Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5UOkCHr6XkHKx7jUkCJpyYEdbD0.roa
File: 5UOkCHr6XkHKx7jUkCJpyYEdbD0.roa (raw, json)
Hash identifier: hwLmfIO/ZjFOBpzLlcq6mblee8DVIl3XQwynGPcmDps=
Subject key identifier: E5:43:A4:08:7A:FA:5E:41:CA:C7:B8:D4:90:22:69:C9:81:1D:6C:3D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 160F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5UOkCHr6XkHKx7jUkCJpyYEdbD0.roa
Signing time: Mon 26 Aug 2024 05:21:43 +0000
ROA not before: Mon 26 Aug 2024 05:21:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 210.244.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5647 (0x160f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E543A4087AFA5E41CAC7B8D4902269C9811D6C3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:98:d4:50:b1:ab:7c:1d:81:68:85:06:b7:
4a:c5:19:7b:ee:44:04:9a:be:00:52:77:6e:d6:7b:
4b:fe:e7:bc:91:3d:a9:51:b0:ed:2f:3e:0a:5f:bb:
01:f8:cd:7e:74:94:ab:10:3a:43:63:8a:af:45:64:
65:03:a2:44:bb:d9:b4:d7:e4:ca:ff:e5:80:64:c9:
0d:2a:b7:0c:50:e2:37:03:82:49:b0:21:31:ea:85:
58:94:57:11:19:27:98:dc:23:5f:aa:dd:f3:f6:02:
84:32:cb:6b:f8:86:84:93:1f:aa:bf:51:5a:2a:92:
b0:08:eb:80:66:14:da:4a:6d:b6:92:6b:84:5b:22:
a2:29:74:8e:d0:d2:22:e8:55:a0:16:95:01:18:95:
a9:79:c3:b1:eb:af:bc:2a:49:8b:be:86:58:83:41:
b0:6b:77:a5:52:ad:e6:35:d9:ee:ba:d5:14:b1:73:
c3:0b:a7:a4:66:38:6f:80:ce:e6:43:48:61:b1:98:
f5:99:7c:98:f8:bc:a9:a1:63:2f:50:44:ae:ad:05:
f4:5e:ce:5c:41:1b:58:f0:38:39:8c:b4:2a:98:4c:
fe:fe:37:0a:66:a0:71:5c:a9:d3:05:b4:8e:ac:0e:
39:d8:f0:76:d1:e8:04:cc:e7:2a:11:72:12:d0:73:
55:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:43:A4:08:7A:FA:5E:41:CA:C7:B8:D4:90:22:69:C9:81:1D:6C:3D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5UOkCHr6XkHKx7jUkCJpyYEdbD0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
be:2b:69:b8:bf:9b:fc:52:33:75:e9:05:0d:7d:bd:f4:c1:66:
1e:bd:0d:e0:dd:88:76:9e:02:2e:dd:50:e8:3a:6d:e3:a2:42:
5a:a3:9c:fa:c5:70:76:32:07:38:b3:07:8e:9a:e8:0c:39:2c:
38:fa:5a:85:08:11:20:34:e2:bb:81:55:e4:02:c0:82:aa:36:
a7:e6:1f:2a:5e:fd:d0:a4:b5:86:68:85:6f:14:fa:85:0b:99:
0f:b4:56:bf:d5:26:bd:73:9b:31:98:89:21:eb:4d:61:f0:23:
4a:9d:47:a4:09:8b:01:92:fe:95:a7:ac:c9:18:0b:a2:66:75:
64:b2:98:24:0c:ba:fd:4e:b8:3f:af:45:98:41:47:8f:2d:44:
02:69:ea:d4:96:39:72:31:5b:7e:4c:cb:23:aa:1b:b8:b0:f9:
cb:e8:a4:45:61:e8:2f:27:d2:76:76:a8:56:46:4f:e6:7d:63:
7a:fa:3c:fa:34:f5:ae:c3:c1:90:1d:0a:45:f2:c9:85:2e:f1:
aa:19:b2:fe:b0:74:30:3a:ff:5c:38:a7:04:b7:61:ac:d3:e1:
a4:8f:c5:5c:65:ce:00:2a:67:57:b6:df:b3:03:bb:7c:32:a6:
45:39:1d:4c:a3:18:04:62:99:80:0b:6d:1d:61:7a:5f:aa:95:
95:81:bc:1b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIxNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1NDNBNDA4N0FGQTVF
NDFDQUM3QjhENDkwMjI2OUM5ODExRDZDM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEoZjUULGrfB2BaIUGt0rFGXvuRASavgBSd27We0v+57yRPalR
sO0vPgpfuwH4zX50lKsQOkNjiq9FZGUDokS72bTX5Mr/5YBkyQ0qtwxQ4jcDgkmw
ITHqhViUVxEZJ5jcI1+q3fP2AoQyy2v4hoSTH6q/UVoqkrAI64BmFNpKbbaSa4Rb
IqIpdI7Q0iLoVaAWlQEYlal5w7Hrr7wqSYu+hliDQbBrd6VSreY12e661RSxc8ML
p6RmOG+AzuZDSGGxmPWZfJj4vKmhYy9QRK6tBfRezlxBG1jwODmMtCqYTP7+Nwpm
oHFcqdMFtI6sDjnY8HbR6ATM5yoRchLQc1WTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5UOkCHr6XkHKx7jUkCJpyYEdbD0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNVVPa0NIcjZYa0hLeDdqVWtDSnB5
WUVkYkQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANL0YTAN
BgkqhkiG9w0BAQsFAAOCAQEAvitpuL+b/FIzdekFDX299MFmHr0N4N2Idp4CLt1Q
6Dpt46JCWqOc+sVwdjIHOLMHjproDDksOPpahQgRIDTiu4FV5ALAgqo2p+YfKl79
0KS1hmiFbxT6hQuZD7RWv9UmvXObMZiJIetNYfAjSp1HpAmLAZL+laesyRgLomZ1
ZLKYJAy6/U64P69FmEFHjy1EAmnq1JY5cjFbfkzLI6obuLD5y+ikRWHoLyfSdnao
VkZP5n1jevo8+jT1rsPBkB0KRfLJhS7xqhmy/rB0MDr/XDinBLdhrNPhpI/FXGXO
ACpnV7bfswO7fDKmRTkdTKMYBGKZgAttHWF6X6qVlYG8Gw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:57 2025 by rpki-client