Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OaZ3vyG3Pcv_bHHImsQnTHLt_Oo.roa
File: OaZ3vyG3Pcv_bHHImsQnTHLt_Oo.roa (raw, json)
Hash identifier: fVvM7MneV6h5LAz1D9e5TASGME9DI5G9Qnr9Yl+RLWg=
Subject key identifier: 39:A6:77:BF:21:B7:3D:CB:FF:6C:71:C8:9A:C4:27:4C:72:ED:FC:EA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1602
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OaZ3vyG3Pcv_bHHImsQnTHLt_Oo.roa
Signing time: Mon 26 Aug 2024 05:21:41 +0000
ROA not before: Mon 26 Aug 2024 05:21:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 175.180.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5634 (0x1602)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=39A677BF21B73DCBFF6C71C89AC4274C72EDFCEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:06:15:97:61:fc:ba:ce:7e:e2:43:2e:6e:29:
35:0a:88:20:2f:46:35:0d:81:05:cb:41:37:91:ce:
9e:5d:ea:1f:7b:62:f5:af:a9:e0:4b:e8:a9:3d:31:
8f:bb:67:b3:78:97:10:44:56:6b:5b:9e:5b:c3:0f:
66:52:a8:36:6a:a6:bf:68:34:c0:79:aa:57:77:b8:
a4:97:f6:a9:04:44:e2:d1:5a:82:52:6a:5b:73:0d:
0f:5f:39:f8:c2:b0:61:d5:48:07:be:28:2a:30:9b:
f1:de:7d:93:4f:83:34:d5:9d:17:4f:78:89:b9:95:
35:5d:c3:ed:4b:cf:92:f9:b8:ca:2c:2e:cb:24:c8:
87:60:ba:59:00:6e:4a:c6:b7:35:5f:4c:73:da:1f:
3b:af:d1:77:76:e5:7a:57:13:f7:7e:51:ad:9a:a4:
34:f9:65:5e:b5:5f:3e:c5:90:d7:dc:6d:54:16:6a:
b0:b8:ba:e9:bf:b2:d8:1a:e2:d6:e5:46:a7:4f:48:
01:42:13:3c:e6:cc:95:82:47:54:18:e6:8e:a1:fd:
98:43:10:76:16:7c:6d:11:69:6d:cd:95:97:f0:c7:
5b:b0:36:65:5a:fd:05:d3:85:1c:93:ef:5f:8b:fc:
6c:19:98:6c:2c:01:7b:af:55:ac:c5:af:a7:37:a6:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A6:77:BF:21:B7:3D:CB:FF:6C:71:C8:9A:C4:27:4C:72:ED:FC:EA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OaZ3vyG3Pcv_bHHImsQnTHLt_Oo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/14
Signature Algorithm: sha256WithRSAEncryption
82:4d:5a:39:ef:fc:ce:ea:4b:d0:3e:63:2e:56:6f:34:26:4f:
e8:93:2d:45:12:6e:56:76:81:de:39:8b:57:15:cc:1b:fe:21:
db:25:bd:a6:ab:99:ef:43:95:d8:7c:ea:48:64:4b:21:97:21:
9c:bc:18:b5:2c:37:90:46:f5:e1:99:eb:72:87:77:8e:0e:09:
d2:cf:76:9d:5a:b6:11:f4:4a:90:17:e8:c4:62:65:af:da:8b:
18:1b:59:56:d2:59:25:80:5f:86:fe:ba:02:4d:7f:99:f0:ec:
26:9a:c1:48:15:e4:24:6a:3b:82:11:ca:d3:85:6a:0d:85:8c:
12:10:3f:97:6e:f6:d9:89:4c:80:75:fa:fa:e2:80:22:bb:1e:
27:e7:1b:6b:e3:b1:d6:35:ac:0d:e7:fd:39:39:8c:42:2e:2c:
b2:94:84:e5:ed:ff:3a:bd:b3:d0:be:ec:e1:46:92:25:4c:7d:
50:d4:40:89:92:69:1d:ff:3e:96:1c:cd:f8:39:a6:4b:9a:5c:
27:3a:9b:1e:bf:2e:65:98:f7:5c:d9:c2:4b:0e:8e:3a:42:b8:
68:c0:f7:49:4d:03:0c:4f:69:38:2f:61:19:b7:2c:75:f3:f2:
ca:06:ae:6e:1b:09:27:e5:b7:25:06:3e:e7:7d:3f:64:b5:9e:
d5:a3:05:ee
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICFgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIxNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM5QTY3N0JGMjFCNzNE
Q0JGRjZDNzFDODlBQzQyNzRDNzJFREZDRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJBhWXYfy6zn7iQy5uKTUKiCAvRjUNgQXLQTeRzp5d6h97YvWv
qeBL6Kk9MY+7Z7N4lxBEVmtbnlvDD2ZSqDZqpr9oNMB5qld3uKSX9qkEROLRWoJS
altzDQ9fOfjCsGHVSAe+KCowm/HefZNPgzTVnRdPeIm5lTVdw+1Lz5L5uMosLssk
yIdgulkAbkrGtzVfTHPaHzuv0Xd25XpXE/d+Ua2apDT5ZV61Xz7FkNfcbVQWarC4
uum/stga4tblRqdPSAFCEzzmzJWCR1QY5o6h/ZhDEHYWfG0RaW3NlZfwx1uwNmVa
/QXThRyT71+L/GwZmGwsAXuvVazFr6c3pgCjAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUOaZ3vyG3Pcv/bHHImsQnTHLt/OowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvT2FaM3Z5RzNQY3ZfYkhISW1zUW5U
SEx0X09vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAq+0MA0G
CSqGSIb3DQEBCwUAA4IBAQCCTVo57/zO6kvQPmMuVm80Jk/oky1FEm5WdoHeOYtX
Fcwb/iHbJb2mq5nvQ5XYfOpIZEshlyGcvBi1LDeQRvXhmetyh3eODgnSz3adWrYR
9EqQF+jEYmWv2osYG1lW0lklgF+G/roCTX+Z8OwmmsFIFeQkajuCEcrThWoNhYwS
ED+XbvbZiUyAdfr64oAiux4n5xtr47HWNawN5/05OYxCLiyylITl7f86vbPQvuzh
RpIlTH1Q1ECJkmkd/z6WHM34OaZLmlwnOpsevy5lmPdc2cJLDo46QrhowPdJTQMM
T2k4L2EZtyx18/LKBq5uGwkn5bclBj7nfT9ktZ7VowXu
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:46 2025 by rpki-client