Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa
File: VRt9vJvGVrpU2woP6nhptu_dXjQ.roa (raw, json)
Hash identifier: C76+UxGud+SNUNUQhKzOyQPcGefZn+EHAnTAGIq606o=
Subject key identifier: 55:1B:7D:BC:9B:C6:56:BA:54:DB:0A:0F:EA:78:69:B6:EF:DD:5E:34
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11C3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa
Signing time: Mon 26 Aug 2024 05:11:07 +0000
ROA not before: Mon 26 Aug 2024 05:11:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.236.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4547 (0x11c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=551B7DBC9BC656BA54DB0A0FEA7869B6EFDD5E34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:72:52:7b:96:f1:80:d6:2c:ba:e1:d8:3b:bc:
01:81:df:db:1b:86:3e:97:cb:bf:0d:19:1e:a4:4b:
12:bb:c3:7c:32:81:91:58:b4:a4:e3:a5:4d:d5:16:
e9:81:c8:65:72:5b:60:5e:3a:f1:44:ff:88:40:65:
06:bc:17:d5:02:79:49:da:c9:24:a4:cf:cb:7a:44:
e3:77:70:e4:ff:65:cc:91:ad:79:29:b6:ad:a4:5a:
09:b9:d6:f8:ad:57:d2:17:84:73:d1:9e:fe:b8:43:
a6:36:3a:d4:d2:55:1e:58:2f:4d:b4:ac:d6:21:f9:
16:25:c5:af:10:89:72:47:ef:89:d1:ea:5d:35:dd:
94:9b:ae:c4:5e:56:05:d6:6a:0c:e0:eb:50:e8:23:
62:60:b0:e2:7f:8b:d7:43:9e:75:0a:f7:27:71:71:
e5:55:b9:50:99:62:dc:77:1d:42:d0:f1:90:e2:4c:
26:e2:24:fe:61:81:79:5a:6c:cd:09:b4:a1:41:14:
00:fd:d0:d4:33:b7:bb:4a:b5:c2:5f:42:fe:1d:7b:
30:4f:5b:6b:bb:4a:96:d4:b2:b2:b7:f5:4c:5f:fb:
e8:fb:30:56:70:fc:29:d5:cb:8b:3d:fb:4d:01:9b:
13:93:23:b4:94:6a:0e:a8:93:98:bf:ba:27:a9:b8:
4b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1B:7D:BC:9B:C6:56:BA:54:DB:0A:0F:EA:78:69:B6:EF:DD:5E:34
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.236.0/23
Signature Algorithm: sha256WithRSAEncryption
21:ef:ca:ab:99:bf:8e:20:e0:dd:36:cc:f9:7d:13:01:11:86:
cd:31:59:05:2c:a0:9a:7b:cc:85:fd:c1:d6:4a:65:10:d7:51:
78:06:bc:54:04:e3:02:d6:19:59:f7:4b:ca:fc:30:20:6c:87:
2a:b1:f1:21:75:3a:6e:e5:52:e7:d8:22:bb:aa:0e:e2:e2:e8:
59:1d:2c:2b:58:ba:2a:28:3e:9e:26:47:93:03:10:2e:41:0b:
fe:81:54:22:7e:89:4b:51:b1:e3:0e:bb:f8:f8:b6:25:27:68:
fa:1d:16:5a:75:71:35:e4:2e:41:be:27:53:83:eb:b2:a6:fe:
57:c8:38:d2:d8:53:9b:42:49:38:49:2c:b5:f1:67:c7:b4:d0:
4a:c4:28:e2:d1:06:5a:2d:99:01:5c:c1:ed:df:d7:12:20:01:
60:98:ea:ee:2f:07:88:f9:05:5d:44:90:99:0f:a5:bb:aa:6d:
8b:56:b3:e5:11:4a:9c:98:a2:42:ac:66:0e:cc:d6:c8:ba:ba:
b8:ba:33:94:67:fa:1e:ea:01:7a:0c:6c:05:62:9f:14:97:25:
84:80:79:4d:66:2c:7a:6c:fb:02:28:88:7b:04:c7:b6:b3:0a:
07:d9:1f:78:3c:58:44:d4:75:bf:1f:f1:e1:57:7c:d8:dc:2f:
5a:eb:6d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:02:10 2025 by rpki-client