Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAoiTIPP6b_7cW5GfZFsWjPSGD4.roa
File: CAoiTIPP6b_7cW5GfZFsWjPSGD4.roa (raw, json)
Hash identifier: /CnYEC2v2Nd/RXulTVkMOSjJoRSaVkuCgKYypp8+oM4=
Subject key identifier: 08:0A:22:4C:83:CF:E9:BF:FB:71:6E:46:7D:91:6C:5A:33:D2:18:3E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11A7
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAoiTIPP6b_7cW5GfZFsWjPSGD4.roa
Signing time: Mon 26 Aug 2024 05:11:01 +0000
ROA not before: Mon 26 Aug 2024 05:11:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 113.21.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4519 (0x11a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=080A224C83CFE9BFFB716E467D916C5A33D2183E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:ed:6b:26:1d:08:26:ab:22:11:ed:1b:b8:
dd:23:af:fb:fd:85:91:5d:96:1c:06:e0:22:b4:c8:
5d:de:2f:d9:b1:da:9e:6f:10:ab:f4:0e:ac:aa:2a:
9c:50:68:95:2a:eb:75:9d:ae:d9:b5:bb:ef:51:aa:
6f:02:b5:95:f6:79:98:24:f5:dd:a4:84:17:f5:61:
b5:0b:08:62:d8:89:b1:33:69:05:5d:0e:9f:7a:03:
c8:32:60:dd:dc:2e:ac:26:86:a4:49:24:ce:9c:e6:
ea:f2:ed:66:33:eb:d4:75:56:25:42:fd:56:5b:2c:
48:4e:e1:b7:ef:ad:cf:19:e2:b0:9f:1f:b6:4e:45:
2d:6e:61:6e:cf:82:84:4e:b0:16:e4:a7:02:3e:5e:
a8:4a:d4:82:00:1c:9a:c0:dd:f1:ae:55:b2:b5:e1:
4b:b9:cf:d5:47:a0:d5:b9:8f:db:1d:74:a4:75:35:
89:aa:93:fc:2e:c6:3d:9e:35:f3:5b:42:5b:a2:fd:
fb:8a:f3:db:c6:c6:28:f6:cc:44:52:30:40:fa:f2:
ef:5a:47:da:3a:73:f1:45:2b:23:c8:b8:4a:61:22:
85:47:97:0f:36:5f:ce:92:43:46:38:d1:ae:6c:ab:
bc:6e:75:3d:90:ba:ef:8d:48:99:ac:81:5f:dd:74:
b7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0A:22:4C:83:CF:E9:BF:FB:71:6E:46:7D:91:6C:5A:33:D2:18:3E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAoiTIPP6b_7cW5GfZFsWjPSGD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.95.0/24
Signature Algorithm: sha256WithRSAEncryption
31:8d:68:1c:6f:74:45:b2:f0:b1:0b:b0:f7:fc:94:f3:d6:ea:
df:1d:bc:7e:90:d7:d8:ff:20:0a:65:3d:46:d3:3d:e9:07:91:
72:4c:63:9b:94:4b:e2:73:62:c6:99:c4:f4:c6:83:10:c5:8e:
ca:d1:90:8a:08:9f:f2:34:76:22:d8:c6:c5:15:18:b8:cc:5d:
d6:78:65:ca:5c:30:98:e0:74:84:8e:bc:55:f9:72:a7:09:9c:
96:a9:c9:70:e0:8c:14:74:ac:02:6b:c0:12:7d:8e:0a:dc:7e:
8e:3b:4c:12:43:89:e1:55:6d:80:ef:ea:59:f2:fc:2b:df:42:
db:eb:31:66:eb:56:54:1d:b0:b9:f9:c8:6d:56:b9:6d:15:11:
64:47:78:d0:8f:3b:63:4b:37:8e:86:25:35:e7:8c:31:0c:c2:
43:e0:ba:c8:d3:f1:f0:3a:08:4c:cf:24:07:ec:b9:0c:ed:5e:
22:45:21:a7:0d:e4:75:0b:59:2c:b7:23:6f:06:2c:20:76:dc:
06:97:3a:d7:9c:46:94:bd:94:aa:74:29:16:82:c4:0e:29:dd:
e5:f2:32:18:c3:75:f6:cc:33:15:86:88:66:3a:26:05:7e:f7:
8a:8e:3a:8b:6a:e6:71:8d:56:a5:da:25:78:d9:71:52:ab:37:
25:cb:9e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:08 2025 by rpki-client