Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/xs0VDiNwtneOIUcinlexMMfl6mA.roa
File: xs0VDiNwtneOIUcinlexMMfl6mA.roa (raw, json)
Hash identifier: Iy96rHoeZkNrm+OW9EeGG046tedDIUjHDQDNC+UIGqM=
Subject key identifier: C6:CD:15:0E:23:70:B6:77:8E:21:47:22:9E:57:B1:30:C7:E5:EA:60
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0CC1
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xs0VDiNwtneOIUcinlexMMfl6mA.roa
Signing time: Mon 26 Aug 2024 05:28:06 +0000
ROA not before: Mon 26 Aug 2024 05:28:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:05:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3265 (0xcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Aug 26 05:28:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C6CD150E2370B6778E2147229E57B130C7E5EA60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:ad:52:cc:8b:e4:12:3e:e7:bc:bf:6c:bd:4c:
8d:8e:38:a6:10:7c:30:59:d1:92:bf:a9:eb:2a:f0:
cb:53:2a:7e:77:97:bf:98:c4:93:01:c7:1c:68:f0:
57:1e:6f:07:36:20:c7:6a:14:0a:c0:eb:8c:d9:25:
4e:83:9a:11:b1:18:50:37:4b:cb:02:ff:b8:35:69:
b4:76:65:a3:10:c7:ff:0d:59:47:8c:17:cb:9e:b5:
96:03:8f:55:bf:4c:d7:f6:76:70:0c:8e:28:a6:fc:
be:6c:4a:6b:5e:61:d6:f7:6e:5f:0b:e2:b1:a3:48:
9c:be:2e:18:62:27:3c:ea:04:ea:20:89:29:41:d3:
c7:2d:59:a3:af:1b:b8:12:a3:06:a7:e9:59:53:7a:
4b:1e:90:59:af:ea:d4:08:d8:fa:e7:48:14:c4:5a:
ad:72:11:95:db:a9:81:db:18:72:e2:c2:31:6c:5f:
17:e4:7a:31:fb:e0:99:e9:de:7a:f6:2c:1f:d3:eb:
06:03:9a:4b:86:34:a1:23:f3:6b:bb:66:64:14:94:
df:36:89:a4:a9:d2:ce:06:cf:79:d6:35:ab:7b:ab:
b2:8a:19:68:1b:a3:05:ce:25:40:9b:1f:3b:c2:86:
21:f1:27:f0:e9:ce:31:85:68:49:1b:25:f8:32:f0:
5f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:CD:15:0E:23:70:B6:77:8E:21:47:22:9E:57:B1:30:C7:E5:EA:60
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xs0VDiNwtneOIUcinlexMMfl6mA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
03:a3:70:17:07:71:e0:74:b3:ad:94:80:f2:89:e2:48:63:cd:
4f:4a:b4:14:a6:62:c8:b6:2d:ff:26:0b:4d:b3:1c:35:97:cd:
a1:bc:53:25:43:3a:23:38:e5:62:21:57:06:12:e0:56:fa:21:
e0:98:0f:5f:0c:12:3b:62:ab:1c:98:36:17:4c:c2:9f:c2:fc:
8a:42:38:bb:9b:fd:59:a9:88:25:19:98:00:72:58:07:f0:28:
b9:05:dc:5d:b6:0a:2c:61:6a:dd:77:0a:68:e9:b2:1c:cd:16:
79:60:40:3e:3c:11:87:c3:a5:f5:0f:6b:0d:d6:8b:00:1a:7b:
02:b1:09:19:0c:35:00:f2:6b:4c:bb:6b:f0:6b:c2:b5:96:77:
0f:8a:5d:f9:2a:8c:0f:bd:df:e7:44:db:e7:64:e2:52:1c:4c:
a9:d2:e5:5d:00:18:5a:b9:2b:85:9f:4c:2a:b8:fb:78:b6:b5:
8a:00:b0:af:5e:97:3a:ad:b2:9e:0c:5b:5b:0b:5f:b0:31:1a:
da:8a:ba:b2:76:dd:b1:4c:a6:b0:4b:22:11:98:c7:84:52:54:
98:f1:e9:b4:10:a9:f5:68:58:90:bb:a9:de:95:9b:ea:97:51:
c2:9d:0e:ab:72:87:b1:a6:7d:d4:d7:66:76:71:62:62:26:ba:
40:69:17:ad
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw
NTI4MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2Q0QxNTBFMjM3MEI2
Nzc4RTIxNDcyMjlFNTdCMTMwQzdFNUVBNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD5rVLMi+QSPue8v2y9TI2OOKYQfDBZ0ZK/qesq8MtTKn53l7+Y
xJMBxxxo8Fcebwc2IMdqFArA64zZJU6DmhGxGFA3S8sC/7g1abR2ZaMQx/8NWUeM
F8uetZYDj1W/TNf2dnAMjiim/L5sSmteYdb3bl8L4rGjSJy+LhhiJzzqBOogiSlB
08ctWaOvG7gSowan6VlTeksekFmv6tQI2PrnSBTEWq1yEZXbqYHbGHLiwjFsXxfk
ejH74Jnp3nr2LB/T6wYDmkuGNKEj82u7ZmQUlN82iaSp0s4Gz3nWNat7q7KKGWgb
owXOJUCbHzvChiHxJ/DpzjGFaEkbJfgy8F8JAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxs0VDiNwtneOIUcinlexMMfl6mAwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAveHMwVkRpTnd0bmVPSVVjaW5sZXhN
TWZsNm1BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBhtkQDAN
BgkqhkiG9w0BAQsFAAOCAQEAA6NwFwdx4HSzrZSA8oniSGPNT0q0FKZiyLYt/yYL
TbMcNZfNobxTJUM6IzjlYiFXBhLgVvoh4JgPXwwSO2KrHJg2F0zCn8L8ikI4u5v9
WamIJRmYAHJYB/AouQXcXbYKLGFq3XcKaOmyHM0WeWBAPjwRh8Ol9Q9rDdaLABp7
ArEJGQw1APJrTLtr8GvCtZZ3D4pd+SqMD73f50Tb52TiUhxMqdLlXQAYWrkrhZ9M
Krj7eLa1igCwr16XOq2yngxbWwtfsDEa2oq6snbdsUymsEsiEZjHhFJUmPHptBCp
9WhYkLup3pWb6pdRwp0Oq3KHsaZ91NdmdnFiYia6QGkXrQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:58 2025 by rpki-client