Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa
File: gny9E3gFR888C93bJnhWVwlgVzU.roa (raw, json)
Hash identifier: JQTJNUKjQTjSAfkmdSwQIiF/jCip8g4cx/QckpNei7Q=
Subject key identifier: 82:7C:BD:13:78:05:47:CF:3C:0B:DD:DB:26:78:56:57:09:60:57:35
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0EDD
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa
Signing time: Mon 26 Aug 2024 05:22:10 +0000
ROA not before: Mon 26 Aug 2024 05:22:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3805 (0xedd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Aug 26 05:22:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=827CBD13780547CF3C0BDDDB2678565709605735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:45:ec:ac:c1:52:95:97:04:aa:fc:f9:44:
a5:83:20:3a:9d:53:8a:8c:fb:59:bb:6a:c4:7f:f9:
a0:98:a0:0f:57:02:31:70:b7:52:13:84:28:cf:93:
c8:95:4e:38:e2:dc:11:ed:a1:78:0b:db:57:43:14:
8f:4b:27:a1:35:b9:39:0c:fc:32:72:c5:e0:f1:3c:
24:b1:f1:30:73:d0:38:b1:7a:1a:45:16:d9:17:96:
4b:37:8a:a6:ae:24:cb:20:e5:28:c2:76:bf:d6:c6:
fe:78:52:26:3d:ea:fd:04:47:3b:2c:cc:a8:b1:f7:
9c:ab:d7:fe:77:de:59:9b:7d:10:44:2c:8a:fb:f1:
4e:8e:e5:05:3c:b7:4b:1a:d6:b9:5d:0e:ea:82:27:
b9:9b:33:3f:4a:ff:41:2e:f4:c2:2f:d3:30:0e:58:
0d:58:0f:6a:01:d6:a0:e5:cc:86:3b:68:8b:14:3f:
d0:3d:da:3f:ba:fa:29:1f:25:0e:79:cc:8d:a7:8f:
7a:7b:52:82:7d:3c:b8:19:db:e4:61:28:f6:d3:1e:
99:53:f3:d3:60:f6:68:75:d7:fe:09:85:5a:d3:46:
46:28:e9:86:b4:af:27:07:7a:a1:e8:90:f5:00:09:
15:84:45:f6:2d:2d:6b:9c:e1:be:c0:9e:b3:01:50:
c2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7C:BD:13:78:05:47:CF:3C:0B:DD:DB:26:78:56:57:09:60:57:35
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:96:33:32:bc:56:13:44:17:52:1f:52:09:e9:9d:81:54:dc:
e0:89:90:a0:54:e6:c1:25:58:b8:e7:87:50:2a:56:3f:46:03:
55:bc:0a:a5:73:a6:da:54:e3:57:54:4f:33:8f:45:d5:6e:2b:
8a:2d:54:eb:5b:c7:6e:aa:4e:27:89:b7:49:46:4e:f0:30:a9:
52:6f:9e:0e:df:0a:d8:86:94:79:7f:14:e7:1c:40:d7:6d:1f:
2a:45:b1:2d:6c:f6:09:07:d5:e3:af:c9:d4:1d:34:5d:0e:13:
d7:cc:8c:2a:de:d8:b8:c7:55:c5:d9:60:28:b3:73:e3:44:f6:
6e:61:e4:fc:d3:e2:74:0a:11:49:4e:d1:79:c2:e0:6d:62:8b:
8d:b4:c1:cb:a0:4b:9e:7c:c3:3f:37:ae:40:7a:c3:e4:a8:2d:
79:22:88:8e:70:77:70:6d:6d:17:5a:37:05:1f:b9:68:0e:2f:
a0:75:72:69:a5:06:6c:2b:8d:d3:b0:e2:47:5c:d5:e3:43:40:
32:09:95:08:e7:55:09:d1:68:03:e7:bf:83:a9:60:4e:6f:f1:
df:ad:3c:b4:7e:c5:d6:69:df:3c:2a:83:9d:df:e3:36:9c:f4:
f4:6f:67:44:10:3c:0d:cb:81:d4:25:27:a2:24:f2:e8:ea:1a:
46:59:74:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:35:29 2025 by rpki-client