Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa
File: GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa (raw, json)
Hash identifier: 01edkud658+O6PFB2KWoqnefim4TTX+bxLBrFCt9BDY=
Subject key identifier: 18:B6:68:5E:54:22:10:9F:21:D3:61:8F:FE:96:20:D9:A3:2F:6F:92
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DDF
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa
Signing time: Mon 26 Aug 2024 05:27:15 +0000
ROA not before: Mon 26 Aug 2024 05:27:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18047
IP address blocks: 140.114.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3551 (0xddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=18B6685E5422109F21D3618FFE9620D9A32F6F92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:1a:00:2c:76:ee:c0:75:bc:e2:02:73:5a:
43:61:de:11:82:d2:d6:70:59:9b:87:1d:f8:e4:9c:
3d:a6:f1:dd:8f:88:ea:06:ad:21:06:f5:c0:08:23:
59:ec:cb:15:5b:ab:61:77:aa:85:74:8a:4f:7a:e6:
41:d4:05:28:52:d1:64:cc:58:5b:f4:17:f7:e8:97:
04:fd:b2:8e:68:ef:5d:12:a6:85:0f:74:d9:57:15:
b5:ea:9a:18:67:a0:fd:ab:12:1c:eb:22:cc:de:45:
c0:d7:80:46:73:70:81:5d:83:6b:82:65:eb:50:44:
be:1f:9e:ff:da:29:c8:ca:22:dc:65:f0:6a:28:32:
05:1c:35:5b:4d:8b:23:6d:25:d7:cf:ec:04:0a:83:
c5:57:89:20:24:2d:ab:2f:21:00:d1:50:31:f4:aa:
79:da:6b:47:f6:91:d3:c0:95:a3:d7:b1:95:f4:b4:
2f:00:66:1b:d8:b3:90:14:69:db:b7:55:7a:91:e9:
e7:98:91:ec:8c:51:47:0d:07:e6:d6:7d:7c:5b:70:
8d:e1:46:5a:54:7e:14:50:5f:81:05:9a:11:ad:51:
ad:70:3e:d2:9b:cc:25:d7:a4:cd:1a:b5:dc:48:c9:
88:78:d7:84:33:db:be:cd:cd:da:20:e4:1b:9e:9c:
7f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B6:68:5E:54:22:10:9F:21:D3:61:8F:FE:96:20:D9:A3:2F:6F:92
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.114.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:c4:01:c0:61:f3:63:a0:4b:ce:e1:8d:21:64:88:01:8f:f7:
52:ff:73:c5:f3:1c:d5:7c:7f:f9:92:9a:50:83:3f:89:ea:4c:
61:e2:38:e3:89:67:e0:34:cb:da:3f:16:44:2c:ee:94:3f:cd:
d6:ca:b8:17:ec:50:1a:8e:72:2d:28:00:79:bd:70:50:59:cb:
28:f4:f1:de:78:3f:fd:fd:2d:84:2a:68:d6:31:08:3b:c2:9c:
66:64:21:25:62:d2:ef:10:33:91:c8:1a:f0:ca:c3:0a:8c:2a:
51:c8:12:83:74:95:70:96:33:2c:98:a6:b0:89:77:38:eb:f5:
6e:6e:14:24:ca:a3:03:56:79:4b:dc:ee:08:e7:d8:cd:88:14:
03:b1:aa:45:30:4c:a8:3c:a4:e2:33:5c:8b:8e:52:46:9d:98:
2e:d2:55:9f:1f:47:40:07:d6:6a:87:c1:af:2f:24:15:58:83:
34:31:09:34:02:3b:ae:38:a3:2d:d5:9b:c2:b7:db:d2:6a:81:
68:3a:00:64:13:4e:02:7c:11:09:49:b3:84:d7:db:b6:05:a7:
d5:d4:4c:28:7c:85:dc:e1:fd:91:93:1a:7f:e0:cc:11:0a:4e:
17:0d:15:8d:b7:20:50:4e:04:89:9a:1a:e0:ca:95:bd:4f:c7:
9f:cb:b4:6f
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw
NTI3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4QjY2ODVFNTQyMjEw
OUYyMUQzNjE4RkZFOTYyMEQ5QTMyRjZGOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPwxoALHbuwHW84gJzWkNh3hGC0tZwWZuHHfjknD2m8d2PiOoG
rSEG9cAII1nsyxVbq2F3qoV0ik965kHUBShS0WTMWFv0F/folwT9so5o710SpoUP
dNlXFbXqmhhnoP2rEhzrIszeRcDXgEZzcIFdg2uCZetQRL4fnv/aKcjKItxl8Goo
MgUcNVtNiyNtJdfP7AQKg8VXiSAkLasvIQDRUDH0qnnaa0f2kdPAlaPXsZX0tC8A
ZhvYs5AUadu3VXqR6eeYkeyMUUcNB+bWfXxbcI3hRlpUfhRQX4EFmhGtUa1wPtKb
zCXXpM0atdxIyYh414Qz277Nzdog5BuenH+jAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUGLZoXlQiEJ8h02GP/pYg2aMvb5IwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HTFpvWGxRaUVKOGgwMkdQX3BZ
ZzJhTXZiNUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHIw
DQYJKoZIhvcNAQELBQADggEBAG/EAcBh82OgS87hjSFkiAGP91L/c8XzHNV8f/mS
mlCDP4nqTGHiOOOJZ+A0y9o/FkQs7pQ/zdbKuBfsUBqOci0oAHm9cFBZyyj08d54
P/39LYQqaNYxCDvCnGZkISVi0u8QM5HIGvDKwwqMKlHIEoN0lXCWMyyYprCJdzjr
9W5uFCTKowNWeUvc7gjn2M2IFAOxqkUwTKg8pOIzXIuOUkadmC7SVZ8fR0AH1mqH
wa8vJBVYgzQxCTQCO644oy3Vm8K329JqgWg6AGQTTgJ8EQlJs4TX27YFp9XUTCh8
hdzh/ZGTGn/gzBEKThcNFY23IFBOBImaGuDKlb1Px5/LtG8=
-----END CERTIFICATE-----
Generated at Mon Apr 7 08:54:33 2025 by rpki-client