Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZleLLb06h1I70QfOm8N-do4LahU.roa
File: ZleLLb06h1I70QfOm8N-do4LahU.roa (raw, json)
Hash identifier: iLzPTcQl1RbR6kvZNPq9DMOJnp1h6hzXXyx032d8OKY=
Subject key identifier: 66:57:8B:2D:BD:3A:87:52:3B:D1:07:CE:9B:C3:7E:76:8E:0B:6A:15
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CC3
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZleLLb06h1I70QfOm8N-do4LahU.roa
Signing time: Mon 26 Aug 2024 05:27:32 +0000
ROA not before: Mon 26 Aug 2024 05:27:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.58.160.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3267 (0xcc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=66578B2DBD3A87523BD107CE9BC37E768E0B6A15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a4:ca:33:ee:d5:14:ae:d9:91:48:f3:9b:d1:
2a:a0:1e:24:e8:09:64:a6:66:e7:68:28:24:cd:39:
35:2a:de:f5:9b:ba:17:af:f0:68:06:3a:a0:ae:dc:
d8:3c:68:aa:49:0b:ec:8e:f8:54:d5:47:e9:d8:fa:
b4:00:56:08:62:73:aa:17:9f:26:57:ac:73:6b:79:
29:be:67:6d:54:6d:9c:da:78:06:d4:9a:4f:7b:6f:
7c:e6:3c:49:04:83:75:fe:bb:ac:1d:2f:f2:04:09:
27:5b:49:d2:70:8c:b7:62:88:a0:96:4c:63:2b:9c:
54:8c:58:7a:22:ef:be:8c:36:7e:c9:59:de:cb:eb:
22:e6:bd:39:34:4f:18:ed:28:81:29:17:e0:73:cb:
f3:c7:df:c3:3c:b7:62:4c:ee:8c:aa:1f:81:ca:ee:
40:30:ec:05:cd:6f:dd:4e:20:80:8b:bd:3e:cf:4b:
82:4d:ce:d4:60:5d:a9:85:71:62:7c:36:c0:29:38:
38:15:29:92:30:8e:45:7c:dd:ee:0c:48:47:47:a7:
6f:ac:78:43:c3:e0:a2:79:da:e9:b4:01:17:70:e6:
74:0f:ab:10:a3:c0:7d:e3:41:ca:94:8e:98:a9:c6:
c1:dc:29:09:da:57:45:66:1a:d4:99:20:65:66:94:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:57:8B:2D:BD:3A:87:52:3B:D1:07:CE:9B:C3:7E:76:8E:0B:6A:15
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZleLLb06h1I70QfOm8N-do4LahU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.160.0/19
Signature Algorithm: sha256WithRSAEncryption
45:2d:e3:b9:79:42:45:21:10:44:f0:d3:30:1a:cd:e7:54:bf:
40:d9:36:70:08:28:58:1a:93:25:75:57:3b:0b:14:26:b8:1e:
a8:f4:1e:38:6b:57:24:33:4f:bf:b6:73:e1:81:97:91:82:70:
c3:45:00:32:28:4c:57:46:53:88:33:a3:50:78:61:9b:69:9b:
07:a4:98:8f:bf:b8:be:72:89:99:fc:46:1a:ce:50:89:a2:24:
c8:79:56:33:0a:48:3c:f3:c7:3e:f6:4a:09:6e:22:97:73:b4:
5b:f8:8d:8b:68:cc:d4:5c:b3:1c:5d:54:34:28:b7:4a:5b:35:
39:2c:3d:48:cf:38:12:d2:2c:a9:0a:72:82:09:b9:ca:d7:f0:
58:28:f9:a2:94:61:69:3b:e8:c1:ed:83:c8:45:57:46:13:2a:
9e:70:88:c3:e1:b7:3f:70:19:fa:49:84:49:41:73:f5:52:10:
c4:2a:96:23:d7:89:da:84:cf:e7:f3:d2:2f:19:8f:6c:61:a4:
a7:c9:f6:f8:56:93:bf:21:52:f2:5b:29:9c:0b:5e:3c:64:81:
f8:5c:f0:87:c7:38:c8:c3:d6:a7:4a:3b:93:62:4a:5d:71:42:
08:03:28:8d:ad:35:82:86:f1:4f:94:fa:6d:9b:45:27:f7:81:
f3:43:ba:22
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw
NTI3MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2NTc4QjJEQkQzQTg3
NTIzQkQxMDdDRTlCQzM3RTc2OEUwQjZBMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCopMoz7tUUrtmRSPOb0SqgHiToCWSmZudoKCTNOTUq3vWbuhev
8GgGOqCu3Ng8aKpJC+yO+FTVR+nY+rQAVghic6oXnyZXrHNreSm+Z21UbZzaeAbU
mk97b3zmPEkEg3X+u6wdL/IECSdbSdJwjLdiiKCWTGMrnFSMWHoi776MNn7JWd7L
6yLmvTk0TxjtKIEpF+Bzy/PH38M8t2JM7oyqH4HK7kAw7AXNb91OIICLvT7PS4JN
ztRgXamFcWJ8NsApODgVKZIwjkV83e4MSEdHp2+seEPD4KJ52um0ARdw5nQPqxCj
wH3jQcqUjpipxsHcKQnaV0VmGtSZIGVmlKTHAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZleLLb06h1I70QfOm8N+do4LahUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9abGVMTGIwNmgxSTcwUWZPbThO
LWRvNExhaFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTqg
MA0GCSqGSIb3DQEBCwUAA4IBAQBFLeO5eUJFIRBE8NMwGs3nVL9A2TZwCChYGpMl
dVc7CxQmuB6o9B44a1ckM0+/tnPhgZeRgnDDRQAyKExXRlOIM6NQeGGbaZsHpJiP
v7i+comZ/EYazlCJoiTIeVYzCkg888c+9koJbiKXc7Rb+I2LaMzUXLMcXVQ0KLdK
WzU5LD1IzzgS0iypCnKCCbnK1/BYKPmilGFpO+jB7YPIRVdGEyqecIjD4bc/cBn6
SYRJQXP1UhDEKpYj14nahM/n89IvGY9sYaSnyfb4VpO/IVLyWymcC148ZIH4XPCH
xzjIw9anSjuTYkpdcUIIAyiNrTWChvFPlPptm0Un94HzQ7oi
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:06 2025 by rpki-client