Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa
File: N6dz0_pm4YrOFaPevJ0eag7Uygk.roa (raw, json)
Hash identifier: oEGu7niLNZ2CWKFmhKir6Rl5X0Qc8KRS7xTgMlTq3xs=
Subject key identifier: 37:A7:73:D3:FA:66:E1:8A:CE:15:A3:DE:BC:9D:1E:6A:0E:D4:CA:09
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1171
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa
Signing time: Mon 26 Aug 2024 05:10:47 +0000
ROA not before: Mon 26 Aug 2024 05:10:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 203.163.192.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4465 (0x1171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=37A773D3FA66E18ACE15A3DEBC9D1E6A0ED4CA09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:14:e9:bb:c7:ec:a3:09:1a:b7:ac:74:28:c3:
4b:5d:ad:7f:c2:73:55:17:bd:04:07:14:13:ac:c6:
db:2e:de:18:e4:dd:72:3d:75:2e:46:fd:99:55:59:
b5:c2:c7:51:7e:3a:a3:81:e1:2e:88:d8:8b:23:ab:
a2:11:f2:7c:b7:b5:7f:f3:c8:6a:40:9a:fd:62:b3:
3a:5e:a9:c3:4f:7a:e3:a1:30:0d:18:e6:c5:70:1c:
ea:bf:0d:a6:b9:e6:bb:c8:7f:f1:b9:f3:9f:00:7c:
01:7e:b7:63:67:0c:52:dd:6e:2b:dc:5d:ef:7a:1e:
0b:b4:54:79:23:a5:31:44:b3:0c:c1:a1:e2:3b:7c:
0e:27:e0:53:37:dc:2c:64:d4:16:3a:4c:ea:81:bb:
af:df:28:65:da:f8:6f:bc:27:d9:83:9d:40:85:fc:
71:d4:5c:6c:9a:e8:af:96:99:51:9e:a8:aa:4b:12:
11:41:ae:f1:84:13:87:a0:24:12:3e:0c:ac:19:64:
79:e8:54:c6:cc:f3:48:11:7a:87:61:44:e6:bf:23:
ca:4c:4d:85:f9:42:7e:ee:ee:5d:66:ce:20:41:44:
95:16:ce:36:31:7b:a4:da:74:1c:d6:4a:72:2e:63:
7a:5c:5c:b1:69:44:9e:de:60:7b:14:00:2e:77:7b:
c6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A7:73:D3:FA:66:E1:8A:CE:15:A3:DE:BC:9D:1E:6A:0E:D4:CA:09
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.192.0/23
Signature Algorithm: sha256WithRSAEncryption
46:60:3e:5a:e2:4c:a5:43:84:74:69:b9:14:a7:88:5d:3b:08:
2c:e4:fa:16:70:3a:3a:aa:33:41:15:4b:15:a4:29:84:66:5a:
8b:70:81:15:35:45:30:92:33:74:c2:3b:13:fc:33:2a:9b:47:
63:a8:94:cb:af:56:fa:78:5d:81:de:d4:ba:29:ee:bf:d2:9d:
c9:70:9e:93:17:dd:1a:ca:fc:06:c8:57:38:7d:04:50:a8:f2:
de:83:fb:1a:b2:95:cc:50:bc:ad:d6:dd:61:8c:c1:8b:1c:5d:
dc:23:c7:88:38:87:a5:84:17:8f:bf:dc:24:d3:84:3e:05:35:
e3:c2:d6:ec:f4:11:b8:6d:b5:70:6e:3f:51:49:34:21:30:6b:
80:e4:54:82:11:dd:f4:f2:f3:e9:78:e7:8b:dc:35:3d:86:62:
bb:e4:f4:ed:00:f4:5a:cf:c8:7f:bd:13:a2:23:9a:ba:3a:1b:
16:78:a7:23:f2:2b:e8:33:94:0d:ff:7a:f7:ec:ce:50:93:28:
b4:bd:15:da:5a:eb:b1:d1:74:6a:a8:6d:6b:a5:10:df:fc:a1:
dd:1a:8b:85:2e:ce:89:02:a2:c0:3c:2f:c8:22:57:9b:5d:bc:
fa:98:48:50:4b:32:f1:1f:69:cb:ab:3d:c2:47:28:db:94:c1:
5e:29:9a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:31:10 2025 by rpki-client