Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DOZyndMWdgiWPce2GqtDx4KZdSM.roa
File: DOZyndMWdgiWPce2GqtDx4KZdSM.roa (raw, json)
Hash identifier: r8fZwm6du/edoXVU0AWmlZpihU/s1gLJ5tlNL1EhFp0=
Subject key identifier: 0C:E6:72:9D:D3:16:76:08:96:3D:C7:B6:1A:AB:43:C7:82:99:75:23
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11AC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DOZyndMWdgiWPce2GqtDx4KZdSM.roa
Signing time: Mon 26 Aug 2024 05:11:02 +0000
ROA not before: Mon 26 Aug 2024 05:11:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 223.26.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 06:25:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4524 (0x11ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:02 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0CE6729DD3167608963DC7B61AAB43C782997523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:2e:75:2c:cd:f1:19:d4:f4:46:e7:53:8c:
b8:8c:5a:fe:19:77:20:0e:44:0e:77:8d:3e:c5:bc:
6c:a3:ac:cb:dc:85:17:f5:c0:72:11:89:35:e3:ef:
b7:dc:9e:08:95:3a:19:5d:7b:f6:77:a2:98:a9:4c:
5d:1b:b8:20:9a:52:b8:0a:a4:01:a3:fc:3f:b0:db:
7f:27:df:b1:0d:66:c3:80:96:f6:f4:13:90:4c:df:
84:4e:9b:fa:78:45:07:88:a7:be:fa:a0:bf:32:39:
95:50:76:33:5d:07:9b:1d:24:1d:47:e2:f0:06:b5:
41:3c:61:91:66:78:8c:29:91:ec:21:05:9d:5f:04:
2d:9a:1b:b2:60:57:d5:63:ba:27:77:fe:2e:fa:49:
ea:a8:ad:b2:56:6d:f5:19:28:64:36:4b:46:87:c2:
37:12:d0:31:ea:6e:a0:ea:80:14:53:0c:d1:74:1b:
c1:45:1f:d2:e6:d4:dd:8b:a0:82:6a:fd:94:9f:93:
e0:54:68:0d:c4:69:ba:91:64:6b:35:f5:4a:98:00:
82:ac:06:b8:ab:a5:43:74:ca:83:46:40:4c:9a:bb:
70:79:2a:61:b4:38:39:17:44:ee:ef:85:5d:31:bd:
9d:0c:77:c4:4a:4b:c4:ee:d5:c5:ff:63:58:f8:18:
09:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E6:72:9D:D3:16:76:08:96:3D:C7:B6:1A:AB:43:C7:82:99:75:23
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DOZyndMWdgiWPce2GqtDx4KZdSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.84.0/22
Signature Algorithm: sha256WithRSAEncryption
69:9e:39:3e:14:fd:ec:a0:73:76:1b:90:d4:17:82:2e:06:83:
9d:59:69:54:58:84:b1:7c:2a:19:d0:82:2f:ff:b8:83:7a:03:
00:2e:e5:5b:53:27:9e:8b:90:d2:25:da:6d:48:35:d6:1c:16:
50:f0:08:c9:70:d6:eb:4e:36:88:89:49:a2:ed:76:69:ab:fc:
32:8b:c7:d2:ac:3b:f2:71:17:4c:d2:41:60:aa:95:0c:04:2e:
48:10:1f:ee:a8:5d:36:fe:06:ec:1b:c1:e0:93:6d:68:48:dd:
97:d7:9d:7d:63:df:fa:9e:bd:03:db:c0:d3:a1:38:cb:a9:8e:
34:01:10:10:6d:d4:1d:11:53:f0:8d:31:67:b1:92:5b:7a:fe:
2e:90:47:e7:40:06:19:10:31:22:97:7f:6a:60:53:98:93:53:
d5:0e:10:d6:74:5e:ac:e7:fc:9f:a2:ff:e5:91:dd:63:73:cb:
27:9f:fc:95:e7:c4:66:1d:e7:4a:62:81:a0:e2:9f:d4:74:1f:
86:ae:5b:0a:41:b1:fe:99:42:d2:34:2f:04:11:77:d4:da:62:
b5:46:cb:b4:6a:cb:11:61:d6:c7:13:d3:b3:29:8a:66:56:11:
45:47:56:a6:7b:63:54:28:e9:d4:20:0a:36:57:6f:44:c7:8e:
11:c8:b3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:38 2024 by rpki-client on console-fra.rpki-client.org