UjHI3QjaoynGlPoeK14Zrb5zOpHGKh6mL6RWaOEOR9OE/MjyMWs
nYG0oUCLhiuwTxwLRdwsTmOEwqZUhZy2OmuM/ie0Z14/iHq3TEtscQWuZPIT+nrv
h2CClCBk/qORqO//dw01CmOkrHrLkUQJQDIsU5ZWq536tjHHSqCZ/A6MHkvu6knm
U+HIANQZPst+FC+EnwNyR5X7+sVCnmk5QJnxcpH0TQ776JUV6F1v8eAy
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:27:31 2025 by rpki-client