Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa
File: izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa (raw, json)
Hash identifier: QlWf8s65ySDPkVAAVXJwtlZPw73iN+/A94VJqAvhNLI=
Subject key identifier: 8B:35:1C:D1:62:53:F5:48:14:4E:97:53:4B:63:EA:E1:5C:3C:3A:A0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3106
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa
Signing time: Mon 26 Aug 2024 05:30:02 +0000
ROA not before: Mon 26 Aug 2024 05:30:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12550 (0x3106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:30:02 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8B351CD16253F548144E97534B63EAE15C3C3AA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a1:43:68:a3:6e:5c:c3:1e:15:30:91:bf:7c:
db:ae:39:09:c6:8e:40:64:44:e0:34:fb:b8:14:a9:
88:1c:73:65:ff:8c:68:66:f7:c8:e2:c8:81:e1:b7:
57:ac:70:03:24:b6:bc:af:93:18:b7:c9:9b:27:34:
eb:73:2c:ba:ad:2d:c2:4b:e1:08:3d:d9:cf:47:b9:
45:68:78:b7:6e:6e:72:ee:cf:6e:89:a1:07:b7:f5:
34:d1:0b:74:a3:03:7c:78:37:41:ae:80:aa:71:e8:
1e:45:4e:03:f1:de:e4:b5:6e:c6:43:13:d0:b5:61:
42:52:d0:dc:1c:7e:13:d6:d0:0f:7d:94:37:1b:2a:
4a:67:57:c3:e7:c9:d9:fe:0a:b9:f3:93:47:61:3d:
85:26:54:ff:97:f6:96:74:3a:3d:bc:a5:2d:16:42:
4b:34:9a:17:90:0b:41:76:2b:5e:99:dc:3b:1d:3c:
ae:a9:ba:e5:2f:49:6b:d2:e7:1c:d0:2c:11:e6:bf:
9e:b9:7a:fd:18:4d:96:3b:85:92:ea:22:e6:36:eb:
b5:3f:21:36:13:18:db:dd:44:74:ef:b5:7a:be:9e:
10:19:74:b6:aa:0d:9d:22:05:64:6c:e6:19:26:1b:
9c:23:ee:76:fb:c2:f1:8b:6a:95:59:b4:5f:70:f4:
d5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:1C:D1:62:53:F5:48:14:4E:97:53:4B:63:EA:E1:5C:3C:3A:A0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.92.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:7f:9b:cb:b7:50:ad:55:3c:c2:38:ec:d0:de:73:ca:d9:6d:
5c:f2:4d:22:9f:5b:a9:31:5e:c9:6a:05:49:d5:62:0b:e2:27:
f4:5b:20:13:f3:56:43:88:bc:09:f2:8d:04:af:27:d4:13:ba:
5a:d4:37:53:19:07:8e:50:61:6b:7a:20:d0:0d:86:fb:f4:3e:
82:0a:d3:b5:c7:a8:7b:a2:7e:43:d2:53:6e:f4:7d:76:5b:24:
bb:12:07:1a:12:df:e4:1f:c8:77:f7:06:8a:5f:0d:ac:ca:db:
4c:f3:e3:d4:5b:78:44:66:53:78:bd:7b:ef:a1:51:eb:c0:f5:
1f:f7:04:18:85:bf:c7:fe:fa:2a:46:d2:77:48:c3:55:b8:ae:
e0:21:d1:b5:31:7d:c1:c7:01:b7:cf:34:08:a2:c2:e3:43:95:
ec:18:45:29:74:7a:c4:c4:34:68:96:7b:84:56:79:e6:51:db:
7f:01:9d:32:02:60:8d:d5:38:fc:19:a2:2a:a1:70:cb:49:20:
98:61:5e:71:21:c7:25:00:23:4a:67:4f:ff:93:af:f7:b9:23:
04:86:26:8a:b0:f1:29:14:07:d7:e5:31:0c:3c:32:8d:93:8e:
1d:bd:38:09:b7:67:8a:13:2d:89:41:35:36:ae:7c:12:be:63:
a4:aa:07:99
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICMQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw
NTMwMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCMzUxQ0QxNjI1M0Y1
NDgxNDRFOTc1MzRCNjNFQUUxNUMzQzNBQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDToUNoo25cwx4VMJG/fNuuOQnGjkBkROA0+7gUqYgcc2X/jGhm
98jiyIHht1escAMktryvkxi3yZsnNOtzLLqtLcJL4Qg92c9HuUVoeLdubnLuz26J
oQe39TTRC3SjA3x4N0GugKpx6B5FTgPx3uS1bsZDE9C1YUJS0NwcfhPW0A99lDcb
KkpnV8Pnydn+Crnzk0dhPYUmVP+X9pZ0Oj28pS0WQks0mheQC0F2K16Z3DsdPK6p
uuUvSWvS5xzQLBHmv565ev0YTZY7hZLqIuY267U/ITYTGNvdRHTvtXq+nhAZdLaq
DZ0iBWRs5hkmG5wj7nb7wvGLapVZtF9w9NWDAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUizUc0WJT9UgUTpdTS2Pq4Vw8OqAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2l6VWMwV0pUOVVnVVRwZFRT
MlBxNFZ3OE9xQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wlwwDQYJKoZIhvcNAQELBQADggEBAJ5/m8u3UK1VPMI47NDec8rZbVzyTSKfW6kx
XslqBUnVYgviJ/RbIBPzVkOIvAnyjQSvJ9QTulrUN1MZB45QYWt6INANhvv0PoIK
07XHqHuifkPSU270fXZbJLsSBxoS3+QfyHf3BopfDazK20zz49RbeERmU3i9e++h
UevA9R/3BBiFv8f++ipG0ndIw1W4ruAh0bUxfcHHAbfPNAiiwuNDlewYRSl0esTE
NGiWe4RWeeZR238BnTICYI3VOPwZoiqhcMtJIJhhXnEhxyUAI0pnT/+Tr/e5IwSG
Joqw8SkUB9flMQw8Mo2Tjh29OAm3Z4oTLYlBNTaufBK+Y6SqB5k=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:03:35 2025 by rpki-client