Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CFyZHKWcfLraU4luKTK3APUhVAI.roa
File: CFyZHKWcfLraU4luKTK3APUhVAI.roa (raw, json)
Hash identifier: G7PF/jZa2ZnwZwMGg03b1ovY4jXMXpUQrzvI8zKGntA=
Subject key identifier: 08:5C:99:1C:A5:9C:7C:BA:DA:53:89:6E:29:32:B7:00:F5:21:54:02
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1191
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CFyZHKWcfLraU4luKTK3APUhVAI.roa
Signing time: Mon 26 Aug 2024 05:10:55 +0000
ROA not before: Mon 26 Aug 2024 05:10:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4497 (0x1191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=085C991CA59C7CBADA53896E2932B700F5215402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:76:16:33:6a:1b:fc:9f:4e:b0:00:61:03:4e:
c4:15:fb:10:37:79:64:cd:42:a3:08:77:29:e4:d1:
fe:f6:07:0e:08:ca:61:ab:f8:01:c5:00:be:14:2d:
8e:11:ba:cd:4f:1b:86:a6:e4:e2:fd:b6:03:1a:22:
08:2c:fc:99:ec:ae:4c:a5:61:e5:90:51:32:23:8d:
f7:17:8e:b3:77:1d:9d:08:71:81:58:14:07:c8:0e:
43:c6:00:37:e0:ed:43:ab:7d:66:61:15:e8:23:95:
b8:5a:09:d3:c8:98:12:53:80:77:3d:95:22:6e:fe:
5e:23:07:16:47:fd:fe:4b:5c:ff:67:92:07:5c:06:
70:af:77:60:de:ae:5c:d3:ed:a8:ea:34:4a:80:2a:
0b:dc:99:b3:1a:9f:1f:00:8d:37:99:36:de:92:73:
41:15:06:c1:4e:d8:d1:1b:99:d8:69:5e:bd:8d:1d:
1d:75:35:59:46:0a:00:f4:5a:33:d6:e3:56:4a:5b:
54:6f:4a:21:ac:52:af:d9:f7:77:3b:8b:11:83:a9:
03:81:b2:d0:21:72:02:3e:35:35:98:aa:08:58:34:
6b:fa:34:cd:80:f8:7c:16:03:06:e5:52:98:4f:87:
f0:ff:3f:5b:65:fb:23:52:be:a8:c3:0b:00:84:61:
57:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5C:99:1C:A5:9C:7C:BA:DA:53:89:6E:29:32:B7:00:F5:21:54:02
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CFyZHKWcfLraU4luKTK3APUhVAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:d4:c6:22:b9:0e:12:b9:3e:3f:68:1b:64:a7:06:a0:69:a9:
a2:b7:80:d9:0f:21:10:80:6d:a6:ac:64:c2:f3:40:ec:d7:5a:
f9:52:3f:66:8c:98:00:12:30:d2:5b:e5:05:75:b3:d7:3d:c3:
7a:4c:d0:56:04:51:a9:45:ff:29:1c:58:a0:8a:ed:1a:ed:68:
c7:cb:9d:fb:58:6b:15:ae:4f:62:72:5d:41:f0:64:45:c4:fb:
8e:7c:01:ac:61:ad:db:8b:87:0e:b7:15:d6:a7:7f:49:4e:2d:
b6:6e:a4:ec:ac:03:62:3c:b3:ce:b6:bc:db:b7:18:00:f3:b0:
3f:54:0c:eb:27:97:cc:c3:78:59:d3:a3:a2:e0:87:41:e4:05:
fa:b1:5f:26:1a:68:24:53:5a:c0:71:e8:da:f3:eb:25:48:a3:
36:a9:38:06:48:1d:53:e1:84:76:7f:a8:33:54:9b:2e:c7:ed:
76:3c:df:19:9d:f6:b2:14:2a:e6:a0:5e:c5:1b:91:61:ec:b7:
01:3d:07:69:4b:0b:f9:5c:1f:93:e2:44:8a:34:b1:e6:7e:f1:
f4:ed:bc:f6:b0:75:50:9f:ab:b8:ec:3a:44:de:5a:9c:60:1e:
57:ee:5f:78:f9:08:64:1c:d7:12:ca:84:ce:40:48:9c:9c:0c:
30:ad:90:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:05 2025 by rpki-client