Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rw1vyIn_627ZS3kbAdrXrpYsEJY.roa
File: rw1vyIn_627ZS3kbAdrXrpYsEJY.roa (raw, json)
Hash identifier: lJy2isBV7TLKSy0vTwMA72oMZxjyT70FyweKORSgr0w=
Subject key identifier: AF:0D:6F:C8:89:FF:EB:6E:D9:4B:79:1B:01:DA:D7:AE:96:2C:10:96
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E3E
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rw1vyIn_627ZS3kbAdrXrpYsEJY.roa
Signing time: Mon 02 Dec 2024 08:33:38 +0000
ROA not before: Mon 02 Dec 2024 08:33:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 192.192.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646 (0xe3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Dec 2 08:33:38 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AF0D6FC889FFEB6ED94B791B01DAD7AE962C1096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:68:c1:8e:d3:19:c3:3d:8f:1b:22:39:63:89:
a2:e1:d6:1c:a2:04:f9:14:6e:b9:78:9d:1a:07:50:
58:f8:05:72:dc:13:a1:d2:3c:a2:fe:3c:2e:2a:70:
ee:02:6d:94:3b:6f:10:9b:cf:4b:37:9b:3c:20:69:
2c:93:85:5d:4a:c3:35:68:b8:4c:f4:24:39:79:54:
f7:00:52:85:a9:21:21:55:7f:45:60:4e:ca:4d:8e:
25:eb:75:4a:9c:7a:d3:a1:85:00:ab:7e:31:91:cd:
ef:0d:c1:9c:ed:2a:64:c9:45:71:2b:a5:d4:62:c0:
b6:0d:ea:11:2a:10:09:6e:28:76:5c:61:b6:3a:c6:
c2:95:ee:f9:3f:a1:d1:7f:7a:41:33:49:05:31:b6:
90:09:4e:73:a0:85:a8:27:e3:c5:6a:4e:1b:67:e0:
31:8a:db:e4:b2:99:18:a5:a3:d2:04:6f:ee:ab:e8:
84:89:94:e3:9b:18:96:ac:c8:d0:5e:6d:d0:74:c1:
cf:c8:2e:97:fa:40:86:8a:35:60:a3:cd:41:7c:94:
92:b8:e9:9b:9f:db:38:f1:c8:15:53:0f:d9:34:a4:
50:36:89:97:e1:09:73:a8:88:db:80:ac:bf:35:84:
c2:7a:22:48:04:88:19:01:67:56:6a:35:ca:de:33:
ab:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0D:6F:C8:89:FF:EB:6E:D9:4B:79:1B:01:DA:D7:AE:96:2C:10:96
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rw1vyIn_627ZS3kbAdrXrpYsEJY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.192.1.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f0:08:4d:f4:84:5e:f3:2a:c6:cb:41:65:b8:fe:ce:2f:38:
9a:44:b2:73:79:4a:7f:6e:16:95:95:2f:e7:87:8c:75:82:06:
34:9c:f1:43:18:c4:a3:44:03:8a:7c:68:7f:93:e4:0b:6f:6b:
6d:a1:26:f8:9d:cb:cd:42:36:4f:58:c2:2d:36:41:78:5b:4c:
f2:41:14:cb:44:07:2b:5f:3e:2c:76:cd:8b:00:eb:b5:8f:23:
7c:21:b9:7c:fb:63:88:09:5e:78:b2:86:6a:19:55:68:45:58:
50:52:e5:1f:84:7d:60:07:e7:72:3f:d2:a7:8e:5a:c0:cb:d4:
ad:2a:36:ef:c7:98:21:33:58:88:a9:ef:80:42:e7:b7:1e:27:
39:df:47:f1:ba:aa:41:f4:7d:a2:57:99:ea:61:3d:37:c2:1d:
29:56:bf:b6:ce:cb:47:09:d3:37:b3:94:af:4e:28:fa:b9:0a:
e3:d1:8f:0a:e3:1c:2d:39:c1:60:c9:4c:b2:e3:42:be:96:ab:
3b:39:da:4c:74:06:38:f1:ad:ca:1e:53:a1:0a:6e:9a:7b:49:
02:e9:2a:10:30:03:5d:4f:86:57:a7:98:dc:b4:d4:14:df:3c:
0d:3c:c5:7e:6d:52:95:b5:24:7a:b6:34:b2:06:28:3d:28:c2:
98:17:b0:c9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDEyMDIw
ODMzMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGMEQ2RkM4ODlGRkVC
NkVEOTRCNzkxQjAxREFEN0FFOTYyQzEwOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuaMGO0xnDPY8bIjljiaLh1hyiBPkUbrl4nRoHUFj4BXLcE6HS
PKL+PC4qcO4CbZQ7bxCbz0s3mzwgaSyThV1KwzVouEz0JDl5VPcAUoWpISFVf0Vg
TspNjiXrdUqcetOhhQCrfjGRze8NwZztKmTJRXErpdRiwLYN6hEqEAluKHZcYbY6
xsKV7vk/odF/ekEzSQUxtpAJTnOghagn48VqThtn4DGK2+SymRilo9IEb+6r6ISJ
lOObGJasyNBebdB0wc/ILpf6QIaKNWCjzUF8lJK46Zuf2zjxyBVTD9k0pFA2iZfh
CXOoiNuArL81hMJ6IkgEiBkBZ1ZqNcreM6thAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUrw1vyIn/627ZS3kbAdrXrpYsEJYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ydzF2eUluXzYyN1pTM2tiQWRy
WHJwWXNFSlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwMAB
MA0GCSqGSIb3DQEBCwUAA4IBAQA08AhN9IRe8yrGy0FluP7OLziaRLJzeUp/bhaV
lS/nh4x1ggY0nPFDGMSjRAOKfGh/k+QLb2ttoSb4ncvNQjZPWMItNkF4W0zyQRTL
RAcrXz4sds2LAOu1jyN8Ibl8+2OICV54soZqGVVoRVhQUuUfhH1gB+dyP9KnjlrA
y9StKjbvx5ghM1iIqe+AQue3Hic530fxuqpB9H2iV5nqYT03wh0pVr+2zstHCdM3
s5SvTij6uQrj0Y8K4xwtOcFgyUyy40K+lqs7OdpMdAY48a3KHlOhCm6ae0kC6SoQ
MANdT4ZXp5jctNQU3zwNPMV+bVKVtSR6tjSyBig9KMKYF7DJ
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:34 2025 by rpki-client