Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NCDeewpDVsdODINHhNzOvlb7SKo.roa
File: NCDeewpDVsdODINHhNzOvlb7SKo.roa (raw, json)
Hash identifier: xGzaS+WVTf+eRJQxbf0cbC0CEvTQhXSjK4AoClt2J7Q=
Subject key identifier: 34:20:DE:7B:0A:43:56:C7:4E:0C:83:47:84:DC:CE:BE:56:FB:48:AA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1154
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NCDeewpDVsdODINHhNzOvlb7SKo.roa
Signing time: Mon 26 Aug 2024 05:10:40 +0000
ROA not before: Mon 26 Aug 2024 05:10:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 175.111.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 06:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4436 (0x1154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3420DE7B0A4356C74E0C834784DCCEBE56FB48AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b0:83:6f:c8:47:67:ff:50:3a:d7:0a:cd:84:
5f:71:2b:98:b3:c1:81:1e:3e:24:59:ef:c5:d9:52:
8a:f1:fd:26:ad:0c:ee:a8:24:17:e8:b1:97:24:0f:
a1:d8:2a:45:35:4d:62:81:cb:f2:3c:b3:b3:4a:c1:
b2:9e:c5:f1:45:b9:d0:a4:e5:ab:17:36:ef:bd:de:
a1:47:f0:a4:6a:34:5f:d3:bc:f9:62:a8:f2:0d:16:
4d:f8:c2:c3:48:e7:01:50:74:98:6c:9e:be:05:67:
43:92:e6:9c:78:1f:c1:4a:52:14:9e:d5:7b:1b:9d:
f0:05:f6:6f:de:3f:39:e7:fe:f1:e1:76:56:37:9d:
ef:94:9c:dd:df:31:16:dd:9d:f6:f9:cc:23:30:c9:
2f:e3:6e:4d:62:a4:58:fa:50:45:a1:64:b9:19:97:
e3:48:40:66:80:f0:74:b1:ae:7c:eb:b8:dd:31:6a:
3b:6f:e1:4a:e2:ed:60:81:73:02:4d:91:2d:9b:97:
81:a2:0d:14:45:0e:51:97:38:4b:dd:8a:c9:c4:06:
64:39:ef:e5:d8:f7:f7:83:c5:d4:c7:46:82:ba:25:
b6:78:19:e3:be:bd:f7:dd:4b:2c:42:e0:67:a1:f2:
05:d4:a8:48:65:a0:18:73:4b:75:9f:b4:7f:65:a1:
5b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:20:DE:7B:0A:43:56:C7:4E:0C:83:47:84:DC:CE:BE:56:FB:48:AA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NCDeewpDVsdODINHhNzOvlb7SKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.32.0/19
Signature Algorithm: sha256WithRSAEncryption
55:48:16:42:f0:d3:56:a6:9a:e3:1e:a6:2b:38:61:55:f5:6c:
46:14:4e:61:35:da:6d:12:df:dc:d1:f4:5a:22:3d:11:6b:6e:
5a:53:66:eb:86:6b:2c:d1:95:25:9a:de:8d:b6:bd:9f:71:63:
e6:4e:1b:7d:3d:75:a7:16:98:6b:02:d5:ef:3e:45:ec:bc:1f:
eb:bc:11:6d:16:dc:82:0a:6e:0b:71:2b:5c:ad:94:e5:06:b0:
06:7c:21:e9:f8:64:b9:21:a6:04:25:2d:88:7f:28:4e:e9:e9:
51:fb:c0:a2:27:c6:71:a1:e9:93:75:cb:e4:11:7d:f8:37:db:
74:80:35:95:fd:dc:d2:78:90:73:6f:60:3b:61:a5:b7:80:34:
24:b8:47:6d:66:49:f1:6e:40:ca:57:84:b9:10:9a:f2:ee:57:
48:16:da:02:85:bf:b7:e5:33:d0:dd:7d:d5:82:34:15:5c:15:
41:15:36:7a:ad:3d:9f:f1:99:16:21:68:ba:c2:ca:4f:18:b3:
58:fc:67:b3:27:f0:fe:12:d9:6d:56:9f:40:2f:de:9f:8e:96:
d8:04:44:cc:91:64:8c:d7:a4:7b:7e:8e:24:5a:28:5b:ae:ca:
7a:c0:35:b6:c3:43:da:a8:e9:6d:37:66:b7:30:13:88:45:fc:
d8:4f:ce:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:38 2024 by rpki-client on console-fra.rpki-client.org