Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/LufS7rjwt6omIxovOheDd_DcsOk.roa
File: LufS7rjwt6omIxovOheDd_DcsOk.roa (raw, json)
Hash identifier: 5uhqJbi0lZoEKlWfu28cy9Jt08/erDlFRsD+0m7XbUs=
Subject key identifier: 2E:E7:D2:EE:B8:F0:B7:AA:26:23:1A:2F:3A:17:83:77:F0:DC:B0:E9
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0CBB
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/LufS7rjwt6omIxovOheDd_DcsOk.roa
Signing time: Mon 26 Aug 2024 05:28:05 +0000
ROA not before: Mon 26 Aug 2024 05:28:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.58.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:05:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3259 (0xcbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Aug 26 05:28:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2EE7D2EEB8F0B7AA26231A2F3A178377F0DCB0E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:77:c7:5a:e9:d2:41:4c:6a:f8:99:41:38:4e:
2c:e3:4e:84:e9:21:70:0c:a5:31:78:52:10:eb:f0:
03:48:97:0d:72:90:4c:37:02:a7:70:6b:4d:5f:d4:
65:35:93:da:6b:52:48:5b:f8:a6:08:77:59:87:c9:
32:ee:b6:1f:61:9f:21:3e:23:ef:60:ce:b3:f6:4c:
08:bc:85:95:65:42:62:d7:47:50:94:60:d4:de:55:
f1:f9:d7:7d:18:bf:6a:2b:26:5c:b3:b8:16:35:3f:
31:18:b6:ac:b6:f7:51:7a:99:b0:49:f3:9b:22:88:
e3:e8:33:67:91:43:49:3d:eb:8f:98:20:d5:d6:e1:
84:08:7b:09:d0:f2:a9:2c:62:83:0a:1f:14:f0:66:
66:03:72:df:dd:8a:53:52:9a:dc:41:6a:81:8f:6e:
aa:7e:37:9d:06:27:af:6a:c7:9f:d3:4d:21:7a:8e:
d7:cd:d6:d7:b7:37:c2:88:43:4a:fe:15:73:f9:f1:
5a:f3:04:2c:16:4e:ba:7b:0a:b8:63:a5:02:98:28:
eb:ec:b4:86:d5:82:cc:c5:8f:82:e7:40:59:d6:20:
1b:3c:be:c4:d6:09:a3:ce:dd:f2:fe:f4:7d:c9:87:
d3:36:ba:94:b7:5e:0a:54:96:1c:18:d8:fb:ef:de:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E7:D2:EE:B8:F0:B7:AA:26:23:1A:2F:3A:17:83:77:F0:DC:B0:E9
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/LufS7rjwt6omIxovOheDd_DcsOk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.156.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:39:52:48:90:90:62:cc:eb:e4:5a:28:44:79:5a:3e:16:ab:
04:90:dd:9d:ea:b0:0c:43:51:e5:fe:38:04:ff:7c:bb:0b:16:
64:b3:14:6e:f8:46:d7:6a:d8:a3:08:4f:a1:c3:f3:c5:c1:a5:
d5:3f:e4:18:8a:03:a5:64:e5:19:f9:05:a4:68:61:75:3f:21:
08:cc:1e:79:7c:fc:b2:a7:5b:55:df:2c:25:8d:83:5e:73:70:
95:02:b0:c7:d8:95:a2:83:63:71:16:30:7d:1f:15:d4:fa:aa:
73:d2:9a:0e:80:44:b5:68:90:72:09:90:f8:a1:61:72:84:f4:
82:e2:52:af:9f:83:a2:81:79:3f:0c:53:ff:e8:39:4f:3e:bb:
49:97:fb:75:89:9f:11:8b:8e:25:fd:68:99:0f:d7:d9:a8:2e:
ce:43:c6:3c:42:24:15:5f:ad:96:f0:78:39:d7:42:5b:0d:69:
56:46:40:07:3a:df:ff:c6:d1:81:28:eb:ec:62:74:b7:3e:95:
05:36:71:c8:79:48:88:50:da:84:7d:94:b5:e3:cf:29:fb:f9:
0b:80:95:1b:8f:4a:9c:b7:5a:4b:1f:7d:99:d3:e1:8c:a2:46:
3a:9f:59:2c:de:be:fc:db:61:47:1c:89:7f:6e:40:f5:ac:74:
65:60:ce:02
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw
NTI4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFRTdEMkVFQjhGMEI3
QUEyNjIzMUEyRjNBMTc4Mzc3RjBEQ0IwRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwd8da6dJBTGr4mUE4TizjToTpIXAMpTF4UhDr8ANIlw1ykEw3
Aqdwa01f1GU1k9prUkhb+KYId1mHyTLuth9hnyE+I+9gzrP2TAi8hZVlQmLXR1CU
YNTeVfH5130Yv2orJlyzuBY1PzEYtqy291F6mbBJ85siiOPoM2eRQ0k964+YINXW
4YQIewnQ8qksYoMKHxTwZmYDct/dilNSmtxBaoGPbqp+N50GJ69qx5/TTSF6jtfN
1te3N8KIQ0r+FXP58VrzBCwWTrp7CrhjpQKYKOvstIbVgszFj4LnQFnWIBs8vsTW
CaPO3fL+9H3Jh9M2upS3XgpUlhwY2Pvv3vYZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQULufS7rjwt6omIxovOheDd/DcsOkwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvTHVmUzdyand0Nm9tSXhvdk9oZURk
X0Rjc09rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD06nDAN
BgkqhkiG9w0BAQsFAAOCAQEAHTlSSJCQYszr5FooRHlaPharBJDdneqwDENR5f44
BP98uwsWZLMUbvhG12rYowhPocPzxcGl1T/kGIoDpWTlGfkFpGhhdT8hCMweeXz8
sqdbVd8sJY2DXnNwlQKwx9iVooNjcRYwfR8V1Pqqc9KaDoBEtWiQcgmQ+KFhcoT0
guJSr5+DooF5PwxT/+g5Tz67SZf7dYmfEYuOJf1omQ/X2aguzkPGPEIkFV+tlvB4
OddCWw1pVkZABzrf/8bRgSjr7GJ0tz6VBTZxyHlIiFDahH2UtePPKfv5C4CVG49K
nLdaSx99mdPhjKJGOp9ZLN6+/NthRxyJf25A9ax0ZWDOAg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:56 2025 by rpki-client