Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa
File: 2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa (raw, json)
Hash identifier: vaVCxg5bBGBTcZLrHVTvEZTjRyju3ZWnROVjWrv/ZbM=
Subject key identifier: D9:FA:90:E5:C3:7F:19:AB:B4:95:0E:21:DC:C1:83:2A:11:84:E5:CA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1198
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa
Signing time: Mon 26 Aug 2024 05:10:57 +0000
ROA not before: Mon 26 Aug 2024 05:10:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9831
IP address blocks: 203.163.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4504 (0x1198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D9FA90E5C37F19ABB4950E21DCC1832A1184E5CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:5b:e2:47:47:51:a0:b3:63:99:e4:bb:20:
8d:88:6e:bd:2e:b1:e4:81:cb:0b:64:85:f4:3d:69:
1c:85:9a:aa:e7:85:fa:26:37:cb:a9:8f:c7:b9:54:
85:ff:f3:c7:cc:cc:7e:0e:d5:42:4c:7a:c2:37:71:
d8:69:72:ea:49:d2:db:4c:5d:83:7d:dc:28:9f:db:
4e:f5:b0:d8:96:2d:66:df:11:28:5e:36:86:ae:b6:
d8:80:8b:ef:3e:4c:fa:a5:c1:8e:9a:4e:fc:15:c3:
a9:f6:86:0c:fb:90:2c:38:55:a5:a7:4b:75:a8:91:
ed:b0:46:93:dc:ac:14:1c:19:9e:21:54:52:cd:1c:
69:c3:73:be:51:82:d5:f1:b0:bc:00:4c:2f:ae:76:
81:85:82:c5:72:ca:0f:a5:84:0e:8a:8f:6a:5f:14:
34:40:44:fe:d2:af:5d:4c:21:02:e4:7a:32:cb:b5:
a1:3d:1b:88:e9:bd:87:8d:eb:92:f9:9c:61:e4:d1:
20:eb:94:31:1e:c2:70:37:e1:e5:07:c1:80:83:9c:
1c:88:2e:9a:1e:be:a4:f5:4e:3c:b4:91:6c:a1:cd:
65:d8:14:34:e0:d4:9d:de:b4:8c:1f:41:88:c4:29:
8f:5a:84:05:cc:b8:e3:b8:05:59:30:c6:9e:de:37:
e6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FA:90:E5:C3:7F:19:AB:B4:95:0E:21:DC:C1:83:2A:11:84:E5:CA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.201.0/24
Signature Algorithm: sha256WithRSAEncryption
41:da:87:53:a9:ae:e0:bd:79:06:d8:25:8e:f8:22:88:76:de:
19:f6:3d:5f:9e:92:a1:70:b0:36:77:8c:09:d5:9f:1f:23:17:
ee:5a:5e:37:6f:99:1d:57:b2:21:b1:e1:28:db:9f:10:7d:f1:
de:75:89:6e:e1:0b:63:81:8d:9c:8d:1a:f4:61:3e:27:9e:b5:
a5:2c:08:c5:5d:46:e3:a1:b8:32:a4:c4:f8:87:68:eb:5e:6f:
25:16:63:73:7c:59:9e:f3:02:35:7d:8a:27:a0:80:61:21:e2:
e4:32:b8:c5:1d:dc:aa:7e:08:56:6a:87:f7:9e:e7:40:26:2e:
4e:48:f8:71:57:45:85:b4:77:9b:32:c7:6a:01:f6:0f:47:7b:
bf:19:61:a5:4e:b4:89:52:3e:19:10:b1:20:95:06:02:f9:b1:
8f:e0:50:b6:cd:8c:0f:e2:db:c1:e7:2b:ee:69:b9:50:b1:1e:
82:3e:79:f1:50:2a:d5:d7:c0:0c:37:97:cf:03:42:46:f1:b4:
63:7c:a2:1f:f6:eb:9b:58:0d:5d:a0:09:e9:00:ba:ec:0c:09:
10:f2:3d:6f:17:3c:7f:db:e8:c6:7d:ff:3b:1d:2a:e7:20:dd:
65:84:bb:f5:97:79:f0:32:ef:05:f9:61:cb:03:83:26:e6:31:
45:f9:43:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:01 2025 by rpki-client