Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/1YPsdVfbKTN3rrzUaHnB8PfUQlY.roa
File: 1YPsdVfbKTN3rrzUaHnB8PfUQlY.roa (raw, json)
Hash identifier: xvBBSKiVzKERL5U4PmCJzOH8i4wEAhZD0SfzoslsCaA=
Subject key identifier: D5:83:EC:75:57:DB:29:33:77:AE:BC:D4:68:79:C1:F0:F7:D4:42:56
Certificate issuer: /CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Certificate serial: 7A
Authority key identifier: EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/1YPsdVfbKTN3rrzUaHnB8PfUQlY.roa
Signing time: Mon 20 Jan 2025 08:41:21 +0000
ROA not before: Mon 20 Jan 2025 08:41:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 32595
IP address blocks: 160.30.98.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122 (0x7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Validity
Not Before: Jan 20 08:41:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D583EC7557DB293377AEBCD46879C1F0F7D44256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:63:a2:ce:70:85:fa:ba:b1:db:50:d8:88:
f4:b0:3d:bb:2f:e8:c2:a2:90:3b:54:1b:f2:bb:aa:
3d:4f:a1:2b:82:f1:a4:40:48:29:4e:1b:81:50:88:
2c:11:db:16:23:e6:fa:73:d4:b8:57:3f:f9:e0:74:
39:eb:0c:3b:75:30:0d:12:f4:3e:75:27:3f:d8:bc:
db:ef:f3:88:3f:16:6d:7b:c8:61:18:72:5f:94:81:
b2:df:74:b2:54:29:1d:0a:48:e0:54:fe:20:8b:1a:
e8:87:71:e7:7d:53:8c:08:e5:a0:ca:f1:98:06:1b:
ec:b6:61:fc:d8:c9:65:5d:2a:4f:3f:59:cc:93:c6:
f9:37:9c:48:04:17:ad:f1:af:15:3c:75:a2:b8:83:
9b:a4:58:26:77:32:f9:b7:35:e0:10:79:68:40:46:
86:1a:8d:0a:70:b4:cd:7a:d5:85:82:73:4d:43:aa:
9a:6f:9f:c3:72:c0:ec:b4:30:97:c2:cf:22:6c:c2:
b7:fa:1d:38:1d:d6:47:f5:92:b1:ab:b9:72:f0:9b:
8e:fe:80:cb:2a:62:7e:71:e1:c0:68:a3:14:73:88:
ff:c8:93:c8:6a:0f:0f:c3:bb:2d:4a:b5:b1:a3:e2:
45:ae:8b:e1:be:a4:0c:25:5b:e3:b8:3b:8d:46:fa:
18:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:83:EC:75:57:DB:29:33:77:AE:BC:D4:68:79:C1:F0:F7:D4:42:56
X509v3 Authority Key Identifier:
keyid:EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/1YPsdVfbKTN3rrzUaHnB8PfUQlY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.98.0/23
Signature Algorithm: sha256WithRSAEncryption
73:df:a5:b5:47:35:af:e5:5b:61:94:c4:d8:65:97:7f:a2:93:
d9:48:60:fd:ba:57:fc:62:9e:0f:d7:b4:c4:67:05:71:54:db:
0d:8d:23:5e:36:33:12:8f:9d:ac:18:04:59:7e:f0:90:6f:aa:
ec:dd:ac:d9:8c:fa:b3:ad:71:6e:3b:53:c4:9a:e3:fe:7c:7c:
5d:6c:38:a4:53:c0:6e:c5:0e:a8:2c:f0:ae:70:32:bb:db:a8:
02:fb:52:ae:ab:25:fa:27:12:b1:0c:df:1e:3b:01:11:3b:65:
6e:88:1d:ba:a9:ff:d7:9b:48:ba:51:79:e4:ed:36:bc:1c:f1:
7a:cb:7a:d6:db:50:b9:a9:27:f6:3c:ed:f8:56:61:fb:f3:70:
ef:5c:c7:ca:03:6e:81:c9:57:e5:fc:30:f4:60:59:5b:ef:35:
58:c4:ed:c0:ed:0f:bb:b1:51:db:ea:c9:01:a8:6d:6b:f6:51:
a2:bd:91:f5:0e:81:ac:a1:07:f0:ab:74:6b:46:34:7a:a1:a1:
5d:2d:27:95:39:4c:9d:f9:21:6f:66:fa:b8:d5:a9:3a:44:da:
e5:b9:57:ca:a3:01:ce:21:2a:e6:f9:a9:5f:13:25:1c:24:66:
9e:5b:70:78:ee:9c:93:6d:aa:82:43:5a:69:fc:43:ef:d1:09:
26:f4:ad:01
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgIBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTE5
NDFDMzdCRDFFMkNGMTI1MTJGOThBQjM2NkMyOURBNzlCNzE4MB4XDTI1MDEyMDA4
NDEyMVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoRDU4M0VDNzU1N0RCMjkz
Mzc3QUVCQ0Q0Njg3OUMxRjBGN0Q0NDI1NjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALpoY6LOcIX6urHbUNiI9LA9uy/owqKQO1Qb8ruqPU+hK4LxpEBI
KU4bgVCILBHbFiPm+nPUuFc/+eB0OesMO3UwDRL0PnUnP9i82+/ziD8WbXvIYRhy
X5SBst90slQpHQpI4FT+IIsa6Idx531TjAjloMrxmAYb7LZh/NjJZV0qTz9ZzJPG
+TecSAQXrfGvFTx1oriDm6RYJncy+bc14BB5aEBGhhqNCnC0zXrVhYJzTUOqmm+f
w3LA7LQwl8LPImzCt/odOB3WR/WSsau5cvCbjv6AyypifnHhwGijFHOI/8iTyGoP
D8O7LUq1saPiRa6L4b6kDCVb47g7jUb6GM8CAwEAAaOCAe4wggHqMB0GA1UdDgQW
BBTVg+x1V9spM3euvNRoecHw99RCVjAfBgNVHSMEGDAWgBTuGUHDe9HizxJRL5ir
Nmwp2nm3GDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUv
N2hsQnczdlI0czhTVVMtWXF6WnNLZHA1dHhnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS83aGxCdzN2UjRzOFNVUy1ZcXpac0tkcDV0eGcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUvMVlQc2RWZmJLVE4zcnJ6VWFI
bkI4UGZVUWxZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAe
YjANBgkqhkiG9w0BAQsFAAOCAQEAc9+ltUc1r+VbYZTE2GWXf6KT2Uhg/bpX/GKe
D9e0xGcFcVTbDY0jXjYzEo+drBgEWX7wkG+q7N2s2Yz6s61xbjtTxJrj/nx8XWw4
pFPAbsUOqCzwrnAyu9uoAvtSrqsl+icSsQzfHjsBETtlbogduqn/15tIulF55O02
vBzxest61ttQuakn9jzt+FZh+/Nw71zHygNugclX5fww9GBZW+81WMTtwO0Pu7FR
2+rJAahta/ZRor2R9Q6BrKEH8Kt0a0Y0eqGhXS0nlTlMnfkhb2b6uNWpOkTa5blX
yqMBziEq5vmpXxMlHCRmnltweO6ck22qgkNaafxD79EJJvStAQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 22:20:33 2025 by rpki-client