Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdYfOwe6qR2LeKhUEQtjQ70GpRo.roa
File: XdYfOwe6qR2LeKhUEQtjQ70GpRo.roa (raw, json)
Hash identifier: 5/TQk2AV6/iR5C3ONKdC+9HlBrKBdQ8aMgWqbBIwObA=
Subject key identifier: 5D:D6:1F:3B:07:BA:A9:1D:8B:78:A8:54:11:0B:63:43:BD:06:A5:1A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16C4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdYfOwe6qR2LeKhUEQtjQ70GpRo.roa
Signing time: Mon 26 Aug 2024 05:22:36 +0000
ROA not before: Mon 26 Aug 2024 05:22:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5828 (0x16c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DD61F3B07BAA91D8B78A854110B6343BD06A51A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:90:22:00:df:70:2b:1f:00:dd:a4:0a:7b:36:
1f:69:55:57:8b:4d:a2:13:61:03:33:3d:d3:5d:90:
88:49:64:25:7b:92:6d:c2:12:6b:74:eb:8d:b7:57:
13:29:c3:6d:bf:0f:e8:ef:82:f1:2b:8c:cf:aa:b8:
7a:34:c9:d8:41:03:8c:5f:ea:25:47:cc:7d:0b:f7:
88:19:b0:08:41:cd:f9:5f:0f:d3:6c:42:90:05:40:
32:d3:d9:19:4b:b6:24:91:d8:21:69:0b:a5:dc:8a:
9c:d0:08:0c:ee:fd:88:63:ba:bf:22:78:48:a5:49:
54:52:c2:1f:c5:a6:ea:6e:de:4e:95:c5:09:ed:e3:
74:9a:5e:4e:cb:6e:bd:b4:b1:bf:2a:49:63:d3:a5:
1a:46:20:59:82:ca:a6:62:8e:b2:8d:0d:53:8a:51:
a6:0a:e9:7b:60:c0:95:cb:5c:15:6f:87:3d:3e:b3:
58:1a:92:d7:07:1b:e5:3e:fd:15:38:d8:41:5b:4e:
4a:f0:c4:5e:c3:12:82:60:d9:65:fd:b9:6f:5f:88:
71:41:43:69:c4:3c:c6:51:7e:4f:db:aa:b6:6c:d2:
73:a6:3a:3e:d6:7d:3e:eb:91:ea:8c:e7:de:c7:9f:
b3:eb:e8:86:90:60:ab:96:c6:25:9b:70:c4:9a:20:
8c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D6:1F:3B:07:BA:A9:1D:8B:78:A8:54:11:0B:63:43:BD:06:A5:1A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdYfOwe6qR2LeKhUEQtjQ70GpRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ce:a8:6f:c5:f1:9b:90:ac:78:2e:eb:f9:34:5e:b3:68:91:
f9:4a:03:77:33:fa:87:ed:cb:36:d8:65:e9:da:0a:cd:60:4d:
b8:c7:5b:14:5f:fc:45:0d:ed:2f:1b:87:c5:c0:72:1f:5a:e4:
c0:30:2d:08:2f:27:fb:e1:f1:54:87:e0:f7:46:bf:01:92:2e:
fb:15:3a:c0:06:b2:bd:37:02:ef:11:1d:5e:72:cb:11:8b:cc:
e3:2f:e0:d6:54:d1:2e:17:99:45:a4:c5:53:bb:6f:14:e9:49:
22:32:4d:ae:77:1a:39:fd:cd:ba:cb:83:a0:8a:7d:46:7c:92:
23:b3:75:32:29:f0:80:94:5d:87:38:7d:c9:44:d4:9d:3a:ad:
42:5c:d6:dc:39:29:ef:28:78:fa:78:74:b8:96:b1:a4:be:ac:
dc:a1:ac:9b:d6:3f:ce:d5:ca:ad:b5:7f:40:49:11:07:7c:ef:
f1:e8:5f:f0:87:f1:e9:b4:c0:0b:ff:ab:52:d9:57:0d:63:b0:
7b:31:77:f8:71:e4:06:c1:d6:b2:e5:b3:90:1d:90:fc:15:89:
6b:4c:66:02:79:4e:ae:37:62:90:9c:ee:d2:60:af:69:e3:a7:
cf:9c:72:42:b1:3d:ab:57:19:1f:09:23:b9:d3:16:ee:f0:7e:
4c:a6:4e:fd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVERDYxRjNCMDdCQUE5
MUQ4Qjc4QTg1NDExMEI2MzQzQkQwNkE1MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+kCIA33ArHwDdpAp7Nh9pVVeLTaITYQMzPdNdkIhJZCV7km3C
Emt06423VxMpw22/D+jvgvErjM+quHo0ydhBA4xf6iVHzH0L94gZsAhBzflfD9Ns
QpAFQDLT2RlLtiSR2CFpC6XcipzQCAzu/Yhjur8ieEilSVRSwh/Fpupu3k6VxQnt
43SaXk7Lbr20sb8qSWPTpRpGIFmCyqZijrKNDVOKUaYK6XtgwJXLXBVvhz0+s1ga
ktcHG+U+/RU42EFbTkrwxF7DEoJg2WX9uW9fiHFBQ2nEPMZRfk/bqrZs0nOmOj7W
fT7rkeqM597Hn7Pr6IaQYKuWxiWbcMSaIIy/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXdYfOwe6qR2LeKhUEQtjQ70GpRowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGRZZk93ZTZxUjJMZUtoVUVRdGpR
NzBHcFJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNJzAN
BgkqhkiG9w0BAQsFAAOCAQEAa86ob8Xxm5CseC7r+TRes2iR+UoDdzP6h+3LNthl
6doKzWBNuMdbFF/8RQ3tLxuHxcByH1rkwDAtCC8n++HxVIfg90a/AZIu+xU6wAay
vTcC7xEdXnLLEYvM4y/g1lTRLheZRaTFU7tvFOlJIjJNrncaOf3NusuDoIp9RnyS
I7N1MinwgJRdhzh9yUTUnTqtQlzW3Dkp7yh4+nh0uJaxpL6s3KGsm9Y/ztXKrbV/
QEkRB3zv8ehf8Ifx6bTAC/+rUtlXDWOwezF3+HHkBsHWsuWzkB2Q/BWJa0xmAnlO
rjdikJzu0mCvaeOnz5xyQrE9q1cZHwkjudMW7vB+TKZO/Q==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:59 2025 by rpki-client