Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa
File: bJb00xs51HmNix5KqVn57fYCL7o.roa (raw, json)
Hash identifier: da3xe1pUUWYTbybVYCxh+noMNMnSvFdufchLG0OWGmc=
Subject key identifier: 6C:96:F4:D3:1B:39:D4:79:8D:8B:1E:4A:A9:59:F9:ED:F6:02:2F:BA
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CD7
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa
Signing time: Mon 26 Aug 2024 05:26:17 +0000
ROA not before: Mon 26 Aug 2024 05:26:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3287 (0xcd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6C96F4D31B39D4798D8B1E4AA959F9EDF6022FBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:df:75:84:50:ac:d5:5e:19:24:4e:6a:89:23:
27:be:b9:b0:ea:f1:86:89:e6:bc:4e:27:9f:de:3e:
38:74:39:cd:8d:3e:94:30:e9:27:58:67:02:e1:b0:
08:f3:6a:c0:d2:89:27:34:69:26:cd:a7:6a:c8:6e:
75:45:be:03:63:20:9e:1b:92:e6:fb:84:68:01:e4:
a6:de:29:40:cc:b8:3b:e2:ec:f0:1a:42:b7:51:31:
5d:09:7e:2d:23:0b:5b:18:f3:9d:7e:87:8b:9e:99:
7a:69:1d:e3:cb:42:ed:51:df:50:9d:69:22:a1:1b:
04:da:64:6a:b5:cc:7a:97:4d:58:15:44:a3:1d:0d:
28:b0:cd:a9:71:c9:c0:d3:36:c4:b1:b1:dd:54:42:
f8:82:b0:ed:fe:18:b7:22:04:77:d9:d6:28:01:13:
77:9f:a8:18:81:7d:03:7f:c9:38:e0:f3:30:16:81:
06:96:4f:84:e0:42:8f:0b:a8:67:95:16:08:81:1c:
30:bb:aa:39:24:fa:6d:38:2c:cd:26:fe:08:02:d6:
15:fb:f5:a6:04:b2:16:e2:a4:74:36:74:40:66:96:
05:10:b7:03:4f:9c:49:53:55:c6:18:a1:13:26:4c:
e3:f4:2f:b3:c6:47:a1:10:a3:d7:37:18:f1:ca:63:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:96:F4:D3:1B:39:D4:79:8D:8B:1E:4A:A9:59:F9:ED:F6:02:2F:BA
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:ed:ff:1f:ab:23:3a:7e:50:29:5b:8d:42:19:3b:78:ec:4d:
12:2d:48:28:65:cc:39:c1:a3:c8:ba:24:56:24:d4:0f:5f:4e:
22:84:4a:58:0a:f0:17:92:5e:7d:d7:e0:e0:5d:55:07:e1:81:
18:10:30:c2:3d:a9:07:df:97:f6:56:53:e9:6d:eb:d1:c9:ac:
c9:43:2f:85:d3:42:8b:46:fd:31:b0:02:a3:3c:9a:1c:aa:2e:
6e:7f:e1:60:e3:3f:98:0b:e6:4b:5f:4a:ad:42:6b:77:fd:ce:
89:50:2e:6a:ef:8f:30:67:ea:e8:4f:4b:0b:41:58:3b:32:5a:
bf:be:4f:9c:ee:38:74:4c:03:ae:93:2f:33:a4:01:84:41:c3:
e1:cc:9f:55:1c:61:d3:bc:a5:89:5e:f3:3e:34:c5:6f:c6:90:
3b:9f:ed:97:35:50:ab:7d:33:77:ef:4a:f7:86:a5:dc:e0:8b:
c8:d7:dd:1c:2b:a2:da:be:83:af:4d:21:37:a5:83:60:63:17:
e5:ff:64:76:12:71:f4:59:81:40:92:a6:51:0b:3d:5c:50:1b:
04:e0:07:4a:29:fa:82:35:3a:05:40:b9:5d:66:46:4d:8d:31:
ba:2a:a0:80:63:00:2a:63:66:d2:34:19:68:20:62:3c:7e:02:
cc:33:c0:5b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDNcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw
NTI2MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDOTZGNEQzMUIzOUQ0
Nzk4RDhCMUU0QUE5NTlGOUVERjYwMjJGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC433WEUKzVXhkkTmqJIye+ubDq8YaJ5rxOJ5/ePjh0Oc2NPpQw
6SdYZwLhsAjzasDSiSc0aSbNp2rIbnVFvgNjIJ4bkub7hGgB5KbeKUDMuDvi7PAa
QrdRMV0Jfi0jC1sY851+h4uemXppHePLQu1R31CdaSKhGwTaZGq1zHqXTVgVRKMd
DSiwzalxycDTNsSxsd1UQviCsO3+GLciBHfZ1igBE3efqBiBfQN/yTjg8zAWgQaW
T4TgQo8LqGeVFgiBHDC7qjkk+m04LM0m/ggC1hX79aYEshbipHQ2dEBmlgUQtwNP
nElTVcYYoRMmTOP0L7PGR6EQo9c3GPHKYxv/AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUbJb00xs51HmNix5KqVn57fYCL7owHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9iSmIwMHhzNTFIbU5peDVLcVZu
NTdmWUNMN28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rk
MA0GCSqGSIb3DQEBCwUAA4IBAQC77f8fqyM6flApW41CGTt47E0SLUgoZcw5waPI
uiRWJNQPX04ihEpYCvAXkl591+DgXVUH4YEYEDDCPakH35f2VlPpbevRyazJQy+F
00KLRv0xsAKjPJocqi5uf+Fg4z+YC+ZLX0qtQmt3/c6JUC5q748wZ+roT0sLQVg7
Mlq/vk+c7jh0TAOuky8zpAGEQcPhzJ9VHGHTvKWJXvM+NMVvxpA7n+2XNVCrfTN3
70r3hqXc4IvI190cK6LavoOvTSE3pYNgYxfl/2R2EnH0WYFAkqZRCz1cUBsE4AdK
KfqCNToFQLldZkZNjTG6KqCAYwAqY2bSNBloIGI8fgLMM8Bb
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:50:30 2025 by rpki-client