Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa
File: 6LVSIALAZUau6oV6NZ-8yYVbcU0.roa (raw, json)
Hash identifier: 5hlTH1YGOmYVHY8L3EU4T3ry/gSFJ8bKBtk4PsAaqE8=
Subject key identifier: E8:B5:52:20:02:C0:65:46:AE:EA:85:7A:35:9F:BC:C9:85:5B:71:4D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12DE
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa
Signing time: Fri 30 Aug 2024 01:56:28 +0000
ROA not before: Fri 30 Aug 2024 01:56:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131644
IP address blocks: 182.173.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4830 (0x12de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 30 01:56:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E8B5522002C06546AEEA857A359FBCC9855B714D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:f4:7a:9e:9b:12:ae:c5:43:80:7d:d9:4a:
6b:0d:64:3c:73:a0:19:07:30:31:16:54:6f:6c:f3:
97:2a:20:3b:f7:e2:b9:79:3d:9b:e4:05:81:8e:2a:
8a:a5:f5:20:15:89:41:f8:21:d2:91:76:15:eb:91:
35:3b:83:d6:78:0c:26:b4:14:12:25:83:ef:07:60:
d3:ef:f9:9f:0a:f4:97:79:92:2b:6c:de:d8:18:12:
f4:6f:f6:4f:04:5d:22:df:77:95:6f:ea:f1:28:a2:
c8:ab:c5:9a:b5:cc:74:9d:ec:7b:2f:37:1f:91:6f:
40:d9:88:4e:4e:0b:4e:ec:3e:60:51:ca:e6:9e:a1:
8b:a4:e0:b6:04:fb:5b:ec:4b:e6:92:af:80:e4:18:
f1:08:24:51:39:f2:c1:9c:5b:69:a0:32:8b:a2:d6:
f0:f5:1c:1e:00:00:9e:93:eb:ed:aa:fe:48:4a:53:
ba:84:2b:79:ee:9f:60:d5:42:f9:81:9b:f1:94:64:
54:2b:24:c4:5f:ff:45:5f:21:60:9f:9c:eb:7a:1d:
ac:60:31:13:f4:33:06:f5:77:4e:6a:91:72:37:9a:
05:86:fc:a6:99:e7:b0:dc:3b:97:93:6b:86:c9:69:
97:ce:62:70:2b:73:01:52:94:48:6f:76:cd:0d:5d:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B5:52:20:02:C0:65:46:AE:EA:85:7A:35:9F:BC:C9:85:5B:71:4D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.4.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:0b:1c:97:a2:65:ae:c9:e1:13:d3:f6:29:d0:1f:31:ac:02:
df:0b:89:19:83:91:58:38:c5:8d:5a:6e:96:48:c3:10:db:7a:
0b:a3:fe:33:58:9f:f4:e9:ea:8f:a1:4e:cf:90:96:07:64:4b:
5b:78:42:13:4c:88:ed:ac:76:18:9a:5d:e6:cc:1f:cb:04:93:
67:23:5d:8c:43:12:fc:54:d1:32:f3:85:4d:70:87:2d:3d:1d:
d0:86:5d:ae:c8:92:aa:90:97:bf:44:9a:13:19:e2:03:32:20:
55:dd:7d:e0:e2:fa:ba:6a:8e:39:d0:0b:78:02:7a:6e:f4:22:
d2:a6:dc:f6:d5:6a:b6:52:6d:0c:fc:90:97:5b:04:e5:ec:50:
ef:16:94:f4:71:29:59:0a:92:d8:04:7e:5a:aa:cc:33:78:9a:
c4:0b:09:96:63:50:40:d9:a0:13:74:9c:b6:c2:29:24:86:d7:
3b:50:6d:4c:2d:bf:3b:22:2f:b3:f4:64:5a:5b:c8:d7:37:3b:
16:4c:fb:c3:cd:95:f9:4a:cd:ec:21:ce:e0:c1:25:42:f3:b6:
51:ac:ee:c2:01:66:aa:f5:12:35:ef:98:97:c1:64:94:7f:c7:
e9:26:1d:91:dd:88:f5:b8:e9:a2:86:5c:92:17:e9:98:8f:d7:
34:b5:36:bd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MzAw
MTU2MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4QjU1MjIwMDJDMDY1
NDZBRUVBODU3QTM1OUZCQ0M5ODU1QjcxNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQBvR6npsSrsVDgH3ZSmsNZDxzoBkHMDEWVG9s85cqIDv34rl5
PZvkBYGOKoql9SAViUH4IdKRdhXrkTU7g9Z4DCa0FBIlg+8HYNPv+Z8K9Jd5kits
3tgYEvRv9k8EXSLfd5Vv6vEoosirxZq1zHSd7HsvNx+Rb0DZiE5OC07sPmBRyuae
oYuk4LYE+1vsS+aSr4DkGPEIJFE58sGcW2mgMoui1vD1HB4AAJ6T6+2q/khKU7qE
K3nun2DVQvmBm/GUZFQrJMRf/0VfIWCfnOt6HaxgMRP0Mwb1d05qkXI3mgWG/KaZ
57DcO5eTa4bJaZfOYnArcwFSlEhvds0NXRMnAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU6LVSIALAZUau6oV6NZ+8yYVbcU0wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy82TFZTSUFMQVpVYXU2b1Y2Tlot
OHlZVmJjVTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0E
MA0GCSqGSIb3DQEBCwUAA4IBAQCxCxyXomWuyeET0/Yp0B8xrALfC4kZg5FYOMWN
Wm6WSMMQ23oLo/4zWJ/06eqPoU7PkJYHZEtbeEITTIjtrHYYml3mzB/LBJNnI12M
QxL8VNEy84VNcIctPR3Qhl2uyJKqkJe/RJoTGeIDMiBV3X3g4vq6ao450At4Anpu
9CLSptz21Wq2Um0M/JCXWwTl7FDvFpT0cSlZCpLYBH5aqswzeJrECwmWY1BA2aAT
dJy2wikkhtc7UG1MLb87Ii+z9GRaW8jXNzsWTPvDzZX5Ss3sIc7gwSVC87ZRrO7C
AWaq9RI175iXwWSUf8fpJh2R3Yj1uOmihlySF+mYj9c0tTa9
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:59:45 2025 by rpki-client