Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa
File: SWSH5j0DA79n9p-U9WiAWux_VXc.roa (raw, json)
Hash identifier: vIEhKHzUhkCyxcqvE2pZ+bDNkwUdOIB/JtBSfCTbExQ=
Subject key identifier: 49:64:87:E6:3D:03:03:BF:67:F6:9F:94:F5:68:80:5A:EC:7F:55:77
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 32F9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa
Signing time: Mon 26 Aug 2024 05:32:11 +0000
ROA not before: Mon 26 Aug 2024 05:32:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 211.76.123.0/25 maxlen: 25
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13049 (0x32f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:32:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=496487E63D0303BF67F69F94F568805AEC7F5577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ff:e4:4a:d8:b0:68:8b:fe:63:5c:82:2b:95:
37:aa:d7:fa:53:b1:1a:65:16:39:9a:a2:39:20:17:
63:7e:b0:b5:6f:e5:3c:65:53:fc:23:93:89:01:68:
96:b2:44:47:91:e4:66:21:b6:30:1d:f0:92:f5:95:
ce:9e:ae:53:e8:52:ab:9c:a7:3e:89:0f:58:3e:12:
d2:76:48:e9:53:da:e0:0c:e7:b8:aa:a6:dd:55:e7:
17:8d:83:66:9c:44:cd:46:ce:76:bd:5e:8a:5f:84:
f5:f0:b6:9c:46:90:dd:68:4c:7c:c7:5d:56:3e:d0:
3c:cd:04:3b:8b:b9:e9:df:96:f3:c2:ee:98:b9:af:
0f:58:e3:5e:a6:b0:af:ef:47:5e:92:55:71:b5:e9:
c1:05:65:36:12:cb:dd:1b:da:ec:e1:33:32:35:9c:
9f:f9:83:a2:a5:5f:4a:e8:56:52:bb:94:0d:82:d7:
3d:ca:55:8e:82:dd:20:67:5a:c6:b2:ab:e8:a1:78:
1e:d0:98:9b:59:b5:aa:ec:e8:d4:29:f7:cc:a8:2b:
4c:32:22:c8:85:d8:af:f5:62:2e:60:55:fa:f9:8f:
7f:da:01:45:98:31:84:76:f4:9d:52:b7:64:1d:8c:
80:d0:04:0d:9a:eb:72:b6:8e:68:e8:d4:8a:c0:17:
dd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:64:87:E6:3D:03:03:BF:67:F6:9F:94:F5:68:80:5A:EC:7F:55:77
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.123.0/25
Signature Algorithm: sha256WithRSAEncryption
70:eb:e8:25:5e:2a:a7:9e:5e:09:5e:a4:f2:f0:cc:9d:7d:a8:
59:4c:97:96:7d:63:56:77:08:07:67:63:34:c3:ca:32:32:35:
e3:7b:67:15:a3:de:25:38:eb:ae:9c:37:94:a0:fa:da:f8:cc:
1f:90:09:49:bb:13:1e:09:22:90:43:f4:e2:67:c2:e5:ef:c4:
17:af:c2:54:dd:59:14:61:dd:a0:c8:dc:c3:d2:f9:e8:aa:2d:
08:49:f0:8e:bd:07:4f:bb:12:e2:93:1c:81:c7:97:09:be:80:
fd:da:17:3c:d7:1e:90:d3:5a:28:64:b3:78:ac:de:db:96:ea:
88:43:ee:02:6f:71:41:2d:e3:df:e8:be:ad:b5:6b:67:db:24:
10:a1:19:f6:90:2e:23:5e:3e:44:3d:c2:fc:c6:81:f6:25:77:
11:95:13:87:b9:a6:0a:cf:3d:8a:9e:c8:be:7c:38:62:c3:40:
74:10:42:ca:0b:28:78:76:c4:d1:95:56:12:cd:5b:09:1e:75:
ca:20:b4:ae:c5:af:3c:a9:ab:ca:a6:18:7d:aa:b2:f6:17:ce:
ed:19:a7:1d:46:ef:f2:26:b2:1a:d5:a2:0e:7a:4f:72:b5:6e:
07:85:2b:41:49:95:e7:42:20:c3:5a:2f:8c:3f:87:5f:79:07:
70:30:8a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:34:10 2025 by rpki-client