Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BBfEQxaRM8fAb2vbxN11O5eF1-I.roa
File: BBfEQxaRM8fAb2vbxN11O5eF1-I.roa (raw, json)
Hash identifier: SR+qz8LfjHTZJ+OZ+M5hyAjVh/ESpz6URdhA3fM/WQY=
Subject key identifier: 04:17:C4:43:16:91:33:C7:C0:6F:6B:DB:C4:DD:75:3B:97:85:D7:E2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 117C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BBfEQxaRM8fAb2vbxN11O5eF1-I.roa
Signing time: Mon 26 Aug 2024 05:10:50 +0000
ROA not before: Mon 26 Aug 2024 05:10:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150754
IP address blocks: 150.116.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4476 (0x117c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0417C443169133C7C06F6BDBC4DD753B9785D7E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:c1:22:9b:21:a9:70:3f:1e:39:61:7d:df:
60:5d:c2:a4:33:1b:10:31:c0:9b:32:5e:43:5a:20:
d8:ee:26:2e:25:88:a5:81:39:3f:7f:5d:0e:6b:b4:
82:07:71:d2:2b:15:29:66:6d:7c:f0:53:c4:a8:ab:
25:59:17:e6:d1:5e:3d:58:d6:7d:35:b3:4a:66:21:
1c:ac:70:76:68:d1:70:8d:a0:29:b5:f0:8f:26:8e:
bd:c2:6f:f1:d2:72:a5:d7:ef:22:7c:f5:cb:b9:22:
9f:33:e9:a3:b2:d3:b7:70:32:22:83:0d:ab:ee:c1:
b4:ad:b0:f0:8d:be:45:a0:f3:85:42:d0:e1:69:a3:
4c:a2:64:b6:6d:f2:16:2a:00:21:92:cc:80:56:73:
c5:77:a0:9e:af:7e:15:44:4f:52:d9:32:21:f7:ea:
9e:11:2d:d5:a6:6c:15:74:bc:1d:bd:58:c0:0b:2b:
8f:54:cb:16:27:2c:61:c5:59:b9:29:43:28:74:6c:
9a:f6:38:6f:a7:96:7e:27:a2:99:1d:e2:a0:b5:5f:
62:8c:a2:37:bd:0d:dc:97:2e:d2:77:bc:7b:af:cc:
64:a6:95:9d:73:65:2c:86:a7:e7:aa:b9:78:ad:25:
74:fb:92:9d:ee:d8:4b:e6:95:0d:25:ee:ad:8b:7e:
2a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:17:C4:43:16:91:33:C7:C0:6F:6B:DB:C4:DD:75:3B:97:85:D7:E2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BBfEQxaRM8fAb2vbxN11O5eF1-I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.10.0/24
Signature Algorithm: sha256WithRSAEncryption
91:23:73:b5:05:25:8d:cb:98:5d:8f:ac:8e:e3:8f:2d:4c:08:
17:c5:ce:fc:af:4f:ad:a1:d7:eb:03:7a:ec:8e:f2:a7:b5:d5:
eb:f2:e3:eb:ce:a1:f6:de:1c:be:a6:6f:79:cb:7a:99:f0:1c:
15:05:ab:6a:d2:83:6b:1e:de:c1:a2:58:cf:96:be:8e:00:fd:
cb:78:4a:59:be:12:b9:f1:ee:d7:53:02:bd:58:44:8e:1d:27:
df:97:0b:22:88:76:61:8b:fd:e1:8d:33:85:ba:3d:8a:c8:ff:
55:a1:2b:08:b6:aa:c0:32:65:23:da:4b:47:89:66:8a:22:84:
a8:9a:9c:7f:25:af:33:32:48:b9:c7:cb:9e:df:ff:46:fa:7e:
20:65:07:4d:e9:b4:6c:7e:50:7d:e3:ef:54:da:8f:4e:cc:c0:
9c:b1:96:54:27:08:64:e6:98:67:25:85:29:ae:6a:fb:34:16:
c6:bb:2c:00:30:4a:78:32:cf:8b:f0:4b:ab:35:c3:63:4e:4e:
83:23:4b:68:88:ac:9f:1d:01:40:b5:af:56:d6:81:32:c9:0c:
bc:46:7f:cb:50:9a:d7:9e:d9:81:fa:81:7d:c9:fb:f6:da:d1:
e2:f5:29:de:6e:eb:c8:7f:a2:84:93:00:23:58:c2:b8:be:a4:
2e:09:85:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:51 2025 by rpki-client