Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa
File: xUTDjtwF673990Z0RkNZFntri-U.roa (raw, json)
Hash identifier: Ci014Skh2rap2Uj0ByQdeVgV3ZIhjD59mK3GJNpd3f0=
Subject key identifier: C5:44:C3:8E:DC:05:EB:BD:FD:F7:46:74:46:43:59:16:7B:6B:8B:E5
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DDB
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa
Signing time: Mon 26 Aug 2024 05:27:13 +0000
ROA not before: Mon 26 Aug 2024 05:27:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 192.192.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3547 (0xddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C544C38EDC05EBBDFDF74674464359167B6B8BE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ad:56:f6:ec:e5:bf:67:a1:73:6f:b3:dd:86:
6d:9d:95:23:f9:3b:09:58:7c:45:49:5b:52:65:d7:
cc:36:a9:72:1b:d6:30:00:10:53:7c:92:fc:03:1a:
1f:17:d5:9e:16:d4:17:07:ff:a3:e8:75:ce:82:4d:
07:de:1e:43:2e:f2:aa:88:55:b4:1a:5f:77:15:a5:
55:e9:3d:34:8a:fb:e8:54:03:e1:c6:15:51:d8:32:
32:36:55:4a:81:15:04:dc:51:f2:8b:37:c9:b0:49:
58:d3:6b:a6:48:4a:75:05:4e:4e:36:0d:62:fd:45:
17:55:ed:9f:c7:a7:6c:0e:97:5e:29:d7:ab:8e:05:
17:59:21:fc:12:53:9d:ed:2d:e8:32:59:a2:e7:73:
f2:0b:a5:03:b5:21:59:20:c2:bf:e2:3b:11:63:c2:
d9:ad:a0:5c:ce:f4:56:d3:ee:44:3d:40:22:be:c3:
e7:69:ed:b4:a8:94:94:a4:48:e5:d5:eb:97:61:5f:
8c:a8:4f:94:47:39:63:9e:54:66:d0:47:21:ca:fd:
4a:ff:c3:fc:52:dd:cc:1f:c2:9c:de:b0:97:e2:fb:
b9:58:37:a0:12:5f:b9:bb:a8:34:79:7b:a8:85:bf:
95:98:9c:b5:ab:0a:3e:1a:21:3f:54:12:b0:fb:be:
c5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:44:C3:8E:DC:05:EB:BD:FD:F7:46:74:46:43:59:16:7B:6B:8B:E5
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.192.0.0/16
Signature Algorithm: sha256WithRSAEncryption
45:10:75:fd:8a:7d:6d:1f:2b:2f:dd:e5:8d:7d:96:19:28:6b:
be:19:cb:d8:83:49:d0:7d:bd:06:4c:a8:37:59:98:4e:0a:32:
96:f8:6c:9e:86:b0:30:97:ce:10:34:44:ea:45:93:8c:0e:e9:
e7:5c:ca:e5:4a:d2:b9:4f:15:75:00:db:a1:65:19:58:ac:01:
39:00:4e:6c:99:1d:a7:7c:54:9c:50:4c:4b:a4:be:df:fe:be:
ed:74:5c:47:1a:9b:0d:e3:0d:1c:16:a1:7d:f4:17:2d:98:e6:
ea:d1:46:e4:c6:57:c9:6a:71:e4:3c:f8:d7:43:a6:eb:0b:21:
fa:76:7d:63:f1:c2:9a:ee:92:d2:c0:b6:dd:7b:f1:fc:71:c6:
7a:8a:89:31:ce:b1:b5:fa:12:2d:01:14:da:a0:a3:d0:9f:8c:
c3:b9:4a:f5:f0:12:48:03:14:e9:89:c3:e1:85:48:53:96:73:
00:a3:66:bd:ed:df:c6:8a:15:4f:06:0a:12:ba:b4:c7:f3:91:
6b:02:53:f4:ba:54:1f:7b:18:a8:b8:60:06:2d:91:57:6f:9e:
ec:72:9b:12:e3:d0:4a:71:cc:81:af:f4:a9:96:2f:29:d7:21:
e2:32:37:2a:12:cb:8a:53:74:78:5a:56:80:61:d9:3f:76:42:
b1:91:1d:d3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw
NTI3MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1NDRDMzhFREMwNUVC
QkRGREY3NDY3NDQ2NDM1OTE2N0I2QjhCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDrVb27OW/Z6Fzb7Pdhm2dlSP5OwlYfEVJW1Jl18w2qXIb1jAA
EFN8kvwDGh8X1Z4W1BcH/6Podc6CTQfeHkMu8qqIVbQaX3cVpVXpPTSK++hUA+HG
FVHYMjI2VUqBFQTcUfKLN8mwSVjTa6ZISnUFTk42DWL9RRdV7Z/Hp2wOl14p16uO
BRdZIfwSU53tLegyWaLnc/ILpQO1IVkgwr/iOxFjwtmtoFzO9FbT7kQ9QCK+w+dp
7bSolJSkSOXV65dhX4yoT5RHOWOeVGbQRyHK/Ur/w/xS3cwfwpzesJfi+7lYN6AS
X7m7qDR5e6iFv5WYnLWrCj4aIT9UErD7vsU7AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUxUTDjtwF673990Z0RkNZFntri+UwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC94VVREanR3RjY3Mzk5MFowUmtO
WkZudHJpLVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAwMAw
DQYJKoZIhvcNAQELBQADggEBAEUQdf2KfW0fKy/d5Y19lhkoa74Zy9iDSdB9vQZM
qDdZmE4KMpb4bJ6GsDCXzhA0ROpFk4wO6edcyuVK0rlPFXUA26FlGVisATkATmyZ
Had8VJxQTEukvt/+vu10XEcamw3jDRwWoX30Fy2Y5urRRuTGV8lqceQ8+NdDpusL
Ifp2fWPxwpruktLAtt178fxxxnqKiTHOsbX6Ei0BFNqgo9CfjMO5SvXwEkgDFOmJ
w+GFSFOWcwCjZr3t38aKFU8GChK6tMfzkWsCU/S6VB97GKi4YAYtkVdvnuxymxLj
0EpxzIGv9KmWLynXIeIyNyoSy4pTdHhaVoBh2T92QrGRHdM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:33 2025 by rpki-client