Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa
File: UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa (raw, json)
Hash identifier: FB4GO+H7l23K5e7v64TK9yJmytFeKcyZeJhd/rrfbc0=
Subject key identifier: 50:BF:A2:1D:CF:19:27:C3:3A:CB:47:32:75:D6:14:D3:3E:08:E7:2A
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DED
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa
Signing time: Mon 26 Aug 2024 05:27:21 +0000
ROA not before: Mon 26 Aug 2024 05:27:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 140.112.0.0/12 maxlen: 12
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3565 (0xded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=50BFA21DCF1927C33ACB473275D614D33E08E72A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:cc:0b:0e:c2:fb:b5:e7:e2:7d:a7:ea:8a:
26:00:a3:ed:d2:77:b9:ed:78:fa:40:9e:0a:d4:34:
b0:39:bf:c5:8d:fe:02:43:f4:55:e6:de:5a:35:15:
9c:59:a6:86:12:f9:f4:41:ce:a9:4e:76:16:ce:a4:
87:fd:6c:8e:2c:f2:13:f6:7d:44:cf:f1:fa:c0:6a:
09:e5:48:69:4f:4e:30:a5:53:80:a7:96:94:d6:79:
a2:ab:d6:57:c8:43:f0:0d:86:01:ac:1a:1b:2c:d2:
07:73:bd:5f:82:4d:54:8d:fc:9f:f4:36:7a:67:e8:
54:b0:d3:18:20:65:8b:ac:ef:dc:45:7d:19:b5:de:
08:b9:f3:5c:8f:6b:fa:da:36:d8:ba:c4:5f:0f:d7:
c4:7f:b6:51:93:1a:fe:aa:a6:47:9e:9d:be:b9:7a:
37:b8:52:17:a0:c3:c1:da:58:9b:05:7b:af:03:ae:
45:77:cd:b0:bc:4c:bb:6b:80:df:33:8d:e2:40:31:
dd:29:cd:df:d7:c6:2f:a7:af:9e:28:42:38:ca:de:
a1:e7:e3:1a:8d:09:b3:43:88:35:d3:8a:59:a0:c9:
af:2f:32:b7:d3:22:17:dd:00:b0:a9:3b:69:a8:7d:
ad:2d:45:ad:f5:5e:c3:70:bd:26:16:66:ce:c3:7a:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BF:A2:1D:CF:19:27:C3:3A:CB:47:32:75:D6:14:D3:3E:08:E7:2A
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/12
Signature Algorithm: sha256WithRSAEncryption
9a:a7:74:df:3e:e5:e8:90:8b:02:3d:64:bd:ff:d9:cf:33:2e:
e7:18:08:ea:60:c1:1c:3d:59:a8:a9:6a:13:c4:4c:85:71:a1:
bb:4d:02:4d:79:05:44:b7:d6:66:49:44:a7:0d:9c:0a:2e:e9:
f5:90:0a:c5:4e:c0:79:27:71:87:7f:1c:cd:ad:16:a0:38:58:
a9:43:aa:94:fa:70:5f:60:eb:07:af:1d:ed:60:55:91:17:bc:
ec:89:15:a6:3b:84:bb:6a:1a:96:24:43:8b:ed:cd:5b:b9:ba:
12:b7:58:ef:22:06:5c:b8:a4:49:42:4e:90:f4:0e:3f:e3:93:
44:ef:f8:b7:f3:f7:5e:f3:a1:0f:c9:30:43:41:84:4e:55:7c:
c4:a3:c0:a8:65:03:5e:43:d1:ec:b8:86:fd:10:6a:d3:84:6c:
c7:ad:bc:b1:29:7e:29:b6:d7:8a:81:ec:d2:2d:06:b5:ad:bd:
35:bb:0f:be:3a:04:d9:e9:c5:53:84:6e:99:2b:8f:f7:13:d8:
4c:25:67:21:94:6a:b8:74:17:b6:08:7c:a4:00:59:10:68:96:
2d:1c:96:42:30:26:e9:c1:4b:05:0a:fc:fd:82:39:af:c9:24:
96:d9:93:f0:3a:84:8d:c2:de:0d:00:9e:62:9a:c0:5d:08:28:
e6:c6:35:8a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw
NTI3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwQkZBMjFEQ0YxOTI3
QzMzQUNCNDczMjc1RDYxNEQzM0UwOEU3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEmswLDsL7tefifafqiiYAo+3Sd7ntePpAngrUNLA5v8WN/gJD
9FXm3lo1FZxZpoYS+fRBzqlOdhbOpIf9bI4s8hP2fUTP8frAagnlSGlPTjClU4Cn
lpTWeaKr1lfIQ/ANhgGsGhss0gdzvV+CTVSN/J/0Nnpn6FSw0xggZYus79xFfRm1
3gi581yPa/raNti6xF8P18R/tlGTGv6qpkeenb65eje4Uhegw8HaWJsFe68DrkV3
zbC8TLtrgN8zjeJAMd0pzd/Xxi+nr54oQjjK3qHn4xqNCbNDiDXTilmgya8vMrfT
IhfdALCpO2mofa0tRa31XsNwvSYWZs7Dei1tAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUUL+iHc8ZJ8M6y0cyddYU0z4I5yowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9VTC1pSGM4Wko4TTZ5MGN5ZGRZ
VTB6NEk1eW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEjHAw
DQYJKoZIhvcNAQELBQADggEBAJqndN8+5eiQiwI9ZL3/2c8zLucYCOpgwRw9Waip
ahPETIVxobtNAk15BUS31mZJRKcNnAou6fWQCsVOwHkncYd/HM2tFqA4WKlDqpT6
cF9g6wevHe1gVZEXvOyJFaY7hLtqGpYkQ4vtzVu5uhK3WO8iBly4pElCTpD0Dj/j
k0Tv+Lfz917zoQ/JMENBhE5VfMSjwKhlA15D0ey4hv0QatOEbMetvLEpfim214qB
7NItBrWtvTW7D746BNnpxVOEbpkrj/cT2EwlZyGUarh0F7YIfKQAWRBoli0clkIw
JunBSwUK/P2COa/JJJbZk/A6hI3C3g0AnmKawF0IKObGNYo=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:33 2025 by rpki-client