Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/9Dn5UY0mHKVVsX1eq_33XyaUyOs.roa
File: 9Dn5UY0mHKVVsX1eq_33XyaUyOs.roa (raw, json)
Hash identifier: 8oD42nwk98BQJ9zL3y2KnaMUq0+Quen5JV/O2PoyNzk=
Subject key identifier: F4:39:F9:51:8D:26:1C:A5:55:B1:7D:5E:AB:FD:F7:5F:26:94:C8:EB
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 0C5E
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/9Dn5UY0mHKVVsX1eq_33XyaUyOs.roa
Signing time: Mon 26 Aug 2024 05:23:58 +0000
ROA not before: Mon 26 Aug 2024 05:23:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131593
IP address blocks: 43.251.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3166 (0xc5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Aug 26 05:23:58 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F439F9518D261CA555B17D5EABFDF75F2694C8EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:08:98:44:be:60:d6:87:4d:f0:29:11:86:4a:
f3:63:6f:56:df:a9:d4:12:69:d3:f3:74:95:3b:3f:
dd:4f:f7:48:67:51:b0:0d:3c:3d:38:cc:6e:78:f8:
76:a7:07:28:a8:7d:f6:44:7f:69:41:b7:2e:60:a6:
31:04:19:d9:93:b6:e1:d2:1c:6a:d6:6a:e5:a8:ef:
50:de:62:36:4b:99:69:d8:c8:92:a6:87:ac:46:2a:
59:c2:89:f1:8e:88:fc:b7:91:c7:8a:63:7d:3a:79:
a5:74:12:a9:0d:b2:d0:7e:e0:3c:67:10:a7:5e:9f:
f5:42:f3:1c:0a:da:7c:0b:3c:fc:20:fc:dc:d8:31:
c1:65:d2:ae:99:c5:6e:a7:11:d8:d1:fd:07:e0:1d:
cf:74:e3:b5:42:4f:34:32:ef:e2:7e:f9:59:f9:4d:
b0:b0:c3:17:22:d8:b1:38:07:58:73:76:bf:09:69:
47:63:c0:7d:bf:4e:4b:ad:0c:f3:c0:80:e8:81:94:
01:e8:14:a9:e9:3f:44:a4:46:6f:29:f1:7b:37:31:
5f:1e:88:7a:ef:dc:5c:e8:8a:e1:4c:8b:3a:82:78:
c1:44:14:99:94:be:aa:eb:81:09:b5:57:2f:b4:26:
01:ec:06:f4:33:92:3f:89:f0:44:49:fb:f3:3b:86:
e7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:39:F9:51:8D:26:1C:A5:55:B1:7D:5E:AB:FD:F7:5F:26:94:C8:EB
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/9Dn5UY0mHKVVsX1eq_33XyaUyOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.62.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ec:0e:59:c9:db:32:06:3c:3e:e1:6d:a6:2a:93:82:67:10:
aa:98:51:24:1a:89:2e:7f:a5:2d:6c:44:4c:ac:ad:da:b0:6e:
4f:92:18:75:3d:ac:1c:dc:18:9d:05:2b:f7:a8:c3:5c:7d:53:
0b:66:be:f8:4d:ff:bd:63:9e:18:f2:7b:26:9c:c9:4e:50:03:
0a:af:18:d0:55:c1:b3:8b:bf:3b:b3:8b:47:f5:f2:e0:43:1a:
34:42:35:46:28:f1:f8:4f:f4:50:32:4b:a4:b2:bd:c4:c8:41:
71:13:50:24:a5:6d:48:30:f3:4f:b3:25:5c:f2:44:b4:96:c2:
9b:de:e9:27:86:19:ed:3d:54:05:a9:33:46:bb:33:3c:5a:60:
5e:4f:cf:fc:94:89:59:5a:79:33:e5:b0:e0:db:8f:c2:f6:45:
2a:2b:44:f3:2c:65:bf:0a:a2:77:bf:e8:99:36:34:e8:37:ba:
ae:99:12:2c:79:0d:6e:1c:73:1a:1a:f3:d6:59:02:77:5f:a6:
8c:f7:fd:e7:ac:dc:c4:d1:72:ea:81:e3:ac:1c:d5:64:e5:dc:
bb:bd:a0:43:21:b0:1d:f4:d3:8a:da:93:f8:d6:16:1c:fb:c0:
9b:3c:c0:72:99:89:b6:44:ee:dc:7e:42:5a:c4:f8:2d:7d:b0:
73:a3:64:eb
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG
OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNDA4MjYw
NTIzNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY0MzlGOTUxOEQyNjFD
QTU1NUIxN0Q1RUFCRkRGNzVGMjY5NEM4RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqCJhEvmDWh03wKRGGSvNjb1bfqdQSadPzdJU7P91P90hnUbAN
PD04zG54+HanByioffZEf2lBty5gpjEEGdmTtuHSHGrWauWo71DeYjZLmWnYyJKm
h6xGKlnCifGOiPy3kceKY306eaV0EqkNstB+4DxnEKden/VC8xwK2nwLPPwg/NzY
McFl0q6ZxW6nEdjR/QfgHc9047VCTzQy7+J++Vn5TbCwwxci2LE4B1hzdr8JaUdj
wH2/TkutDPPAgOiBlAHoFKnpP0SkRm8p8Xs3MV8eiHrv3FzoiuFMizqCeMFEFJmU
vqrrgQm1Vy+0JgHsBvQzkj+J8ERJ+/M7hudvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU9Dn5UY0mHKVVsX1eq/33XyaUyOswHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h
VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS
T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi85RG41VVkwbUhLVlZz
WDFlcV8zM1h5YVV5T3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAK/s+MA0GCSqGSIb3DQEBCwUAA4IBAQAq7A5ZydsyBjw+4W2mKpOCZxCqmFEk
Gokuf6UtbERMrK3asG5Pkhh1Pawc3BidBSv3qMNcfVMLZr74Tf+9Y54Y8nsmnMlO
UAMKrxjQVcGzi787s4tH9fLgQxo0QjVGKPH4T/RQMkuksr3EyEFxE1AkpW1IMPNP
syVc8kS0lsKb3uknhhntPVQFqTNGuzM8WmBeT8/8lIlZWnkz5bDg24/C9kUqK0Tz
LGW/CqJ3v+iZNjToN7qumRIseQ1uHHMaGvPWWQJ3X6aM9/3nrNzE0XLqgeOsHNVk
5dy7vaBDIbAd9NOK2pP41hYc+8CbPMBymYm2RO7cfkJaxPgtfbBzo2Tr
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:02 2025 by rpki-client