Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DgkWGVou3GUcpo49DHQRNozGFT4.roa
File: DgkWGVou3GUcpo49DHQRNozGFT4.roa (raw, json)
Hash identifier: 6nxAVfiCzQRypIJiDWyyU5ZArfPxyjijLygFZKIbb/c=
Subject key identifier: 0E:09:16:19:5A:2E:DC:65:1C:A6:8E:3D:0C:74:11:36:8C:C6:15:3E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1183
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DgkWGVou3GUcpo49DHQRNozGFT4.roa
Signing time: Mon 26 Aug 2024 05:10:51 +0000
ROA not before: Mon 26 Aug 2024 05:10:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 150.116.120.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4483 (0x1183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0E0916195A2EDC651CA68E3D0C7411368CC6153E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:8c:5b:a3:ee:32:03:be:40:db:9a:d5:b8:
6d:e2:6f:2e:30:b5:fe:b6:66:1f:91:60:b3:7e:41:
04:cf:5f:91:d5:ef:58:a6:d5:c6:34:5c:77:91:4b:
f6:13:ca:d5:6f:07:43:98:a5:d4:f1:e4:7c:34:c3:
7e:67:33:94:4f:f6:bc:b9:b0:b5:32:9b:a6:ae:ea:
99:8c:6e:7b:03:72:0e:82:9c:61:f1:cf:f8:25:d4:
27:5b:16:27:0a:16:36:39:bc:b3:b5:dc:92:c5:88:
42:f9:66:19:45:7b:e3:71:5b:0f:9e:a0:a7:3c:7f:
9d:b6:ea:c9:d5:a0:2c:e8:32:53:a3:00:d8:b6:b5:
90:1e:7d:c0:4b:71:d5:98:4f:f1:5f:61:49:6e:8a:
44:82:a1:83:97:f1:4c:4f:7f:17:2d:e4:18:02:49:
37:eb:21:fa:64:bf:5d:18:b7:6b:af:a1:ac:79:1a:
10:bc:16:ea:9d:4f:4a:d1:30:aa:6a:b2:6e:1a:9e:
b4:fa:78:f1:a0:34:2f:8e:f9:fc:99:45:2e:03:8e:
d0:6a:03:b9:9c:10:ee:09:28:2c:66:fb:eb:e4:32:
6c:1e:fa:2b:06:72:b3:35:c0:62:c9:8a:58:68:0c:
dd:2f:1e:3d:be:01:02:d2:6a:2d:40:09:40:64:a9:
f4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:09:16:19:5A:2E:DC:65:1C:A6:8E:3D:0C:74:11:36:8C:C6:15:3E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DgkWGVou3GUcpo49DHQRNozGFT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.120.0/21
Signature Algorithm: sha256WithRSAEncryption
83:82:1c:e9:2f:6f:eb:33:ef:50:8e:33:b0:80:d1:e8:e4:9c:
92:09:cd:f3:2f:ce:5d:c1:2a:49:1a:fb:a6:ad:f7:9a:6c:43:
2d:64:b6:d2:a6:2c:93:eb:6d:a9:c7:b6:b4:62:1a:e5:3b:8e:
44:54:8d:9d:79:04:46:ad:92:86:7b:43:27:c0:07:83:52:75:
32:55:f9:0e:ce:f7:f5:78:ce:bb:a7:63:b8:be:2d:71:19:7c:
d0:d4:04:d7:80:bc:49:8c:b2:72:b7:25:2e:10:fb:a4:ff:9a:
6d:e4:f8:93:d3:40:4c:b4:b6:25:bb:68:bf:99:ab:4a:31:6c:
30:34:ba:5d:3a:89:48:e0:b2:fa:0f:9d:5b:4e:52:34:1f:63:
ac:bb:fd:1b:33:9f:6d:be:f4:3f:98:89:e0:8e:90:9a:55:23:
bf:24:e9:7a:1a:c7:6e:10:2e:4b:bb:67:11:6b:b2:9e:37:e4:
fe:72:f3:cb:a8:7d:08:3c:50:c9:71:11:29:a1:42:f3:bf:f2:
88:d2:93:04:a8:53:16:6d:11:73:1f:4f:d8:3e:62:9d:6d:da:
9f:bb:fc:37:37:ea:47:39:87:d9:64:fb:9d:fb:3c:e7:0f:f6:
31:17:57:0d:71:f1:da:61:36:fc:9e:cb:b8:d2:b9:59:43:b3:
3c:13:b0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:30 2025 by rpki-client