Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa
File: xfgWt1tY9HjZOWmBb949CqUJhLw.roa (raw, json)
Hash identifier: uR2W2qClSjls3kwaeIPECxy9jznMQHzvnFOccNWVdNs=
Subject key identifier: C5:F8:16:B7:5B:58:F4:78:D9:39:69:81:6F:DE:3D:0A:A5:09:84:BC
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0BEB
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa
Signing time: Mon 26 Aug 2024 05:32:23 +0000
ROA not before: Mon 26 Aug 2024 05:32:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 133955
IP address blocks: 223.165.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:55:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3051 (0xbeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Aug 26 05:32:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5F816B75B58F478D93969816FDE3D0AA50984BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6e:a7:9a:b2:5b:4e:46:91:d9:12:60:15:91:
44:49:b0:ad:99:63:7c:d2:f8:70:60:82:94:67:b7:
c9:54:43:89:cf:65:fb:e1:38:07:a9:5b:e2:63:96:
bb:a4:04:f3:91:07:e8:7f:83:10:48:11:9a:1a:30:
08:c5:ed:20:08:08:e7:fa:0a:a9:a3:0f:b2:23:05:
95:5f:5d:d0:ce:d4:ca:e5:82:8d:39:f6:2c:61:74:
c7:3c:d4:7f:ff:c5:20:aa:31:3d:b7:0c:e8:9c:f4:
c3:58:57:9b:cf:08:83:d6:43:c5:28:05:cb:2b:68:
2a:52:08:57:0f:00:f8:45:2d:a3:ba:65:ca:8e:aa:
3f:80:83:cb:b3:5c:2e:ff:4b:0e:7a:a6:bf:83:2d:
ab:5a:39:9f:f0:c3:fe:ba:34:04:1d:49:ef:ec:4d:
c9:42:6b:49:3d:49:74:ac:77:dd:e3:19:61:1d:1b:
0b:b7:60:aa:13:b9:f8:5e:52:01:52:31:0a:c4:19:
a6:62:f7:0a:b7:70:22:c0:63:1c:0e:4e:07:c3:e7:
a3:60:e4:32:5c:9e:60:ab:5f:59:d2:b5:14:ce:f6:
d2:8e:6f:19:fd:c5:37:4e:89:08:f2:71:df:db:9b:
1b:29:7b:74:ae:93:bb:71:e9:a8:a6:ac:ba:ec:3c:
10:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F8:16:B7:5B:58:F4:78:D9:39:69:81:6F:DE:3D:0A:A5:09:84:BC
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.12.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:06:73:60:96:4d:78:2c:2d:3a:a6:5c:15:c6:2a:72:9c:3c:
94:eb:7a:8a:2e:8a:ae:76:2e:5b:02:9f:d2:9f:58:74:68:19:
8a:9c:84:d4:ee:94:be:2d:7c:c1:dc:7c:a7:1a:cc:b2:ad:f6:
d2:e3:ff:fc:b7:b5:79:1e:08:da:b7:86:e3:32:50:89:f2:e3:
a4:bd:95:23:a9:b9:dc:ba:84:19:87:51:8d:ba:59:b5:2e:61:
29:ca:c1:7f:4e:ec:ec:34:00:e6:80:28:6a:53:25:91:04:91:
16:ba:9c:a9:dc:42:c3:e5:0c:26:2d:cb:00:95:24:a0:47:b0:
11:8f:32:0b:c2:4d:2b:76:90:74:cb:e3:c6:e2:61:15:dd:a7:
48:92:1f:e5:cd:87:08:85:34:b0:44:42:72:3e:ea:2f:89:92:
bd:44:ee:2c:92:01:8e:aa:50:c4:98:29:83:d6:82:3d:b4:23:
7f:15:8e:85:da:2c:ad:d4:b8:5c:51:c0:1b:5e:6f:77:0c:c8:
58:44:a5:0b:11:df:bd:b2:52:c0:75:f0:39:8a:16:a3:ec:34:
0e:0b:9d:19:97:2a:5e:3a:be:81:95:08:1c:1b:21:d9:1b:e3:
c7:8c:5e:ea:10:62:52:34:b7:68:02:d7:b1:5c:7a:5a:37:67:
d1:72:1e:db
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 23 00:32:49 2025 by rpki-client