Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_1FpQyzH6hDFwMQlqWRR760iB40.roa
File: _1FpQyzH6hDFwMQlqWRR760iB40.roa (raw, json)
Hash identifier: p6lJ40GKTgiR8gcYX1BiN38endRzZfmt9EyAgRGlcGQ=
Subject key identifier: FF:51:69:43:2C:C7:EA:10:C5:C0:C4:25:A9:64:51:EF:AD:22:07:8D
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0CA4
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_1FpQyzH6hDFwMQlqWRR760iB40.roa
Signing time: Mon 26 Aug 2024 05:26:55 +0000
ROA not before: Mon 26 Aug 2024 05:26:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131584
IP address blocks: 101.3.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3236 (0xca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Aug 26 05:26:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FF5169432CC7EA10C5C0C425A96451EFAD22078D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:48:4b:d9:02:9d:de:70:aa:68:55:17:05:c3:
d3:e0:70:55:3d:2e:19:03:2a:2c:be:78:29:b0:9f:
c3:05:79:90:52:aa:9d:d0:bc:79:43:65:b0:a7:d4:
8b:41:80:3d:d2:c6:88:0a:ec:72:05:81:99:91:cf:
f9:24:ba:00:6d:6b:e2:7d:af:51:1c:a4:d8:10:33:
fa:2e:e7:02:ab:67:81:bd:8c:12:78:e5:cf:15:aa:
27:8d:11:1a:f7:db:2f:71:48:eb:45:eb:de:06:e3:
b9:eb:dd:05:2d:71:a5:2e:ca:bf:2b:74:c1:ed:2e:
50:13:ca:25:95:ef:f1:74:9e:8e:b3:65:e9:42:74:
cd:92:c4:ce:45:69:af:18:dc:a5:2a:4a:7e:d2:c9:
a0:d1:35:c9:9a:90:37:7b:85:58:bd:eb:84:42:15:
07:e7:57:54:23:9f:41:a1:0c:94:b1:dc:d4:c1:85:
4b:0b:27:80:8d:28:cb:d6:98:57:c7:44:40:2f:a7:
49:67:8a:0b:8f:ab:ee:68:f7:3f:19:04:b0:95:09:
fb:28:c8:74:3f:ad:87:e9:74:88:93:1f:29:35:36:
2e:71:7d:23:7e:6c:c2:0d:77:67:0a:72:de:26:1a:
37:96:01:a0:60:ed:ff:74:f8:79:b9:9f:c3:7d:d0:
d6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:51:69:43:2C:C7:EA:10:C5:C0:C4:25:A9:64:51:EF:AD:22:07:8D
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_1FpQyzH6hDFwMQlqWRR760iB40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:09:b0:84:9e:9e:20:36:c2:79:1c:4b:42:9f:8a:44:3d:38:
ad:0a:42:81:9c:86:c1:f8:7e:88:ca:23:62:e7:aa:6d:f9:97:
ea:28:a8:a6:83:9c:ff:6a:a7:52:81:28:87:13:7d:62:fc:66:
31:ff:f2:b1:ba:f0:9f:af:fe:1b:3f:ea:62:83:c0:72:94:51:
88:78:22:51:99:af:9c:be:89:6e:75:e3:31:70:66:d4:b3:07:
36:b6:bb:d3:8c:ff:de:c6:de:58:27:20:83:25:fd:db:21:02:
f6:48:d9:75:2c:88:de:42:ff:85:48:0f:6a:8e:d4:6e:0b:65:
22:cd:a8:07:20:e8:c2:db:f2:c7:b9:d4:c9:c3:d6:2a:ce:88:
9c:bd:9e:b5:51:9b:ff:0d:75:f2:8d:ca:09:af:05:c3:b3:09:
8b:84:8f:4e:47:78:fb:75:a6:10:75:b5:33:df:d3:94:65:26:
7f:6c:64:71:3f:8f:54:62:be:02:f2:04:05:a6:ee:97:73:25:
4e:dd:01:f5:01:60:fb:b0:3a:2e:ef:34:54:4e:5a:89:f7:ab:
08:75:c2:c5:08:09:57:85:01:04:1a:77:a9:ac:de:99:96:b6:
a8:7f:00:97:5a:90:35:72:b2:72:a3:70:62:3a:21:c7:04:9f:
63:d4:f6:8b
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1
NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNDA4MjYw
NTI2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGNTE2OTQzMkNDN0VB
MTBDNUMwQzQyNUE5NjQ1MUVGQUQyMjA3OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnSEvZAp3ecKpoVRcFw9PgcFU9LhkDKiy+eCmwn8MFeZBSqp3Q
vHlDZbCn1ItBgD3SxogK7HIFgZmRz/kkugBta+J9r1EcpNgQM/ou5wKrZ4G9jBJ4
5c8VqieNERr32y9xSOtF694G47nr3QUtcaUuyr8rdMHtLlATyiWV7/F0no6zZelC
dM2SxM5Faa8Y3KUqSn7SyaDRNcmakDd7hVi964RCFQfnV1Qjn0GhDJSx3NTBhUsL
J4CNKMvWmFfHREAvp0lniguPq+5o9z8ZBLCVCfsoyHQ/rYfpdIiTHyk1Ni5xfSN+
bMINd2cKct4mGjeWAaBg7f90+Hm5n8N90NYZAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQU/1FpQyzH6hDFwMQlqWRR760iB40wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N
UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83
NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L18xRnBReXpINmhE
RndNUWxxV1JSNzYwaUI0MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwBlAzANBgkqhkiG9w0BAQsFAAOCAQEAiQmwhJ6eIDbCeRxLQp+KRD04rQpC
gZyGwfh+iMojYueqbfmX6iiopoOc/2qnUoEohxN9YvxmMf/ysbrwn6/+Gz/qYoPA
cpRRiHgiUZmvnL6JbnXjMXBm1LMHNra704z/3sbeWCcggyX92yEC9kjZdSyI3kL/
hUgPao7UbgtlIs2oByDowtvyx7nUycPWKs6InL2etVGb/w118o3KCa8Fw7MJi4SP
Tkd4+3WmEHW1M9/TlGUmf2xkcT+PVGK+AvIEBabul3MlTt0B9QFg+7A6Lu80VE5a
iferCHXCxQgJV4UBBBp3qazemZa2qH8Al1qQNXKycqNwYjohxwSfY9T2iw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:55 2025 by rpki-client