Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mtbNB5ZohNbhK5-vCjS6BgtgPDQ.roa
File: mtbNB5ZohNbhK5-vCjS6BgtgPDQ.roa (raw, json)
Hash identifier: jWMNrUzszwzrTVGdbx+g5tGj4g4tIxHAF6sjylsYQpE=
Subject key identifier: 9A:D6:CD:07:96:68:84:D6:E1:2B:9F:AF:0A:34:BA:06:0B:60:3C:34
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 0102
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mtbNB5ZohNbhK5-vCjS6BgtgPDQ.roa
Signing time: Wed 11 Sep 2024 17:35:10 +0000
ROA not before: Wed 11 Sep 2024 17:35:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 10:17:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258 (0x102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Sep 11 17:35:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9AD6CD07966884D6E12B9FAF0A34BA060B603C34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fe:2d:49:16:02:3d:40:2d:3d:9a:77:44:92:
f3:c4:8e:c9:e0:d4:ce:1f:c6:40:6e:ed:41:f4:e2:
ec:b9:e6:ac:ea:56:64:8e:cf:d2:70:d9:4d:3d:77:
c0:89:7c:b0:5a:e9:6b:e1:4c:bc:57:25:37:e5:3d:
58:4f:fa:38:b3:e5:46:cd:ba:80:89:43:83:0e:3a:
5c:90:e6:3b:19:c9:a3:e3:34:f3:86:aa:d5:26:e2:
a8:50:77:1b:9f:a6:39:b3:bf:44:e4:2a:51:55:1e:
74:03:4b:eb:8b:33:14:ec:0e:1f:05:2f:ba:77:69:
1e:6a:e2:cf:00:4d:05:97:30:38:d7:27:29:0b:3d:
0e:56:be:89:43:7b:12:c8:f8:3f:87:5c:e6:70:4f:
05:b3:3f:ea:40:d9:84:05:c0:97:e8:c4:d2:79:e0:
f4:b8:28:79:bf:f0:85:57:ea:95:a8:e9:2d:ae:46:
de:7c:c9:11:72:fe:a2:62:b0:40:d6:bd:31:6c:99:
78:5a:4c:aa:ce:9d:bb:e3:46:f4:79:72:1b:ee:a2:
b9:1a:33:d1:34:17:b9:c4:e4:82:40:05:99:b4:60:
7e:c7:b8:6c:19:87:35:68:c9:73:2b:b3:33:f2:11:
cb:ab:27:5c:c1:c7:08:ae:9f:03:cc:13:66:b8:fb:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D6:CD:07:96:68:84:D6:E1:2B:9F:AF:0A:34:BA:06:0B:60:3C:34
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mtbNB5ZohNbhK5-vCjS6BgtgPDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
08:26:bc:e6:99:e1:10:59:f3:8a:9d:f0:64:b6:0c:08:13:f0:
fc:3a:26:43:ac:19:ba:9e:f8:bc:3b:a0:8d:0d:88:18:c4:b2:
6d:a6:cb:2e:a1:e9:cf:3c:72:41:cf:8a:49:e0:6a:4f:78:01:
9b:d6:0a:22:b2:a7:0a:9a:d6:63:b5:8b:89:b6:3d:45:54:e2:
ca:8b:dd:0d:4f:3d:98:b4:a4:1e:2e:82:95:80:f5:8f:8f:b7:
e1:97:0d:db:e7:88:15:d9:30:c1:0d:6c:61:bc:59:7b:08:69:
6c:76:23:59:1c:9d:45:25:68:b4:d1:2f:63:cf:dc:80:3f:ac:
f6:e7:ff:96:0c:db:6f:32:c6:e9:f7:78:81:ea:66:32:cf:35:
53:2c:69:00:ba:99:4f:1b:8c:01:57:43:80:13:51:5a:a8:ff:
cc:84:16:4b:44:11:83:d9:65:06:f9:6c:af:8c:b7:b7:0f:c8:
47:dd:5f:29:39:ec:dc:12:4c:2c:a5:cc:57:ea:19:fb:02:a9:
e2:a8:26:6f:6b:ca:63:75:c3:02:68:67:98:74:9f:f6:9d:1f:
d6:dd:65:5c:db:20:e2:27:f1:ca:89:2c:49:af:97:09:41:2a:
75:10:2b:51:75:84:3d:8e:8c:48:9b:37:fd:e2:50:29:f4:c5:
eb:bd:2f:50
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE
MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDA5MTEx
NzM1MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBRDZDRDA3OTY2ODg0
RDZFMTJCOUZBRjBBMzRCQTA2MEI2MDNDMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCt/i1JFgI9QC09mndEkvPEjsng1M4fxkBu7UH04uy55qzqVmSO
z9Jw2U09d8CJfLBa6WvhTLxXJTflPVhP+jiz5UbNuoCJQ4MOOlyQ5jsZyaPjNPOG
qtUm4qhQdxufpjmzv0TkKlFVHnQDS+uLMxTsDh8FL7p3aR5q4s8ATQWXMDjXJykL
PQ5WvolDexLI+D+HXOZwTwWzP+pA2YQFwJfoxNJ54PS4KHm/8IVX6pWo6S2uRt58
yRFy/qJisEDWvTFsmXhaTKrOnbvjRvR5chvuorkaM9E0F7nE5IJABZm0YH7HuGwZ
hzVoyXMrszPyEcurJ1zBxwiunwPME2a4+47HAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUmtbNB5ZohNbhK5+vCjS6BgtgPDQwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9
HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL
RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL210Yk5CNVpvaE5i
aEs1LXZDalM2Qmd0Z1BEUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPKoEgwDQYJKoZIhvcNAQELBQADggEBAAgmvOaZ4RBZ84qd8GS2DAgT8Pw6
JkOsGbqe+Lw7oI0NiBjEsm2myy6h6c88ckHPikngak94AZvWCiKypwqa1mO1i4m2
PUVU4sqL3Q1PPZi0pB4ugpWA9Y+Pt+GXDdvniBXZMMENbGG8WXsIaWx2I1kcnUUl
aLTRL2PP3IA/rPbn/5YM228yxun3eIHqZjLPNVMsaQC6mU8bjAFXQ4ATUVqo/8yE
FktEEYPZZQb5bK+Mt7cPyEfdXyk57NwSTCylzFfqGfsCqeKoJm9rymN1wwJoZ5h0
n/adH9bdZVzbIOIn8cqJLEmvlwlBKnUQK1F1hD2OjEibN/3iUCn0xeu9L1A=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:39 2025 by rpki-client