Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vY6pC_Y0kIqeSKKg-DwXPECCM1Y.roa
File: vY6pC_Y0kIqeSKKg-DwXPECCM1Y.roa (raw, json)
Hash identifier: ptMo7HdChQP997g/77BemXMfJKQSP+tmbmTehxoKDiE=
Subject key identifier: BD:8E:A9:0B:F6:34:90:8A:9E:48:A2:A0:F8:3C:17:3C:40:82:33:56
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CE0
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vY6pC_Y0kIqeSKKg-DwXPECCM1Y.roa
Signing time: Mon 26 Aug 2024 05:25:22 +0000
ROA not before: Mon 26 Aug 2024 05:25:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.63.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3296 (0xce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BD8EA90BF634908A9E48A2A0F83C173C40823356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:db:c6:09:ac:17:24:81:ad:3c:20:65:a2:
ae:c0:61:45:7c:c8:76:a5:26:28:8b:44:6f:48:2a:
61:74:4e:bc:68:5c:b1:e8:4c:1e:6e:63:6b:a8:65:
a9:43:4a:8e:c2:e7:c3:e1:10:df:65:16:5b:a3:f2:
aa:d9:bb:6f:18:49:d1:32:d1:84:09:ab:ce:6d:22:
f7:2d:74:00:38:de:fe:f2:52:79:eb:4c:60:ff:a9:
c2:c4:c2:58:db:22:40:48:e9:e8:55:33:af:38:a8:
06:a7:24:c7:b1:26:ad:81:16:9b:4a:cb:93:cc:6a:
1e:a9:d5:4c:d0:f4:72:ae:83:14:08:1a:ba:d6:44:
8d:d8:bb:36:ed:09:c9:0a:98:26:4d:49:f3:82:28:
5a:62:78:d2:2d:b0:89:45:e1:37:80:a0:36:5c:6a:
1f:c7:64:8b:3a:b2:da:4d:56:e5:06:5d:d3:4d:32:
e3:93:82:8f:d0:5d:df:c9:dc:3c:b0:d4:6c:84:56:
f9:1f:1f:37:1c:6f:82:96:2c:1e:fb:9f:f1:9a:0f:
e1:6d:6d:c9:67:1e:32:8b:83:74:0e:e2:5a:76:30:
12:7b:2b:dc:6d:d8:30:1f:50:4c:2b:e5:a3:46:cc:
34:b0:5e:47:78:c1:26:8f:53:e4:85:4b:a7:10:b4:
d2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8E:A9:0B:F6:34:90:8A:9E:48:A2:A0:F8:3C:17:3C:40:82:33:56
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vY6pC_Y0kIqeSKKg-DwXPECCM1Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.192.0/18
Signature Algorithm: sha256WithRSAEncryption
ca:2d:97:90:b6:b1:6c:62:47:65:64:8a:79:db:92:e9:1a:a3:
45:61:38:06:40:a7:6a:8b:2a:b1:99:18:af:6f:4a:71:03:09:
7c:18:4c:98:aa:73:7e:99:cf:28:63:4c:08:87:95:7a:47:19:
aa:04:88:92:96:d7:2c:50:2f:a7:e6:29:72:c6:29:74:1a:a7:
fe:c0:24:92:00:3c:2d:17:13:c4:05:27:29:e5:78:28:5e:6e:
23:aa:d0:3c:4c:67:b9:fe:80:b5:e9:24:e8:7c:e8:01:88:a0:
d0:fa:1b:23:61:b8:5a:bb:5d:8e:83:45:ac:56:fb:0e:e6:d9:
dd:ef:1b:38:ad:c4:04:f4:ed:06:bd:ae:74:80:06:f7:11:ca:
f6:7c:57:39:5b:ce:f2:a3:0a:a2:8a:ea:e4:c4:b0:ba:c7:ee:
43:78:2a:e2:ad:1c:88:34:56:40:65:80:15:3c:39:00:d0:33:
1b:09:99:e3:86:0c:e1:25:a4:33:4c:5f:c2:af:af:40:77:94:
bf:ec:ec:97:0d:79:dd:e9:80:ad:b3:25:99:50:64:0c:be:1b:
ea:41:0d:0b:4f:d9:a2:22:0f:6c:56:06:fd:7f:c6:7c:d5:6b:
2a:e8:e8:ad:e3:9e:53:8a:63:57:c5:2e:a6:7c:b6:1d:ba:74:
55:29:95:7c
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw
NTI1MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJEOEVBOTBCRjYzNDkw
OEE5RTQ4QTJBMEY4M0MxNzNDNDA4MjMzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyFdvGCawXJIGtPCBloq7AYUV8yHalJiiLRG9IKmF0TrxoXLHo
TB5uY2uoZalDSo7C58PhEN9lFluj8qrZu28YSdEy0YQJq85tIvctdAA43v7yUnnr
TGD/qcLEwljbIkBI6ehVM684qAanJMexJq2BFptKy5PMah6p1UzQ9HKugxQIGrrW
RI3YuzbtCckKmCZNSfOCKFpieNItsIlF4TeAoDZcah/HZIs6stpNVuUGXdNNMuOT
go/QXd/J3Dyw1GyEVvkfHzccb4KWLB77n/GaD+FtbclnHjKLg3QO4lp2MBJ7K9xt
2DAfUEwr5aNGzDSwXkd4wSaPU+SFS6cQtNJnAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUvY6pC/Y0kIqeSKKg+DwXPECCM1YwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vdlk2cENfWTBrSXFlU0tL
Zy1Ed1hQRUNDTTFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bj0/wDANBgkqhkiG9w0BAQsFAAOCAQEAyi2XkLaxbGJHZWSKeduS6RqjRWE4BkCn
aosqsZkYr29KcQMJfBhMmKpzfpnPKGNMCIeVekcZqgSIkpbXLFAvp+YpcsYpdBqn
/sAkkgA8LRcTxAUnKeV4KF5uI6rQPExnuf6Atekk6HzoAYig0PobI2G4WrtdjoNF
rFb7DubZ3e8bOK3EBPTtBr2udIAG9xHK9nxXOVvO8qMKoorq5MSwusfuQ3gq4q0c
iDRWQGWAFTw5ANAzGwmZ44YM4SWkM0xfwq+vQHeUv+zslw153emArbMlmVBkDL4b
6kENC0/ZoiIPbFYG/X/GfNVrKujoreOeU4pjV8Uupny2Hbp0VSmVfA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:15 2025 by rpki-client