Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/4XZgDF_rAwNeBJyZj9OCI-Rvg08.roa
File: 4XZgDF_rAwNeBJyZj9OCI-Rvg08.roa (raw, json)
Hash identifier: gIVgd+p86mn5eH5Omjbtd6PXUwuu0cpXRK2VXJwwt9Q=
Subject key identifier: E1:76:60:0C:5F:EB:03:03:5E:04:9C:99:8F:D3:82:23:E4:6F:83:4F
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0D8B
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/4XZgDF_rAwNeBJyZj9OCI-Rvg08.roa
Signing time: Fri 23 May 2025 07:41:11 +0000
ROA not before: Fri 23 May 2025 07:41:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4783
IP address blocks: 210.67.128.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 May 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3467 (0xd8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: May 23 07:41:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E176600C5FEB03035E049C998FD38223E46F834F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:25:d8:c3:54:5a:d1:1b:94:6d:9d:dd:75:02:
76:7b:fa:96:1e:d3:3d:77:24:4d:9f:c4:f2:e2:73:
20:4b:6e:08:8d:2c:db:10:b0:fc:02:03:37:e5:a4:
52:38:67:b8:0c:5b:d8:80:bb:bd:35:44:bd:dc:77:
bf:f1:b9:63:c2:ac:39:b4:19:9a:23:6a:92:2a:3e:
8f:21:b4:88:a3:f7:8a:89:ab:77:b7:bf:20:29:84:
4b:59:7c:70:5e:a8:4c:c3:8a:07:26:95:46:92:42:
de:5f:80:67:15:45:90:e3:a7:0d:c7:5a:8e:fa:66:
f3:af:a6:7f:bb:d2:13:f5:f7:1b:97:fd:63:46:0e:
d3:bd:9b:28:13:34:d9:42:d3:73:6e:d5:75:01:78:
f6:47:f8:69:51:c2:5e:37:03:a3:44:cb:8a:7a:7e:
2b:72:2d:47:ba:e4:08:83:45:54:7a:ff:f9:de:33:
e9:97:3b:21:dd:03:3f:c5:3f:b1:6f:a0:97:af:e5:
17:0c:b3:8b:d6:a4:7a:2c:a0:ef:c7:3b:c4:d7:8a:
43:80:fd:ef:fa:25:94:62:73:eb:d6:84:77:03:f2:
8b:d5:1e:6d:13:9f:c8:88:d0:51:0b:dd:a1:5e:44:
3f:c2:b5:bc:18:e8:ed:87:5a:5e:42:c7:a3:a3:9f:
61:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:76:60:0C:5F:EB:03:03:5E:04:9C:99:8F:D3:82:23:E4:6F:83:4F
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/4XZgDF_rAwNeBJyZj9OCI-Rvg08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.128.0/22
Signature Algorithm: sha256WithRSAEncryption
21:64:89:2f:b6:71:4e:d9:18:bc:82:f4:0e:ff:39:66:da:3e:
69:d8:3d:88:55:e6:a0:1b:79:ee:e6:11:fb:f4:05:57:78:02:
51:bb:6d:67:1d:a8:79:82:83:cf:b9:a1:7e:60:00:5b:bb:ea:
99:de:af:21:f1:dd:24:a1:fd:70:a0:a2:a5:f8:a7:73:22:8f:
71:4b:79:0b:a3:20:ee:0e:25:14:8a:91:5e:19:50:91:a6:75:
91:27:a1:bb:e8:df:c3:5a:f0:e5:50:71:5d:12:0c:d6:d8:f3:
90:b5:70:a3:25:ba:43:0f:3a:41:55:87:b7:28:c9:45:61:18:
07:2c:52:5a:6f:53:c6:9f:17:72:b8:51:d4:91:f9:6e:8c:77:
3d:a6:38:86:01:e2:3a:f5:39:e6:c0:d7:0b:2c:5c:53:4b:1a:
50:9d:00:72:ca:26:7b:18:b7:0b:5e:70:7e:cc:97:e2:97:17:
a6:6d:22:22:4c:65:92:d8:9f:48:30:8f:5c:38:0d:3c:d9:2a:
1e:48:a4:f1:72:4d:97:10:24:a7:95:6b:36:b0:9f:04:34:34:
1b:b8:7c:29:18:72:cf:fb:3b:ed:0f:aa:83:aa:25:0e:b3:8f:
47:f9:12:6b:55:47:ba:16:32:80:04:a0:b8:30:fb:c7:5c:10:
6f:af:e3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:00:05 2025 by rpki-client