Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bda1ll6VffyXwPQax67Id2U69Zw.roa
File: bda1ll6VffyXwPQax67Id2U69Zw.roa (raw, json)
Hash identifier: Bi7PgVdGgVca6mVAiaS1jDbKIu28amdIjxQW4hxpuh8=
Subject key identifier: 6D:D6:B5:96:5E:95:7D:FC:97:C0:F4:1A:C7:AE:C8:77:65:3A:F5:9C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2FE9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bda1ll6VffyXwPQax67Id2U69Zw.roa
Signing time: Mon 26 Aug 2024 05:28:58 +0000
ROA not before: Mon 26 Aug 2024 05:28:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.193.192.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:53:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12265 (0x2fe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:28:58 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6DD6B5965E957DFC97C0F41AC7AEC877653AF59C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:70:3e:b8:1c:c3:71:f4:33:f2:c7:8c:bf:
54:35:27:0e:00:e4:a4:33:4a:14:9e:66:92:15:91:
d9:ff:a4:d2:b9:fd:70:8c:9f:c3:60:53:66:8d:a8:
32:71:b7:77:8d:00:36:d1:0b:d3:02:e8:81:cd:42:
eb:1e:a0:4b:f1:9c:49:10:1b:10:92:03:4a:71:9d:
81:25:a1:30:e1:bf:39:b9:22:30:87:91:89:aa:63:
c2:6f:55:eb:b6:86:3c:2b:80:d0:3a:61:e3:95:c8:
bd:41:f2:2b:06:33:32:a5:90:78:25:69:fa:ac:5a:
b8:2e:a4:96:d7:ac:8e:27:3e:68:42:ef:2f:5a:9e:
9a:64:68:7f:2d:59:23:e0:ef:2c:86:a5:60:8e:e1:
db:a7:1a:56:d1:07:df:5d:fb:42:dc:7f:d2:6f:d8:
92:cd:15:22:38:47:98:9c:74:89:a6:23:fa:e8:2a:
b0:3a:bf:d9:22:70:d7:00:f2:de:df:3a:45:8f:f6:
59:c1:23:fe:bc:22:22:61:4e:6a:4f:ef:49:61:49:
2d:2c:ee:84:65:fc:1f:5b:e1:8c:8b:e1:43:dc:77:
d8:94:9f:fd:bb:80:9a:a5:47:55:5d:3e:ae:2a:94:
e8:6d:cc:22:e7:e9:66:3f:0e:22:8f:eb:43:fa:f3:
83:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D6:B5:96:5E:95:7D:FC:97:C0:F4:1A:C7:AE:C8:77:65:3A:F5:9C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bda1ll6VffyXwPQax67Id2U69Zw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.192.0/19
Signature Algorithm: sha256WithRSAEncryption
6e:71:6a:13:1f:2b:fc:24:06:00:25:d8:dd:4f:62:5c:ca:f8:
c0:70:dd:33:76:a9:0c:69:3b:d8:12:27:bd:b3:78:50:ad:7b:
06:38:f3:fb:ab:6c:08:30:8e:6f:0e:79:30:78:ce:4f:72:72:
9a:5b:dc:72:53:61:86:4a:6b:c9:b6:dd:10:d7:9a:f2:d0:de:
65:92:2d:55:35:a0:0d:08:1e:95:2f:eb:dc:fe:4c:eb:72:70:
ff:43:7f:3a:23:38:87:b4:72:54:b3:d8:e2:2c:7b:06:a3:e4:
27:30:6c:73:7a:a4:30:ee:90:68:7c:ac:d3:8a:cc:d5:a9:d7:
44:3f:0a:e1:0f:19:22:76:0a:ce:31:0f:e9:79:fa:7e:ad:c3:
e0:96:c1:29:37:55:49:6c:19:b7:8d:2c:36:6b:3f:06:bc:77:
d0:4d:66:52:f8:d3:ef:d4:6c:34:1e:8b:41:ba:7c:21:1c:8e:
db:33:13:17:e7:b2:12:1b:f2:d4:fe:4e:8b:00:a8:f5:ed:e2:
f4:88:0c:ff:e8:a2:93:74:ab:f4:60:e3:87:d8:f9:5b:d5:45:
28:ef:12:4e:a3:a9:eb:49:d0:55:08:83:d4:7e:e7:e8:ae:d2:
87:db:7f:4e:cd:2c:be:75:4a:62:5f:12:40:b3:dc:e7:9b:c1:
5f:c7:47:f6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICL+kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw
NTI4NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZERDZCNTk2NUU5NTdE
RkM5N0MwRjQxQUM3QUVDODc3NjUzQUY1OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIQXA+uBzDcfQz8seMv1Q1Jw4A5KQzShSeZpIVkdn/pNK5/XCM
n8NgU2aNqDJxt3eNADbRC9MC6IHNQuseoEvxnEkQGxCSA0pxnYEloTDhvzm5IjCH
kYmqY8JvVeu2hjwrgNA6YeOVyL1B8isGMzKlkHglafqsWrgupJbXrI4nPmhC7y9a
nppkaH8tWSPg7yyGpWCO4dunGlbRB99d+0Lcf9Jv2JLNFSI4R5icdImmI/roKrA6
v9kicNcA8t7fOkWP9lnBI/68IiJhTmpP70lhSS0s7oRl/B9b4YyL4UPcd9iUn/27
gJqlR1VdPq4qlOhtzCLn6WY/DiKP60P684NJAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbda1ll6VffyXwPQax67Id2U69ZwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JkYTFsbDZWZmZ5WHdQUWF4
NjdJZDJVNjlady5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7
wcAwDQYJKoZIhvcNAQELBQADggEBAG5xahMfK/wkBgAl2N1PYlzK+MBw3TN2qQxp
O9gSJ72zeFCtewY48/urbAgwjm8OeTB4zk9ycppb3HJTYYZKa8m23RDXmvLQ3mWS
LVU1oA0IHpUv69z+TOtycP9DfzojOIe0clSz2OIsewaj5CcwbHN6pDDukGh8rNOK
zNWp10Q/CuEPGSJ2Cs4xD+l5+n6tw+CWwSk3VUlsGbeNLDZrPwa8d9BNZlL40+/U
bDQei0G6fCEcjtszExfnshIb8tT+TosAqPXt4vSIDP/oopN0q/Rg44fY+VvVRSjv
Ek6jqetJ0FUIg9R+5+iu0ofbf07NLL51SmJfEkCz3OebwV/HR/Y=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:34 2025 by rpki-client