Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5VhewOnd-GMB3mt9tAelGyEtdNU.roa
File: 5VhewOnd-GMB3mt9tAelGyEtdNU.roa (raw, json)
Hash identifier: h834sHSFhxu5VxZznS2CD3Meu9w/84KNNgjLU8W8ocs=
Subject key identifier: E5:58:5E:C0:E9:DD:F8:63:01:DE:6B:7D:B4:07:A5:1B:21:2D:74:D5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16F2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5VhewOnd-GMB3mt9tAelGyEtdNU.roa
Signing time: Mon 26 Aug 2024 05:22:49 +0000
ROA not before: Mon 26 Aug 2024 05:22:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 122.146.108.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5874 (0x16f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E5585EC0E9DDF86301DE6B7DB407A51B212D74D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6c:aa:16:6b:c3:62:bd:bf:74:c4:52:a0:52:
63:38:fc:ed:ab:be:ca:48:c4:e6:72:7c:e3:84:f5:
6d:3a:2f:0e:13:77:f9:a5:5b:02:26:a4:b1:a9:50:
55:08:e4:4b:ed:fa:99:ff:f5:49:5a:0d:a6:87:d9:
a1:83:52:e6:5a:bc:33:d3:d0:3c:fa:36:9a:93:24:
79:5f:b7:23:c0:36:02:ab:58:6b:f3:3b:a8:c5:06:
3e:05:5d:f6:dc:8e:ca:e7:0f:64:b6:68:3c:ce:50:
1b:6b:2c:4c:c2:a6:9d:2c:2b:37:b4:63:a4:5f:ef:
d1:fd:43:05:c4:7e:d8:99:1a:cf:22:20:e4:1c:d6:
87:9c:60:81:a1:e7:03:38:f4:9b:75:5a:16:06:71:
e8:ed:54:aa:b9:d0:c1:1e:81:a8:8f:57:c4:5b:2d:
05:51:f5:29:ed:49:c2:e4:6b:7b:64:a3:d6:6a:77:
44:bc:95:fa:cd:c8:73:e6:95:d1:cd:26:7e:6e:53:
1a:12:ee:0d:7a:b7:69:00:48:8c:25:94:b1:1e:ef:
3a:11:56:09:91:f8:3b:42:b1:96:fb:9d:34:71:da:
65:b5:52:f2:bf:a9:54:55:5a:8e:f9:75:d6:58:f4:
e8:ec:af:9e:33:ae:d3:ce:94:10:27:e1:6e:73:55:
19:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:58:5E:C0:E9:DD:F8:63:01:DE:6B:7D:B4:07:A5:1B:21:2D:74:D5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5VhewOnd-GMB3mt9tAelGyEtdNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.108.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:98:e8:1e:fa:5c:77:73:bc:8a:09:59:24:75:4c:59:3a:11:
ba:a3:6b:dd:a2:c4:84:f4:b2:31:66:2c:8a:e1:33:7c:8e:29:
1d:b7:55:3f:e2:90:46:6b:6e:99:ed:1c:c7:ba:53:09:15:f4:
36:fb:89:d3:d3:14:c5:b5:84:07:46:ab:77:ea:e7:31:34:22:
3d:b3:56:8b:cd:19:02:30:50:ef:f2:29:01:5c:93:c0:39:c3:
60:c7:69:4e:ab:cd:12:52:20:3e:a7:63:88:48:ce:7a:36:f9:
8a:f9:0f:17:6a:5f:5a:08:60:91:da:de:89:7c:30:df:1a:40:
22:1a:eb:5e:a0:59:82:a6:4a:d1:e5:d3:d9:67:c0:93:4b:59:
09:f7:92:10:e0:d2:21:1b:8c:34:54:0b:22:e7:84:70:08:38:
0e:36:bd:1a:7f:d1:8c:25:2e:c6:90:e9:4a:63:be:e1:0f:eb:
f8:05:4d:59:d9:70:a6:75:cb:e5:3a:15:30:48:e1:9a:02:3d:
eb:c1:0f:52:2d:2b:4c:20:42:18:a2:1a:d0:6c:bd:09:0b:96:
f8:52:e6:7c:a5:df:ac:28:1d:82:8c:68:8f:b5:89:61:1b:57:
c9:39:da:eb:2d:86:5a:a5:9a:24:8a:f7:27:9b:61:9e:f8:e7:
97:cd:59:1e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1NTg1RUMwRTlEREY4
NjMwMURFNkI3REI0MDdBNTFCMjEyRDc0RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkbKoWa8Nivb90xFKgUmM4/O2rvspIxOZyfOOE9W06Lw4Td/ml
WwImpLGpUFUI5Evt+pn/9UlaDaaH2aGDUuZavDPT0Dz6NpqTJHlftyPANgKrWGvz
O6jFBj4FXfbcjsrnD2S2aDzOUBtrLEzCpp0sKze0Y6Rf79H9QwXEftiZGs8iIOQc
1oecYIGh5wM49Jt1WhYGcejtVKq50MEegaiPV8RbLQVR9SntScLka3tko9Zqd0S8
lfrNyHPmldHNJn5uUxoS7g16t2kASIwllLEe7zoRVgmR+DtCsZb7nTRx2mW1UvK/
qVRVWo75ddZY9Ojsr54zrtPOlBAn4W5zVRlNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5VhewOnd+GMB3mt9tAelGyEtdNUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNVZoZXdPbmQtR01CM210OXRBZWxH
eUV0ZE5VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXqSbDAN
BgkqhkiG9w0BAQsFAAOCAQEAwZjoHvpcd3O8iglZJHVMWToRuqNr3aLEhPSyMWYs
iuEzfI4pHbdVP+KQRmtume0cx7pTCRX0NvuJ09MUxbWEB0ard+rnMTQiPbNWi80Z
AjBQ7/IpAVyTwDnDYMdpTqvNElIgPqdjiEjOejb5ivkPF2pfWghgkdreiXww3xpA
IhrrXqBZgqZK0eXT2WfAk0tZCfeSEODSIRuMNFQLIueEcAg4Dja9Gn/RjCUuxpDp
SmO+4Q/r+AVNWdlwpnXL5ToVMEjhmgI968EPUi0rTCBCGKIa0Gy9CQuW+FLmfKXf
rCgdgoxoj7WJYRtXyTna6y2GWqWaJIr3J5thnvjnl81ZHg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:31 2025 by rpki-client