Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa
File: yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa (raw, json)
Hash identifier: ORU7yVMQ2T6ipHm36gagEeVvnWxMopq9HfXDWUD3yv0=
Subject key identifier: CA:1B:19:43:B8:D6:48:41:C5:F8:E5:2D:28:E9:C6:2C:5F:2D:5F:CF
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CCD
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa
Signing time: Mon 26 Aug 2024 05:27:34 +0000
ROA not before: Mon 26 Aug 2024 05:27:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131596
IP address blocks: 123.0.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3277 (0xccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CA1B1943B8D64841C5F8E52D28E9C62C5F2D5FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:43:26:29:64:1e:95:71:f1:3f:9f:ae:e7:
f2:a6:e1:1d:d7:af:d8:e6:f9:d2:f6:35:0e:2b:dd:
d8:83:42:62:cf:bf:d0:b8:6b:31:b5:51:72:04:3f:
56:83:cc:bc:47:3b:e2:1c:80:ba:ac:61:31:b6:81:
4a:55:ce:1b:4e:cd:b2:0a:4e:25:a9:30:cb:2c:b0:
5b:fb:1b:c3:84:04:29:15:f9:3c:07:06:16:e7:9e:
13:1b:f2:8f:b8:dd:a4:12:fb:48:67:2a:23:47:0f:
8e:bc:4a:56:64:ca:cd:aa:5f:33:0f:a7:32:d6:7f:
1a:bb:4a:6b:b7:37:7e:13:97:2b:25:ae:20:bc:e3:
62:a6:d7:7e:b9:5e:55:7a:89:3f:25:84:6b:d6:78:
03:5a:a4:62:6b:bd:7f:79:e9:f6:45:ab:53:b1:72:
4d:ec:38:85:fe:43:ad:c3:2e:3e:28:ab:b3:e7:bb:
2a:e7:c6:5b:b6:af:75:10:9c:91:fa:b4:1e:41:da:
46:7f:46:b6:89:6e:4f:b9:c9:45:b9:f2:03:b0:ec:
1b:c3:d8:d2:fb:2b:83:67:9f:b3:83:cd:54:b1:a7:
44:db:9b:64:46:1d:8e:69:3a:45:53:9f:e1:29:52:
0e:09:4a:24:6a:49:f3:14:fe:ac:87:ce:44:29:50:
3a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1B:19:43:B8:D6:48:41:C5:F8:E5:2D:28:E9:C6:2C:5F:2D:5F:CF
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.192.0/18
Signature Algorithm: sha256WithRSAEncryption
30:f7:44:fc:5f:de:41:89:e6:5f:a0:e4:a8:74:47:59:64:dd:
6a:70:4c:4e:9d:11:05:0a:01:f4:2f:30:87:82:38:9e:59:bb:
ed:b0:e2:d3:3a:0c:82:29:a7:a8:92:9d:57:64:99:81:90:21:
96:00:96:8b:10:76:08:6a:7d:b2:1a:70:3b:b6:28:93:f0:88:
cb:ac:2d:62:ca:15:e7:61:8f:34:0a:7a:12:e2:17:02:0a:b2:
1f:ea:07:3f:49:fb:06:ca:8b:d6:1f:64:10:bb:01:eb:29:04:
25:73:04:fa:e8:c0:00:fa:7c:1c:cb:69:a8:a6:99:a3:f6:30:
27:30:bb:97:bd:71:cc:b5:71:a4:38:f8:2a:cd:78:39:b3:da:
8e:3a:58:21:a8:eb:84:d6:d6:61:43:6b:cd:5e:60:a5:c0:5b:
17:85:f4:0e:c4:3d:34:44:30:f8:d3:b0:84:6d:3b:7d:29:20:
90:51:ff:f0:e6:6c:e2:49:ce:d6:88:b5:f8:e8:44:9a:76:bf:
31:01:2b:ef:77:cd:ae:b9:ba:40:4a:7d:10:f3:76:1b:b0:47:
04:6e:d9:fe:e4:0c:11:09:9f:b1:9d:6b:5c:ff:37:6f:74:09:
79:a1:db:d4:59:57:be:f6:85:b7:c5:e6:6a:32:c3:eb:26:61:
61:ee:04:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:59:28 2025 by rpki-client