Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/g2z7JUqP73WFEMY8GTOEOnR9wa4.roa
File: g2z7JUqP73WFEMY8GTOEOnR9wa4.roa (raw, json)
Hash identifier: Qddm24dyFR0WcLyjKZ7QoP72QRrbs1b8I9Sds8Kr7gQ=
Subject key identifier: 83:6C:FB:25:4A:8F:EF:75:85:10:C6:3C:19:33:84:3A:74:7D:C1:AE
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: E8
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/g2z7JUqP73WFEMY8GTOEOnR9wa4.roa
Signing time: Tue 22 Oct 2024 18:01:23 +0000
ROA not before: Tue 22 Oct 2024 18:01:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 32595
IP address blocks: 2401:5f20:1000::/36 maxlen: 127
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232 (0xe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Oct 22 18:01:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=836CFB254A8FEF758510C63C1933843A747DC1AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f6:b0:0c:ab:82:bc:8f:98:81:71:02:64:85:
36:b8:13:fe:c4:a2:dc:f6:8a:9f:56:be:53:dd:c4:
bc:53:ce:db:40:57:46:02:13:6f:4c:5b:ea:f9:2b:
f4:01:c9:27:90:0d:34:fc:cd:17:3f:ed:19:d8:55:
a0:03:27:b0:fd:01:8d:6f:4b:69:59:a7:21:ba:19:
db:df:ba:58:21:ca:1f:a9:50:b0:5e:08:86:cd:42:
d5:ea:1a:fd:8b:b7:66:bd:c8:de:54:c5:35:44:c0:
f5:5f:0a:38:79:79:98:33:5c:3a:d7:22:6a:ef:01:
88:8f:a7:76:3e:a3:28:89:ef:4e:2a:2e:ab:0e:c5:
86:25:ba:65:a7:90:bd:8a:9e:a0:d1:ad:c9:00:64:
b6:25:92:1d:0f:34:ee:f1:6f:2b:8b:c1:d6:0c:6d:
23:c0:20:5c:5c:f7:8e:bb:b1:6b:10:b1:60:d1:bd:
2d:6b:b8:d1:14:0f:16:4f:4f:64:6c:9f:c0:b4:ff:
b9:07:81:0e:0e:75:09:4d:62:61:33:60:8f:e2:11:
bf:32:88:3e:6e:1c:85:96:94:1b:7b:6a:7e:a5:09:
d4:8f:c1:60:1f:b9:b2:bd:2e:bf:39:cd:58:64:82:
c4:ea:95:fc:77:cd:1f:95:1b:0c:d5:10:ff:c9:99:
7e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:6C:FB:25:4A:8F:EF:75:85:10:C6:3C:19:33:84:3A:74:7D:C1:AE
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/g2z7JUqP73WFEMY8GTOEOnR9wa4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20:1000::/36
Signature Algorithm: sha256WithRSAEncryption
af:f7:b1:06:d8:f8:d0:5f:35:b3:1f:45:7c:79:f0:4d:6a:b0:
4a:72:e3:72:e3:05:76:c1:28:37:08:5b:53:ad:00:06:5d:83:
5f:ec:0e:e4:e2:d7:1c:f6:86:04:3e:2e:12:83:d7:46:0a:69:
88:96:dd:37:8e:df:ca:a4:36:3c:79:fe:0c:f2:2e:bd:e6:26:
ea:97:8f:18:fa:a3:64:8c:e4:0f:b7:73:1c:a0:f1:ae:e2:08:
d5:f5:54:bf:b2:39:9d:88:c7:4e:9c:df:e9:f5:9a:79:9e:e8:
37:8a:3c:a3:8e:e7:ea:4e:f1:8f:c3:d2:38:b3:66:a9:27:b8:
72:54:5d:81:5a:5d:4d:4f:aa:f2:13:56:96:a1:63:c7:9a:1d:
c8:73:54:7f:92:8b:6f:c9:7d:fa:4b:df:e6:a2:4c:0e:7c:2c:
28:13:e6:b7:be:6a:a3:32:05:24:43:d8:01:53:23:7f:08:17:
15:cd:b8:fb:e3:e7:3c:65:39:0f:cd:65:7a:cf:f9:07:4e:71:
d0:ba:f8:24:25:b8:22:9f:f3:11:eb:48:c7:65:6d:23:49:32:
f4:6a:75:8a:b9:34:d6:29:5f:28:6f:62:c3:73:7b:78:b7:ad:
31:e6:87:5e:9f:a0:27:03:44:50:22:ea:c6:63:b1:b4:41:30:
8d:9b:c4:93
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG
RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNDEwMjIx
ODAxMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgzNkNGQjI1NEE4RkVG
NzU4NTEwQzYzQzE5MzM4NDNBNzQ3REMxQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDG9rAMq4K8j5iBcQJkhTa4E/7Eotz2ip9WvlPdxLxTzttAV0YC
E29MW+r5K/QBySeQDTT8zRc/7RnYVaADJ7D9AY1vS2lZpyG6Gdvfulghyh+pULBe
CIbNQtXqGv2Lt2a9yN5UxTVEwPVfCjh5eZgzXDrXImrvAYiPp3Y+oyiJ704qLqsO
xYYlumWnkL2KnqDRrckAZLYlkh0PNO7xbyuLwdYMbSPAIFxc9467sWsQsWDRvS1r
uNEUDxZPT2Rsn8C0/7kHgQ4OdQlNYmEzYI/iEb8yiD5uHIWWlBt7an6lCdSPwWAf
ubK9Lr85zVhkgsTqlfx3zR+VGwzVEP/JmX6tAgMBAAGjggH4MIIB9DAdBgNVHQ4E
FgQUg2z7JUqP73WFEMY8GTOEOnR9wa4wHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj
NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD
T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvZzJ6N0pVcVA3
M1dGRU1ZOEdUT0VPblI5d2E0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQC
AAIwCAMGBCQBXyAQMA0GCSqGSIb3DQEBCwUAA4IBAQCv97EG2PjQXzWzH0V8efBN
arBKcuNy4wV2wSg3CFtTrQAGXYNf7A7k4tcc9oYEPi4Sg9dGCmmIlt03jt/KpDY8
ef4M8i695ibql48Y+qNkjOQPt3McoPGu4gjV9VS/sjmdiMdOnN/p9Zp5nug3ijyj
jufqTvGPw9I4s2apJ7hyVF2BWl1NT6ryE1aWoWPHmh3Ic1R/kotvyX36S9/mokwO
fCwoE+a3vmqjMgUkQ9gBUyN/CBcVzbj74+c8ZTkPzWV6z/kHTnHQuvgkJbgin/MR
60jHZW0jSTL0anWKuTTWKV8ob2LDc3t4t60x5oden6AnA0RQIurGY7G0QTCNm8ST
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:55 2025 by rpki-client