Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/8GdQmtgex9Sqjz6DEci9cR07By0.roa
File: 8GdQmtgex9Sqjz6DEci9cR07By0.roa (raw, json)
Hash identifier: VvNNxJsEO1EB1cVJ1gtEp0ZAXOn9P4yAF8DKJCBTt4U=
Subject key identifier: F0:67:50:9A:D8:1E:C7:D4:AA:8F:3E:83:11:C8:BD:71:1D:3B:07:2D
Certificate issuer: /CN=0CE68958C4074750F9B01967C18F50F9CB112212
Certificate serial: 0BD5
Authority key identifier: 0C:E6:89:58:C4:07:47:50:F9:B0:19:67:C1:8F:50:F9:CB:11:22:12
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOaJWMQHR1D5sBlnwY9Q-csRIhI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/8GdQmtgex9Sqjz6DEci9cR07By0.roa
Signing time: Mon 26 Aug 2024 05:25:45 +0000
ROA not before: Mon 26 Aug 2024 05:25:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131620
IP address blocks: 103.116.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3029 (0xbd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CE68958C4074750F9B01967C18F50F9CB112212
Validity
Not Before: Aug 26 05:25:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F067509AD81EC7D4AA8F3E8311C8BD711D3B072D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:65:ea:84:08:e3:92:2c:eb:f6:d5:a6:71:
5b:17:d2:8c:1e:e5:38:6c:c5:aa:8b:81:b3:c1:c7:
e2:8d:c5:f3:03:64:9a:cb:34:86:5c:17:18:8d:55:
01:f0:67:38:46:d4:cb:ab:2b:71:e3:ff:63:b3:00:
c8:8e:07:1e:54:7e:dc:68:41:fa:58:e8:bc:2b:a1:
59:0d:a3:e9:62:62:7d:92:0a:60:7b:10:04:84:cb:
69:c2:b9:04:2a:f4:52:12:00:12:1b:60:b7:20:aa:
d4:89:05:a2:71:45:b4:e8:0d:20:d7:1f:56:27:6d:
de:d0:51:d6:74:47:a2:f9:bd:36:b9:e6:0a:20:24:
62:4b:3e:57:4e:4b:db:2a:b7:46:41:94:24:ec:c3:
c3:e7:ab:97:38:28:09:e6:6d:0d:f8:43:0a:01:ff:
14:16:19:d3:c2:1b:20:76:80:84:51:4b:18:fa:0c:
ad:46:26:ae:5f:ce:af:92:da:fe:b4:f9:4c:2e:df:
bc:b5:6a:9a:3a:e9:1a:f1:04:12:59:77:45:fa:30:
74:d8:19:b1:ce:24:35:ea:7c:e9:09:2a:ad:b9:30:
c5:7b:6d:79:b7:5c:c8:81:60:54:21:8e:08:09:d0:
2e:f3:b2:0c:ee:36:7c:4e:4a:b0:c6:f1:97:a9:57:
f9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:67:50:9A:D8:1E:C7:D4:AA:8F:3E:83:11:C8:BD:71:1D:3B:07:2D
X509v3 Authority Key Identifier:
keyid:0C:E6:89:58:C4:07:47:50:F9:B0:19:67:C1:8F:50:F9:CB:11:22:12
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/DOaJWMQHR1D5sBlnwY9Q-csRIhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOaJWMQHR1D5sBlnwY9Q-csRIhI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/8GdQmtgex9Sqjz6DEci9cR07By0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.68.0/22
Signature Algorithm: sha256WithRSAEncryption
23:32:18:73:65:ac:6f:36:00:a9:c8:e6:64:04:52:06:50:b7:
aa:fe:16:7c:56:5d:4e:bc:08:f7:df:58:76:c0:32:38:49:99:
e3:0f:d8:a1:3e:b5:a4:43:dc:f5:0b:f9:84:c4:b4:71:d8:f8:
b4:4a:e0:ab:c4:1e:93:3b:02:75:7f:1e:77:e8:cf:2a:a6:22:
23:f8:28:fe:88:7a:66:01:f0:a7:e0:08:33:13:50:19:e9:ae:
cb:40:a2:96:ad:38:14:35:c6:12:f2:ad:50:da:4e:a1:8f:c6:
66:17:86:83:c6:5a:b2:69:0b:2c:e0:0e:32:fd:12:d3:ea:3d:
d9:4a:1d:50:fd:9b:21:09:9e:88:79:fa:91:14:ee:28:d8:66:
26:5b:1d:f6:8d:54:33:0a:b9:0e:c8:9a:1b:0d:e7:10:fa:db:
ca:b6:37:ce:a7:9d:7a:49:00:0f:01:5c:0a:43:22:1c:b0:f4:
9e:d1:a1:13:a7:7e:60:b1:31:88:f4:f9:9b:18:2f:fb:0d:5c:
1e:66:8a:cb:fa:1d:79:cc:87:07:f2:0c:b0:f9:1c:b0:8e:99:
e5:33:44:fa:b0:d5:22:6d:59:31:d9:11:06:1f:0a:30:7d:57:
3d:1c:0d:7e:ba:93:b5:59:dd:e3:0c:90:da:fe:28:e2:5b:96:
e9:20:7b:5c
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENF
Njg5NThDNDA3NDc1MEY5QjAxOTY3QzE4RjUwRjlDQjExMjIxMjAeFw0yNDA4MjYw
NTI1NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwNjc1MDlBRDgxRUM3
RDRBQThGM0U4MzExQzhCRDcxMUQzQjA3MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDP2GXqhAjjkizr9tWmcVsX0owe5ThsxaqLgbPBx+KNxfMDZJrL
NIZcFxiNVQHwZzhG1MurK3Hj/2OzAMiOBx5UftxoQfpY6LwroVkNo+liYn2SCmB7
EASEy2nCuQQq9FISABIbYLcgqtSJBaJxRbToDSDXH1Ynbd7QUdZ0R6L5vTa55gog
JGJLPldOS9sqt0ZBlCTsw8Pnq5c4KAnmbQ34QwoB/xQWGdPCGyB2gIRRSxj6DK1G
Jq5fzq+S2v60+Uwu37y1apo66RrxBBJZd0X6MHTYGbHOJDXqfOkJKq25MMV7bXm3
XMiBYFQhjggJ0C7zsgzuNnxOSrDG8ZepV/lJAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU8GdQmtgex9Sqjz6DEci9cR07By0wHwYDVR0jBBgwFoAUDOaJWMQHR1D5sBln
wY9Q+csRIhIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0VSVkNP
TVAvRE9hSldNUUhSMUQ1c0JsbndZOVEtY3NSSWhJLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ET2FKV01RSFIxRDVzQmxud1k5US1jc1JJaEkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TRVJWQ09NUC84R2RRbXRnZXg5U3Fq
ejZERWNpOWNSMDdCeTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ3REMA0GCSqGSIb3DQEBCwUAA4IBAQAjMhhzZaxvNgCpyOZkBFIGULeq/hZ8
Vl1OvAj331h2wDI4SZnjD9ihPrWkQ9z1C/mExLRx2Pi0SuCrxB6TOwJ1fx536M8q
piIj+Cj+iHpmAfCn4AgzE1AZ6a7LQKKWrTgUNcYS8q1Q2k6hj8ZmF4aDxlqyaQss
4A4y/RLT6j3ZSh1Q/ZshCZ6IefqRFO4o2GYmWx32jVQzCrkOyJobDecQ+tvKtjfO
p516SQAPAVwKQyIcsPSe0aETp35gsTGI9PmbGC/7DVweZorL+h15zIcH8gyw+Ryw
jpnlM0T6sNUibVkx2REGHwowfVc9HA1+upO1Wd3jDJDa/ijiW5bpIHtc
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:17 2025 by rpki-client