Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zUthGVemgj2EkNNXxswKQ85DKDo.roa
File: zUthGVemgj2EkNNXxswKQ85DKDo.roa (raw, json)
Hash identifier: tJ38TI+9b+9Vr8gYSHWv4qEDkJ6yoV213+f+rRXHjKU=
Subject key identifier: CD:4B:61:19:57:A6:82:3D:84:90:D3:57:C6:CC:0A:43:CE:43:28:3A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16F6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zUthGVemgj2EkNNXxswKQ85DKDo.roa
Signing time: Mon 26 Aug 2024 05:22:50 +0000
ROA not before: Mon 26 Aug 2024 05:22:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.105.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5878 (0x16f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD4B611957A6823D8490D357C6CC0A43CE43283A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:30:54:ef:c1:69:ec:80:ff:32:1d:06:c0:ad:
4a:e9:14:d3:d8:2c:94:64:29:97:b1:44:1c:87:0d:
dd:87:05:c2:12:db:23:b2:2a:95:e8:6e:ab:b9:2f:
93:83:3f:a6:08:28:ee:90:44:08:25:67:db:60:a6:
63:84:31:0c:e7:00:c5:58:49:cb:cd:f3:04:f8:04:
2e:a1:66:d1:0f:fd:5f:aa:43:03:1a:6a:b9:14:48:
75:a7:33:87:4f:3c:e0:c4:6a:ee:38:81:28:ff:f5:
11:ea:27:28:a1:a5:53:a6:2a:36:86:18:50:ea:43:
2e:a0:d6:24:4b:62:eb:d8:4f:59:c9:0b:32:a4:84:
b1:53:db:52:6c:09:a7:bd:dc:ef:16:84:06:1b:13:
aa:ae:21:9d:7c:4f:10:06:ff:98:c5:0b:96:96:53:
4d:17:ae:db:42:eb:19:43:23:7b:3d:1b:c0:43:99:
e9:ee:64:33:f6:7f:67:60:bf:94:ab:a7:0a:1e:0d:
a3:97:03:16:02:77:24:f0:de:3c:54:16:4f:1c:cf:
50:c4:ae:53:a7:12:c8:e4:51:10:fa:e9:0b:27:f5:
44:15:33:73:2d:6e:db:e7:99:2a:e7:6b:ae:af:1a:
ac:0a:13:3a:db:65:2d:2a:8c:dc:9e:55:24:a9:4c:
ec:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4B:61:19:57:A6:82:3D:84:90:D3:57:C6:CC:0A:43:CE:43:28:3A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zUthGVemgj2EkNNXxswKQ85DKDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.72.0/21
Signature Algorithm: sha256WithRSAEncryption
47:aa:77:3d:1d:d8:af:b3:9d:86:06:48:4b:cc:1b:94:2e:e1:
f8:06:79:3a:e4:ba:db:d3:73:8d:eb:c0:2b:d6:f1:2c:4a:1f:
45:fa:6c:eb:7f:6b:72:76:89:2b:4b:87:d8:cd:19:88:72:da:
22:40:8e:23:a0:47:2d:89:f9:63:4a:4f:47:62:2c:b5:80:ea:
83:4c:a8:5b:9c:11:35:fb:72:78:4a:13:e7:f6:ca:b1:ed:c1:
56:b7:b3:38:0b:ad:b1:98:3f:b9:8c:31:ad:b2:18:9b:c1:1b:
f9:b7:1f:12:d9:48:d3:1d:24:ed:5e:ce:1a:3d:cc:c6:65:19:
d3:84:a5:8f:24:04:66:fe:0f:d8:87:00:e4:7f:93:70:48:38:
8f:8a:69:6e:d6:3b:b5:72:c2:ba:3d:0c:1f:12:35:f5:ad:87:
53:35:e6:0d:3f:a2:48:b1:10:8e:0f:f1:be:39:4a:cc:ee:c8:
c0:36:d8:f8:21:c6:c9:45:8d:80:14:61:27:05:04:f5:db:99:
29:15:c3:24:bb:6e:b0:ce:0b:86:ea:45:cd:ad:f9:36:88:2f:
41:5c:00:23:44:f8:78:c3:6e:fa:a3:c6:57:7e:cd:70:55:73:
bd:7b:31:4a:85:66:49:a1:9d:21:03:e6:36:f9:fa:d5:54:0e:
94:35:eb:d9
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICFvYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENEI2MTE5NTdBNjgy
M0Q4NDkwRDM1N0M2Q0MwQTQzQ0U0MzI4M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPMFTvwWnsgP8yHQbArUrpFNPYLJRkKZexRByHDd2HBcIS2yOy
KpXobqu5L5ODP6YIKO6QRAglZ9tgpmOEMQznAMVYScvN8wT4BC6hZtEP/V+qQwMa
arkUSHWnM4dPPODEau44gSj/9RHqJyihpVOmKjaGGFDqQy6g1iRLYuvYT1nJCzKk
hLFT21JsCae93O8WhAYbE6quIZ18TxAG/5jFC5aWU00XrttC6xlDI3s9G8BDmenu
ZDP2f2dgv5SrpwoeDaOXAxYCdyTw3jxUFk8cz1DErlOnEsjkURD66Qsn9UQVM3Mt
btvnmSrna66vGqwKEzrbZS0qjNyeVSSpTOwtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUzUthGVemgj2EkNNXxswKQ85DKDowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvelV0aEdWZW1najJFa05OWHhzd0tR
ODVES0RvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppSDAN
BgkqhkiG9w0BAQsFAAOCAQEAR6p3PR3Yr7OdhgZIS8wblC7h+AZ5OuS629NzjevA
K9bxLEofRfps639rcnaJK0uH2M0ZiHLaIkCOI6BHLYn5Y0pPR2IstYDqg0yoW5wR
NftyeEoT5/bKse3BVrezOAutsZg/uYwxrbIYm8Eb+bcfEtlI0x0k7V7OGj3MxmUZ
04SljyQEZv4P2IcA5H+TcEg4j4ppbtY7tXLCuj0MHxI19a2HUzXmDT+iSLEQjg/x
vjlKzO7IwDbY+CHGyUWNgBRhJwUE9duZKRXDJLtusM4LhupFza35NogvQVwAI0T4
eMNu+qPGV37NcFVzvXsxSoVmSaGdIQPmNvn61VQOlDXr2Q==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:59 2025 by rpki-client