Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GNeazdQ2PCGS-1z-bsrVtZcZ3q0.roa
File: GNeazdQ2PCGS-1z-bsrVtZcZ3q0.roa (raw, json)
Hash identifier: vJ1Mz0Aj36R1MHRIuHk2yCH0Kkm9MA7v5FGsJOROTLU=
Subject key identifier: 18:D7:9A:CD:D4:36:3C:21:92:FB:5C:FE:6E:CA:D5:B5:97:19:DE:AD
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1159
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GNeazdQ2PCGS-1z-bsrVtZcZ3q0.roa
Signing time: Mon 26 Aug 2024 05:10:41 +0000
ROA not before: Mon 26 Aug 2024 05:10:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4441 (0x1159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=18D79ACDD4363C2192FB5CFE6ECAD5B59719DEAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:01:86:e2:7a:49:f6:a3:3f:86:81:7c:ab:
f3:74:2a:c4:e9:af:dd:ab:c3:b1:10:a4:e6:0f:32:
b4:2d:68:22:a3:87:0d:2f:fb:5a:53:25:81:a8:ed:
75:17:71:b0:7a:df:fa:e9:3a:a0:2e:d6:50:95:2a:
d7:7b:8f:1a:0c:bd:36:18:2e:33:09:16:1d:fb:c7:
fd:37:ad:2d:41:a0:37:33:1f:dd:6d:04:6d:69:92:
a2:80:45:47:dd:38:6d:2f:8d:d4:4a:c6:10:3b:09:
54:4a:6b:82:c0:cc:c5:10:6a:af:35:70:e8:e0:47:
bc:d5:e2:ce:bb:94:71:ca:67:3c:a7:7f:5e:aa:23:
3d:c0:ab:31:41:0d:e0:fa:c0:1a:1b:34:0c:ed:dc:
ca:70:55:5c:90:8c:c6:8a:70:7a:11:c8:61:53:16:
ad:68:25:c2:a9:6d:3b:17:a7:56:84:78:ab:3a:97:
f8:17:47:d5:59:93:d4:e3:21:ee:63:7d:ea:8b:1b:
52:04:56:fa:ad:f7:3b:5c:e3:f8:f8:1b:79:f5:b4:
e7:ad:fa:d8:4a:6a:bc:58:00:98:83:fb:c3:eb:81:
07:bf:bc:b8:81:24:03:2c:e2:a6:2b:8a:7a:73:5b:
d6:a0:06:24:95:26:30:fe:78:88:55:04:aa:6d:99:
50:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:9A:CD:D4:36:3C:21:92:FB:5C:FE:6E:CA:D5:B5:97:19:DE:AD
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GNeazdQ2PCGS-1z-bsrVtZcZ3q0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.140.0/22
Signature Algorithm: sha256WithRSAEncryption
50:43:87:93:9b:6f:54:24:8c:85:16:55:f4:a4:85:e7:9b:94:
aa:24:2d:82:fc:c4:ae:c8:be:2f:45:d3:e0:d1:8e:06:99:10:
5c:df:2f:81:29:82:d6:af:bf:34:91:ca:5f:e9:84:13:89:17:
d8:e2:fc:4b:55:3e:fa:b7:36:46:ed:9e:01:b6:29:8b:e4:3c:
a9:e3:60:ba:2d:2c:65:9c:ba:ab:11:65:8d:82:8f:e5:f0:bc:
55:df:ae:f7:38:bd:c9:17:d3:3a:53:0f:e1:86:1d:03:fd:9f:
17:a2:fa:d4:3c:94:08:22:31:58:f7:03:e3:d1:10:5f:bd:64:
a5:0b:3e:9d:40:aa:fc:c3:67:06:08:a5:7b:7a:1d:5e:fc:91:
ea:20:6f:2e:cb:c0:40:7f:20:e8:37:b3:a5:f7:c2:dc:07:a6:
fa:27:8c:7b:25:8f:f1:a1:5a:55:a8:92:e4:3b:4b:c7:fd:3f:
dc:48:f8:d1:dc:7c:7e:98:a0:bb:d1:78:f7:94:ef:83:a7:2b:
a0:64:0f:80:6f:2e:90:0d:f7:8d:38:3e:76:fb:25:c5:c6:1f:
ea:c6:56:7a:f7:ba:ea:89:04:da:98:bd:18:9f:28:25:db:28:
66:f4:96:85:b9:34:c4:6a:c7:84:7a:11:42:d3:13:ef:9f:d9:
06:04:89:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:25 2025 by rpki-client