Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/MJ3Ma8oElEuzuJSdaYndreehZco.roa
File: MJ3Ma8oElEuzuJSdaYndreehZco.roa (raw, json)
Hash identifier: r/lkTCkpqYdlqlgAjPOCWXHqEigyQQhEhGljVp0Ki2Q=
Subject key identifier: 30:9D:CC:6B:CA:04:94:4B:B3:B8:94:9D:69:89:DD:AD:E7:A1:65:CA
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0D8D
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/MJ3Ma8oElEuzuJSdaYndreehZco.roa
Signing time: Fri 23 May 2025 07:41:29 +0000
ROA not before: Fri 23 May 2025 07:41:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4783
IP address blocks: 210.67.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 May 2025 05:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3469 (0xd8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: May 23 07:41:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=309DCC6BCA04944BB3B8949D6989DDADE7A165CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:73:e4:d4:a3:e6:d3:0c:c6:0a:0a:06:b6:f0:
25:71:83:ba:94:6d:03:e4:05:d0:be:a0:b4:1b:dd:
5e:41:b6:5b:df:c1:01:72:0e:0a:8f:ee:6d:3e:9c:
7b:e9:60:01:49:82:e4:0c:11:dc:af:2d:9d:c9:94:
38:92:ca:15:60:74:6f:70:c1:c5:9f:b2:4e:83:79:
e7:15:ab:83:4e:5c:79:3f:f4:e9:24:15:61:23:cb:
47:3e:78:b1:58:d4:c1:b6:15:07:a0:90:d3:fc:f9:
9e:f1:43:6d:a4:a3:b9:0a:76:74:d6:1a:44:e1:50:
f0:c1:57:d8:7d:e7:bf:ba:a8:19:91:53:8a:d3:ff:
6f:d7:86:55:ce:64:b3:3a:e0:9f:2e:0f:6c:9f:a3:
1e:e6:f1:cb:81:c0:72:cf:2f:f2:6f:10:01:ea:ec:
ca:d1:d2:ce:2d:c2:a2:ca:bc:90:8e:16:47:ae:70:
d0:bf:ba:8d:d5:b4:2d:14:e7:8d:0f:67:ac:4d:07:
8e:27:cd:e2:ef:99:40:77:dd:39:ff:22:50:bb:aa:
bf:cd:d6:4e:5d:97:30:cd:c0:fa:12:80:68:f6:2e:
2f:c6:4e:91:d2:62:78:c9:87:6e:cf:00:ad:60:b5:
25:4f:ef:f4:ac:58:c8:ff:1d:62:af:7d:5c:a2:4d:
60:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9D:CC:6B:CA:04:94:4B:B3:B8:94:9D:69:89:DD:AD:E7:A1:65:CA
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/MJ3Ma8oElEuzuJSdaYndreehZco.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.132.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:0d:75:8c:57:b2:12:e6:cf:04:7a:fa:40:5a:c0:7f:df:cc:
8d:fc:a4:aa:74:41:52:e6:08:9b:fa:6e:0a:12:1d:8f:ca:71:
63:7d:28:7e:32:b3:f1:a9:b5:50:f1:b4:87:b4:05:56:55:77:
40:10:1e:3c:14:14:29:89:d0:2e:35:6e:44:c2:22:20:44:1d:
c5:f2:d5:77:9f:bb:60:d0:3d:95:53:7f:c3:bd:c9:c9:4a:27:
1b:2b:e5:d1:c4:5d:33:9f:60:b0:fa:08:0a:a3:21:eb:eb:78:
71:de:17:d9:6b:3f:d8:c9:5e:ef:46:6d:88:0b:2f:e1:83:09:
31:c9:0a:f8:61:e6:05:0d:18:77:b6:43:fc:6e:7f:4d:bb:11:
d5:09:02:09:92:6d:58:e5:ff:32:0a:46:4d:8c:75:12:5e:d6:
8f:6b:4f:38:4c:bc:93:02:5d:ff:42:70:dc:f5:5b:68:1c:8c:
3f:e7:2b:03:f2:2f:f9:f6:1c:2a:0d:40:90:bf:81:7e:df:1c:
93:cc:5d:91:26:f5:0e:6c:31:aa:7c:70:dd:23:97:d0:6b:f1:
f5:85:7a:42:9c:fb:d9:a7:53:93:9b:98:6f:7f:44:e4:42:38:
22:c5:d4:be:70:62:76:9f:26:07:fe:34:88:d8:96:fe:45:49:
af:6c:b0:06
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC
Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA1MjMw
NzQxMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMwOURDQzZCQ0EwNDk0
NEJCM0I4OTQ5RDY5ODlEREFERTdBMTY1Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGc+TUo+bTDMYKCga28CVxg7qUbQPkBdC+oLQb3V5BtlvfwQFy
DgqP7m0+nHvpYAFJguQMEdyvLZ3JlDiSyhVgdG9wwcWfsk6DeecVq4NOXHk/9Okk
FWEjy0c+eLFY1MG2FQegkNP8+Z7xQ22ko7kKdnTWGkThUPDBV9h957+6qBmRU4rT
/2/XhlXOZLM64J8uD2yfox7m8cuBwHLPL/JvEAHq7MrR0s4twqLKvJCOFkeucNC/
uo3VtC0U540PZ6xNB44nzeLvmUB33Tn/IlC7qr/N1k5dlzDNwPoSgGj2Li/GTpHS
YnjJh27PAK1gtSVP7/SsWMj/HWKvfVyiTWA9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMJ3Ma8oElEuzuJSdaYndreehZcowHwYDVR0jBBgwFoAUlruUtFf52CoptbL9
nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU
L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL01KM01hOG9FbEV1enVKU2Rh
WW5kcmVlaFpjby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALS
Q4QwDQYJKoZIhvcNAQELBQADggEBAD8NdYxXshLmzwR6+kBawH/fzI38pKp0QVLm
CJv6bgoSHY/KcWN9KH4ys/GptVDxtIe0BVZVd0AQHjwUFCmJ0C41bkTCIiBEHcXy
1Xefu2DQPZVTf8O9yclKJxsr5dHEXTOfYLD6CAqjIevreHHeF9lrP9jJXu9GbYgL
L+GDCTHJCvhh5gUNGHe2Q/xuf027EdUJAgmSbVjl/zIKRk2MdRJe1o9rTzhMvJMC
Xf9CcNz1W2gcjD/nKwPyL/n2HCoNQJC/gX7fHJPMXZEm9Q5sMap8cN0jl9Br8fWF
ekKc+9mnU5ObmG9/RORCOCLF1L5wYnafJgf+NIjYlv5FSa9ssAY=
-----END CERTIFICATE-----
Generated at Tue Jun 3 23:54:38 2025 by rpki-client