Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/7tX0r5nQP-QrtegWTSmn1D0ulA4.roa
File: 7tX0r5nQP-QrtegWTSmn1D0ulA4.roa (raw, json)
Hash identifier: 5gKLF/ymxlvMoEbVARrJ1fG7uhPrngVYL8zdL+XHCJw=
Subject key identifier: EE:D5:F4:AF:99:D0:3F:E4:2B:B5:E8:16:4D:29:A7:D4:3D:2E:94:0E
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12C8
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/7tX0r5nQP-QrtegWTSmn1D0ulA4.roa
Signing time: Mon 26 Aug 2024 05:32:33 +0000
ROA not before: Mon 26 Aug 2024 05:32:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131644
IP address blocks: 182.173.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4808 (0x12c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EED5F4AF99D03FE42BB5E8164D29A7D43D2E940E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:48:d9:ea:32:6e:76:e6:ef:bf:d1:ef:70:4d:
5d:03:aa:52:cf:af:81:41:7f:c8:72:c6:2f:48:fe:
d7:f7:eb:2f:d6:61:fe:44:9a:05:9f:d9:2e:5e:b5:
24:7f:e2:e9:6c:17:eb:c3:82:d0:4f:c7:2d:5b:67:
a7:1f:26:e2:02:51:b2:6a:10:9a:58:8d:aa:76:d2:
8b:34:41:7f:05:88:c1:8c:74:21:b3:c8:98:c4:c2:
d4:bf:e2:61:0e:62:ff:5b:4b:a3:ab:80:8d:b9:6c:
7b:59:c9:90:27:1a:fa:72:02:37:a3:3d:85:ef:7a:
22:af:4e:04:75:fe:45:fd:05:0e:70:63:e2:3d:97:
41:df:84:5f:5b:a8:27:ac:57:eb:d8:21:f8:f9:e2:
f4:c0:c9:4c:1e:be:70:4d:0c:6e:dd:c0:a3:b8:d7:
ca:a6:04:b2:2d:c1:f8:7e:54:16:8b:f7:ab:ea:7c:
4d:ad:7b:ff:7e:eb:8e:88:64:67:e1:be:9d:3e:f4:
87:35:3a:e0:76:55:d1:a3:2b:ec:9e:3e:13:f3:34:
dd:27:d2:6c:78:9d:ab:c1:04:23:48:a8:07:65:ed:
75:6a:7a:18:66:a4:80:2c:41:78:53:bb:68:6d:e0:
47:69:88:03:fb:0f:51:0c:ae:c3:4f:f0:8c:cb:fe:
12:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D5:F4:AF:99:D0:3F:E4:2B:B5:E8:16:4D:29:A7:D4:3D:2E:94:0E
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/7tX0r5nQP-QrtegWTSmn1D0ulA4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.0.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:25:ea:95:3f:10:aa:0d:6b:10:36:df:2f:c8:a4:e8:56:38:
e3:14:29:6e:b1:dc:df:45:98:33:13:9d:33:3b:98:8e:19:b5:
6e:b4:d9:e4:61:54:20:94:cb:fa:a6:5a:65:33:4f:22:e4:06:
f0:fd:31:69:d0:97:5e:6f:a9:f2:2d:e1:ad:3e:39:ee:e0:da:
3f:1d:fc:15:de:95:7c:33:a5:87:90:d5:c3:73:ae:22:a8:21:
71:40:65:1a:55:83:aa:4d:2c:af:3a:7c:d7:e4:56:0e:aa:5c:
bb:71:de:a2:09:fa:c6:fe:8f:c0:2c:6f:e4:13:94:71:8c:e6:
19:7d:0e:d5:bd:96:0c:2d:6e:d7:0c:34:50:9c:ac:11:64:fc:
c4:68:3d:1c:60:a3:41:64:2b:fd:e9:97:55:5e:2c:ae:c7:58:
41:1c:e4:8d:77:01:02:cd:5c:ea:b3:ee:35:bb:a3:37:00:6b:
6d:68:c2:03:43:fe:6e:e1:15:ed:f0:93:2c:ad:9b:c3:35:88:
32:3f:62:3f:4b:59:6a:1d:5b:5a:a0:24:9c:f3:29:58:84:f3:
48:08:7a:f3:73:f4:49:99:50:18:29:23:d9:54:66:fb:61:f6:
52:92:bc:a3:31:ac:ce:61:6f:14:13:90:a4:8d:ea:71:82:66:
b3:dc:fd:6d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw
NTMyMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFRDVGNEFGOTlEMDNG
RTQyQkI1RTgxNjREMjlBN0Q0M0QyRTk0MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+SNnqMm525u+/0e9wTV0DqlLPr4FBf8hyxi9I/tf36y/WYf5E
mgWf2S5etSR/4ulsF+vDgtBPxy1bZ6cfJuICUbJqEJpYjap20os0QX8FiMGMdCGz
yJjEwtS/4mEOYv9bS6OrgI25bHtZyZAnGvpyAjejPYXveiKvTgR1/kX9BQ5wY+I9
l0HfhF9bqCesV+vYIfj54vTAyUwevnBNDG7dwKO418qmBLItwfh+VBaL96vqfE2t
e/9+646IZGfhvp0+9Ic1OuB2VdGjK+yePhPzNN0n0mx4navBBCNIqAdl7XVqehhm
pIAsQXhTu2ht4EdpiAP7D1EMrsNP8IzL/hKLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU7tX0r5nQP+QrtegWTSmn1D0ulA4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy83dFgwcjVuUVAtUXJ0ZWdXVFNt
bjFEMHVsQTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtq0A
MA0GCSqGSIb3DQEBCwUAA4IBAQCqJeqVPxCqDWsQNt8vyKToVjjjFClusdzfRZgz
E50zO5iOGbVutNnkYVQglMv6plplM08i5Abw/TFp0Jdeb6nyLeGtPjnu4No/HfwV
3pV8M6WHkNXDc64iqCFxQGUaVYOqTSyvOnzX5FYOqly7cd6iCfrG/o/ALG/kE5Rx
jOYZfQ7VvZYMLW7XDDRQnKwRZPzEaD0cYKNBZCv96ZdVXiyux1hBHOSNdwECzVzq
s+41u6M3AGttaMIDQ/5u4RXt8JMsrZvDNYgyP2I/S1lqHVtaoCSc8ylYhPNICHrz
c/RJmVAYKSPZVGb7YfZSkryjMazOYW8UE5Ckjepxgmaz3P1t
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:00:20 2025 by rpki-client