Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ky_vgLbneh7eeHEKBPawGfdcPNU.roa
File: Ky_vgLbneh7eeHEKBPawGfdcPNU.roa (raw, json)
Hash identifier: zTpPRuKBJFlmauc4LNj7kOoNPimFShOTNMN3V+cmsI4=
Subject key identifier: 2B:2F:EF:80:B6:E7:7A:1E:DE:78:71:0A:04:F6:B0:19:F7:5C:3C:D5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1179
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ky_vgLbneh7eeHEKBPawGfdcPNU.roa
Signing time: Mon 26 Aug 2024 05:10:49 +0000
ROA not before: Mon 26 Aug 2024 05:10:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4473 (0x1179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2B2FEF80B6E77A1EDE78710A04F6B019F75C3CD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:a4:fc:c7:dc:0c:46:88:ff:14:52:e5:19:
cc:b7:b5:89:a6:6c:d9:9a:52:93:01:4a:57:4c:40:
d6:70:4b:02:f9:3e:ba:23:c6:fc:5d:73:31:cb:11:
12:34:0e:10:ca:fc:e6:50:fd:92:03:8b:74:00:4b:
62:0c:21:91:72:3f:f4:c0:6c:4d:6b:3d:d3:a3:88:
29:d4:77:b8:37:23:60:b8:74:27:7b:3c:08:01:69:
5a:41:9e:62:42:4e:44:27:4f:fa:48:30:13:c7:65:
6e:b7:5a:92:d3:7b:d0:a9:4f:2e:2a:b5:22:01:ff:
80:dc:c9:d8:45:4c:47:01:69:42:c6:d1:fb:e9:c1:
77:02:63:ec:48:ca:01:42:3a:5f:96:a6:ac:b1:ca:
e2:f7:9d:ab:b8:a2:85:7f:25:b5:53:e5:1f:c5:a5:
4d:de:e2:c3:e3:1c:e9:34:a6:8a:83:32:61:f0:60:
21:24:26:32:e7:df:24:ac:4d:a2:6a:e9:36:5f:86:
1a:af:ec:58:32:a3:59:d4:82:d2:7f:c3:11:1f:5d:
cc:3f:e8:b1:f5:ae:c8:b6:28:88:ea:39:18:7a:49:
b7:f3:69:09:a7:2c:14:0c:3b:a0:7b:0a:21:cd:c6:
0e:61:9e:15:61:19:6b:16:38:7a:b0:40:0b:9a:e1:
80:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2F:EF:80:B6:E7:7A:1E:DE:78:71:0A:04:F6:B0:19:F7:5C:3C:D5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ky_vgLbneh7eeHEKBPawGfdcPNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.168.0/23
Signature Algorithm: sha256WithRSAEncryption
75:c9:76:87:db:bc:cf:cc:01:5f:71:35:29:8e:1a:dd:5c:2f:
3c:ab:b1:31:48:27:a2:53:5a:63:ac:5f:6e:c3:8a:78:24:94:
e5:65:bc:cf:04:9c:d6:ce:94:1c:f5:80:ea:e3:52:f8:bf:88:
80:db:86:0a:63:10:93:a2:d4:2f:0e:49:d8:59:17:84:41:24:
0c:55:cd:21:ee:10:96:18:4a:67:9f:d5:37:f8:64:e8:36:af:
1d:f3:b4:60:ec:13:52:fe:d2:19:e0:40:86:41:ae:5f:c7:ce:
30:cd:a9:53:0f:35:17:57:12:fb:37:c2:37:39:bf:34:de:1a:
20:c0:89:b7:a9:a8:7c:53:7c:18:50:37:0e:3b:1e:a2:31:d1:
5f:68:e4:0f:2d:7f:3f:81:0b:0c:14:98:d0:7a:5f:4d:06:2d:
fd:4a:cb:36:c6:0c:ef:30:07:99:a1:b5:9d:59:4c:8f:08:34:
c4:75:2e:2f:21:d8:ac:58:cc:c1:a6:05:9c:5b:a8:2a:8d:1a:
83:a1:66:fa:33:6a:00:82:6c:31:21:26:8b:4c:5a:26:cf:92:
0e:64:8c:f3:7e:0e:40:b3:77:0f:43:20:86:a8:8e:d2:5a:41:
19:30:75:d5:19:9c:98:53:a0:2d:03:b2:91:b1:14:ac:9f:2f:
7c:e6:49:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:32 2025 by rpki-client