Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ytYpztTa07bmV1huWncKqtyW8zQ.roa
File: ytYpztTa07bmV1huWncKqtyW8zQ.roa (raw, json)
Hash identifier: bBnQAsqv5C+hmCGMrFNifpObddIzjO9NDvaUulrhyos=
Subject key identifier: CA:D6:29:CE:D4:DA:D3:B6:E6:57:58:6E:5A:77:0A:AA:DC:96:F3:34
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CD8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ytYpztTa07bmV1huWncKqtyW8zQ.roa
Signing time: Mon 26 Aug 2024 05:25:21 +0000
ROA not before: Mon 26 Aug 2024 05:25:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 211.79.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3288 (0xcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CAD629CED4DAD3B6E657586E5A770AAADC96F334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5b:f9:13:ac:e9:b8:f8:89:55:97:2a:f7:87:
ca:9a:3a:04:8a:0b:f0:81:f4:f6:c6:4c:bf:df:fc:
9c:ee:de:7f:eb:c8:8c:36:e3:1a:d1:fb:e9:33:95:
56:74:9c:f1:1b:83:d6:77:5d:59:c2:9f:a4:96:8c:
83:e1:5a:01:65:e4:51:bf:97:1f:94:ba:a6:71:49:
9a:7f:ec:e4:92:24:53:54:03:00:a7:3b:3a:20:36:
d5:d6:8f:bf:aa:a2:f1:51:04:a0:53:0c:ab:1d:36:
c8:95:2b:84:59:32:62:2d:a0:9b:12:f3:85:38:32:
60:c3:3c:dd:eb:f9:cc:b0:29:c4:2c:7e:93:99:30:
9d:30:47:09:c3:c9:ad:89:2b:0a:b0:09:46:0e:70:
08:2d:b6:ad:c4:37:50:86:55:14:28:d3:21:88:d5:
a5:54:ab:f8:3a:6f:83:78:c7:a2:c5:01:30:79:02:
37:f6:e6:b6:21:33:bc:c5:69:fd:37:ca:4b:ea:c6:
aa:d6:fc:01:da:b1:33:3e:fc:61:b7:11:98:c7:e7:
1f:ea:26:e6:ee:e3:ab:c2:b2:f0:e8:6c:e7:c2:a3:
ab:e1:14:10:7b:19:f3:ab:02:6c:c1:39:97:49:cc:
af:d8:5a:5d:08:f3:c5:61:81:23:88:4c:49:74:fe:
02:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D6:29:CE:D4:DA:D3:B6:E6:57:58:6E:5A:77:0A:AA:DC:96:F3:34
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ytYpztTa07bmV1huWncKqtyW8zQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.64.0/19
Signature Algorithm: sha256WithRSAEncryption
73:26:ec:0c:e1:83:39:69:6a:5b:26:02:1c:73:91:17:af:c9:
35:4b:e4:b9:7b:29:67:69:35:a7:f8:af:90:43:4d:48:88:38:
55:ff:da:a0:06:d5:b5:90:5a:fb:bc:96:03:54:2e:3e:45:4a:
a9:c1:32:ef:ce:a1:1d:58:a1:a3:50:00:ae:d5:17:43:05:65:
4a:fb:f7:fa:79:c8:e7:b3:d0:9f:ba:1e:86:6b:31:d7:c6:39:
dc:bb:98:84:71:d2:70:06:ac:e2:b8:c7:3c:28:cb:0a:24:c7:
dc:a4:36:9f:87:7c:5e:37:14:e5:f2:37:7e:4e:97:63:e0:11:
d5:8a:6d:e4:30:28:e1:be:dc:3f:d5:87:c4:99:9e:09:7d:84:
1c:f4:4c:eb:cc:4e:b7:c3:50:35:24:24:3c:e1:4e:55:a8:d5:
d3:23:f4:02:e3:e7:cd:ca:83:08:0f:28:bb:53:9a:bd:34:08:
36:83:d9:36:f3:f6:9c:08:c9:97:c8:8e:12:9d:82:6b:d9:b9:
b6:c7:b3:0f:32:0c:c3:81:ea:9d:11:e0:6c:51:4d:4e:b5:40:
f8:34:31:b9:72:50:a1:87:ca:56:24:f3:b9:5f:00:1d:55:ec:
bd:09:d5:aa:7e:42:1d:04:30:fa:8e:1e:21:19:11:47:98:26:
c6:1c:a4:4b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw
NTI1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBRDYyOUNFRDREQUQz
QjZFNjU3NTg2RTVBNzcwQUFBREM5NkYzMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAW/kTrOm4+IlVlyr3h8qaOgSKC/CB9PbGTL/f/Jzu3n/ryIw2
4xrR++kzlVZ0nPEbg9Z3XVnCn6SWjIPhWgFl5FG/lx+UuqZxSZp/7OSSJFNUAwCn
OzogNtXWj7+qovFRBKBTDKsdNsiVK4RZMmItoJsS84U4MmDDPN3r+cywKcQsfpOZ
MJ0wRwnDya2JKwqwCUYOcAgttq3EN1CGVRQo0yGI1aVUq/g6b4N4x6LFATB5Ajf2
5rYhM7zFaf03ykvqxqrW/AHasTM+/GG3EZjH5x/qJubu46vCsvDobOfCo6vhFBB7
GfOrAmzBOZdJzK/YWl0I88VhgSOITEl0/gILAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUytYpztTa07bmV1huWncKqtyW8zQwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00veXRZcHp0VGEwN2JtVjFo
dVduY0txdHlXOHpRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdNPQDANBgkqhkiG9w0BAQsFAAOCAQEAcybsDOGDOWlqWyYCHHORF6/JNUvkuXsp
Z2k1p/ivkENNSIg4Vf/aoAbVtZBa+7yWA1QuPkVKqcEy786hHViho1AArtUXQwVl
Svv3+nnI57PQn7oehmsx18Y53LuYhHHScAas4rjHPCjLCiTH3KQ2n4d8XjcU5fI3
fk6XY+AR1Ypt5DAo4b7cP9WHxJmeCX2EHPRM68xOt8NQNSQkPOFOVajV0yP0AuPn
zcqDCA8ou1OavTQINoPZNvP2nAjJl8iOEp2Ca9m5tsezDzIMw4HqnRHgbFFNTrVA
+DQxuXJQoYfKViTzuV8AHVXsvQnVqn5CHQQw+o4eIRkRR5gmxhykSw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:19 2025 by rpki-client