Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/sdue0I_qQkZdb2_QWBIEjk8I8jE.roa
File: sdue0I_qQkZdb2_QWBIEjk8I8jE.roa (raw, json)
Hash identifier: WMmV5jR2EX4iYz5EZxVwuQ9H9LDxBnVzHX9lvbwsoJk=
Subject key identifier: B1:DB:9E:D0:8F:EA:42:46:5D:6F:6F:D0:58:12:04:8E:4F:08:F2:31
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0C55
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/sdue0I_qQkZdb2_QWBIEjk8I8jE.roa
Signing time: Mon 26 Aug 2024 05:26:48 +0000
ROA not before: Mon 26 Aug 2024 05:26:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4783
IP address blocks: 210.67.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3157 (0xc55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Aug 26 05:26:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B1DB9ED08FEA42465D6F6FD05812048E4F08F231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:55:60:00:31:fa:fe:9f:df:63:22:59:10:8f:
e4:e0:90:bc:47:17:4b:69:e5:a6:d5:ce:45:ae:d8:
81:ef:7d:33:f4:20:76:c2:d8:fa:ff:ff:bd:05:ac:
10:b1:56:9a:77:fa:1c:d8:f4:48:68:7c:a2:90:9d:
48:29:45:3f:c4:73:36:ac:f3:06:91:4e:49:49:41:
e0:85:33:16:70:fd:8a:db:59:21:5a:15:f5:fd:4f:
25:3f:90:f2:4c:00:7d:e0:93:06:28:79:75:38:71:
cd:5f:50:43:7e:51:fb:da:f9:4f:d2:ae:08:bb:96:
88:17:85:47:ec:e6:57:5e:93:5c:34:f0:e7:52:dc:
66:26:ff:ca:5a:fa:a3:99:a0:27:38:a0:08:f2:fa:
84:8b:69:7f:17:b7:a7:78:48:1c:19:1a:60:48:ec:
09:0e:7b:26:ff:18:a3:d7:f7:8f:a7:0d:fb:5d:53:
a2:ab:e7:1c:56:ac:03:d0:0a:3b:95:05:ce:68:99:
e4:be:01:99:2d:40:e0:97:3b:87:3e:c2:ca:94:e6:
22:a3:6f:99:fb:51:37:39:7f:d6:1a:b0:78:23:be:
97:cc:c2:21:2e:5d:d8:15:4e:6f:f5:2e:df:4d:7b:
59:27:e7:12:12:da:15:f6:5b:18:3f:45:f2:79:af:
a0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:DB:9E:D0:8F:EA:42:46:5D:6F:6F:D0:58:12:04:8E:4F:08:F2:31
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/sdue0I_qQkZdb2_QWBIEjk8I8jE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.128.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:f4:c0:98:2f:dc:ea:6a:55:a0:1a:68:b1:34:92:8c:2a:52:
b3:79:82:14:f7:ca:47:7b:e7:da:0f:7a:05:67:bc:31:f3:c2:
23:81:70:df:da:5e:05:ec:80:3c:42:36:01:64:9c:bb:6d:f7:
23:5b:45:f7:3a:39:4a:2b:7d:c3:a3:15:bd:f1:91:d9:2c:b9:
2c:a7:55:b1:7d:75:7d:f7:d4:57:d1:f2:a4:dd:c8:bf:6c:90:
f9:ca:cc:a3:89:9d:f3:df:12:f9:11:8f:d2:c3:97:98:6e:d8:
16:d2:6e:91:d8:05:37:d5:b6:00:a5:e2:96:f1:73:83:1d:52:
06:07:2a:97:10:28:fa:3f:e2:39:b5:55:37:a7:24:b0:55:e7:
35:a0:59:af:d8:3a:7f:af:d3:5e:d1:c8:51:f9:6e:0c:88:92:
aa:8c:fb:98:df:cd:5c:46:e0:6d:e2:aa:54:c2:b2:af:1d:8a:
f5:ad:03:0e:da:64:9b:c2:e6:f8:57:0b:ed:29:82:b7:65:73:
5c:10:28:1a:94:82:08:6c:fb:20:46:0e:ab:b0:ea:ab:c4:6b:
42:33:e3:49:66:b7:1e:f2:c8:69:88:3d:09:53:09:0f:6d:bc:
58:64:62:26:75:2e:be:a4:93:53:e8:d8:90:b0:a4:52:46:91:
ce:9b:91:3d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC
Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNDA4MjYw
NTI2NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxREI5RUQwOEZFQTQy
NDY1RDZGNkZEMDU4MTIwNDhFNEYwOEYyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRVWAAMfr+n99jIlkQj+TgkLxHF0tp5abVzkWu2IHvfTP0IHbC
2Pr//70FrBCxVpp3+hzY9EhofKKQnUgpRT/Eczas8waRTklJQeCFMxZw/YrbWSFa
FfX9TyU/kPJMAH3gkwYoeXU4cc1fUEN+Ufva+U/Srgi7logXhUfs5ldek1w08OdS
3GYm/8pa+qOZoCc4oAjy+oSLaX8Xt6d4SBwZGmBI7AkOeyb/GKPX94+nDftdU6Kr
5xxWrAPQCjuVBc5omeS+AZktQOCXO4c+wsqU5iKjb5n7UTc5f9YasHgjvpfMwiEu
XdgVTm/1Lt9Ne1kn5xIS2hX2Wxg/RfJ5r6AHAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUsdue0I/qQkZdb2/QWBIEjk8I8jEwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9
nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU
L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL3NkdWUwSV9xUWtaZGIyX1FX
QklFams4SThqRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS
Q4AwDQYJKoZIhvcNAQELBQADggEBAAv0wJgv3OpqVaAaaLE0kowqUrN5ghT3ykd7
59oPegVnvDHzwiOBcN/aXgXsgDxCNgFknLtt9yNbRfc6OUorfcOjFb3xkdksuSyn
VbF9dX331FfR8qTdyL9skPnKzKOJnfPfEvkRj9LDl5hu2BbSbpHYBTfVtgCl4pbx
c4MdUgYHKpcQKPo/4jm1VTenJLBV5zWgWa/YOn+v017RyFH5bgyIkqqM+5jfzVxG
4G3iqlTCsq8divWtAw7aZJvC5vhXC+0pgrdlc1wQKBqUgghs+yBGDquw6qvEa0Iz
40lmtx7yyGmIPQlTCQ9tvFhkYiZ1Lr6kk1Po2JCwpFJGkc6bkT0=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:30 2025 by rpki-client