Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa
File: Gwi2tnr013P41BOr85FreLGdVwo.roa (raw, json)
Hash identifier: EFOstaOVcTMqZkPBDWSlxKG/VgsnL7MehAG/Qd9ZlXc=
Subject key identifier: 1B:08:B6:B6:7A:F4:D7:73:F8:D4:13:AB:F3:91:6B:78:B1:9D:57:0A
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E27
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa
Signing time: Mon 26 Aug 2024 05:25:05 +0000
ROA not before: Mon 26 Aug 2024 05:25:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3623 (0xe27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1B08B6B67AF4D773F8D413ABF3916B78B19D570A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1e:45:cc:81:f1:75:28:60:43:94:0d:22:2c:
7c:4d:d8:cb:07:f3:ba:c9:1a:16:1c:f3:2d:20:8f:
7a:88:bb:c8:b3:b2:e4:21:fa:62:ff:7e:63:62:7d:
0b:df:05:79:eb:ec:ee:1c:56:74:0f:d9:bf:9e:c0:
35:7b:51:7c:14:94:d2:ab:70:1c:92:e3:08:0a:1e:
ec:20:a5:e2:78:75:d6:0d:b0:45:f3:aa:64:4e:86:
fa:ac:ee:33:87:ba:86:09:1b:61:13:00:e7:aa:1e:
b8:6c:d5:51:11:93:fd:a2:c8:47:e6:0b:51:eb:91:
38:3c:08:72:71:5e:9a:6d:9d:82:7d:60:0c:c4:b7:
6d:96:fb:d0:55:d1:49:6e:f8:8b:2d:f8:e6:ec:52:
00:99:38:0b:a2:b6:49:67:64:dc:64:f1:f6:81:e8:
e1:6c:e5:b2:45:4b:75:50:fd:77:c9:5c:be:98:63:
fc:3d:8e:57:cb:07:a1:5b:4e:c5:11:96:01:98:56:
81:11:f7:fc:1a:da:a9:e1:2f:08:95:f2:96:f1:3d:
c5:5f:a2:0c:dd:d4:55:3c:f2:96:83:86:1d:dd:d7:
e5:ae:ed:8b:80:b1:c3:b2:eb:59:6a:65:d7:29:51:
4c:79:fa:1f:1c:27:37:93:1a:71:1e:e7:39:9c:63:
80:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:08:B6:B6:7A:F4:D7:73:F8:D4:13:AB:F3:91:6B:78:B1:9D:57:0A
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:1e:68:b2:22:04:c1:bc:c1:62:f3:b3:e7:cb:82:6f:0d:2e:
e2:c0:79:0a:61:7f:a7:29:1f:5c:43:89:30:7f:eb:3f:c5:b7:
a7:22:9c:82:c8:03:c2:04:73:23:ba:d8:49:fb:f3:4b:88:2e:
2f:11:7f:ff:be:f6:04:8b:6a:41:66:95:9f:8f:a4:98:4f:25:
e1:ee:be:73:ba:90:c8:99:6c:61:a7:39:a1:ba:ed:d2:fa:26:
7a:d0:0b:4c:10:2a:99:13:a0:0f:bb:54:a6:0f:45:bc:6b:04:
e8:5b:1f:90:b3:93:18:d1:79:50:2f:f6:e5:84:14:f1:af:08:
46:2e:f8:c3:bf:98:12:2d:90:a3:32:f9:6b:2d:27:55:9b:86:
7b:14:88:07:c2:55:b6:b5:01:f0:9e:e9:85:1b:c8:36:48:36:
0d:51:86:85:8a:a5:25:7e:4b:e0:68:ce:72:e9:86:e2:b8:10:
dc:12:ea:ab:a1:61:f0:b2:ea:b5:a5:7d:95:da:0e:92:5f:5d:
22:97:3e:aa:2e:c7:7b:45:ce:6d:ec:46:3a:ca:e7:76:c4:96:
c5:d5:6a:04:00:6b:81:12:34:e2:57:57:98:bf:9a:c0:35:83:
3e:c1:4d:86:22:a9:ee:14:9d:fb:db:57:2e:c0:4a:69:25:f0:
8c:65:cf:12
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw
NTI1MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCMDhCNkI2N0FGNEQ3
NzNGOEQ0MTNBQkYzOTE2Qjc4QjE5RDU3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4HkXMgfF1KGBDlA0iLHxN2MsH87rJGhYc8y0gj3qIu8izsuQh
+mL/fmNifQvfBXnr7O4cVnQP2b+ewDV7UXwUlNKrcByS4wgKHuwgpeJ4ddYNsEXz
qmROhvqs7jOHuoYJG2ETAOeqHrhs1VERk/2iyEfmC1HrkTg8CHJxXpptnYJ9YAzE
t22W+9BV0Ulu+Ist+ObsUgCZOAuitklnZNxk8faB6OFs5bJFS3VQ/XfJXL6YY/w9
jlfLB6FbTsURlgGYVoER9/wa2qnhLwiV8pbxPcVfogzd1FU88paDhh3d1+Wu7YuA
scOy61lqZdcpUUx5+h8cJzeTGnEe5zmcY4CBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUGwi2tnr013P41BOr85FreLGdVwowHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vR3dpMnRucjAxM1A0MUJPcjg1RnJl
TEdkVndvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN8bMDAN
BgkqhkiG9w0BAQsFAAOCAQEAbx5osiIEwbzBYvOz58uCbw0u4sB5CmF/pykfXEOJ
MH/rP8W3pyKcgsgDwgRzI7rYSfvzS4guLxF//772BItqQWaVn4+kmE8l4e6+c7qQ
yJlsYac5obrt0vometALTBAqmROgD7tUpg9FvGsE6FsfkLOTGNF5UC/25YQU8a8I
Ri74w7+YEi2QozL5ay0nVZuGexSIB8JVtrUB8J7phRvINkg2DVGGhYqlJX5L4GjO
cumG4rgQ3BLqq6Fh8LLqtaV9ldoOkl9dIpc+qi7He0XObexGOsrndsSWxdVqBABr
gRI04ldXmL+awDWDPsFNhiKp7hSd+9tXLsBKaSXwjGXPEg==
-----END CERTIFICATE-----
Generated at Wed Apr 9 13:56:33 2025 by rpki-client