Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa
File: VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa (raw, json)
Hash identifier: 2LTk7IJcnu8jyIFYC2tu0DqpPr4qKM7eP22G3Z8JQBw=
Subject key identifier: 55:86:F5:64:41:71:17:B8:D4:5B:85:F5:39:0B:B0:98:80:4D:C5:88
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1165
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa
Signing time: Mon 26 Aug 2024 05:10:44 +0000
ROA not before: Mon 26 Aug 2024 05:10:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4453 (0x1165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5586F564417117B8D45B85F5390BB098804DC588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:43:52:24:05:7c:41:80:b0:57:62:0f:0f:
72:e9:bb:88:b1:29:25:6f:92:67:01:47:ed:b4:34:
d1:fd:30:a8:0c:6e:07:b1:0e:1e:6c:52:5d:06:32:
a6:73:b7:90:f0:10:c4:f9:d6:61:53:71:9a:42:f9:
97:f3:e4:2b:2c:86:33:a8:b0:ef:a3:fa:00:bf:7a:
0d:da:e8:0b:28:f1:d6:29:ee:dc:61:3a:73:35:73:
87:ae:b5:75:19:70:50:c0:5e:45:5c:94:a1:f0:40:
46:4d:20:51:37:43:74:00:e0:34:be:e6:6e:b7:b2:
ed:62:d2:1c:9d:40:ed:d7:f9:ec:67:86:6e:34:a4:
05:a3:06:a2:05:f4:37:09:a7:0f:0c:59:93:de:65:
26:99:03:d0:16:d6:a3:a9:99:3e:e5:91:17:da:71:
99:bd:11:a4:13:1c:be:e1:de:08:a5:5e:7b:6b:8f:
14:a3:3f:b9:f3:3b:47:b5:10:26:fb:ec:3d:22:7b:
8e:56:8c:8a:ab:fc:e3:6e:4d:e5:e3:c8:06:c7:8a:
90:15:92:b7:1a:d7:51:d2:00:7d:f1:78:13:34:7e:
bd:a7:ae:2b:44:d6:a5:35:7b:83:7b:e9:f8:d3:8a:
7b:e9:5c:c6:de:01:7d:25:b2:ff:fc:37:b2:21:9b:
aa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:86:F5:64:41:71:17:B8:D4:5B:85:F5:39:0B:B0:98:80:4D:C5:88
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:65:44:6e:4c:9c:65:e9:40:0e:4d:63:d1:bb:7c:8c:53:bd:
d4:45:7a:53:78:01:87:99:a2:27:57:ed:38:74:6a:d4:53:63:
d1:40:67:65:53:bf:8f:6b:e1:b0:73:2b:d2:05:f1:2d:9c:7b:
60:dc:07:52:1d:be:8b:ec:e6:19:98:1e:29:82:b4:72:e4:22:
ce:3c:f0:47:d7:b0:a4:f8:a4:5e:11:fc:0a:49:86:cf:02:32:
7e:a8:e4:9f:c7:40:ba:99:3e:0a:80:5d:5a:d4:1f:4a:44:19:
49:78:67:aa:5d:da:0b:53:09:8f:a7:3f:13:0d:c1:b0:4d:6a:
08:e0:b5:bf:4a:8a:0f:9e:4f:12:5e:16:3a:20:9c:3b:51:0e:
74:78:d8:9e:60:a6:f7:1e:59:f1:b7:48:cc:e1:d5:a0:a8:e3:
e6:7a:64:8d:50:bf:e6:fd:13:95:30:6c:7b:b0:65:bf:66:8b:
71:c1:57:dc:f8:f5:b1:b8:e5:a1:97:bc:29:97:34:3e:88:ed:
50:53:e4:7b:04:17:02:00:d1:c3:7d:68:53:27:7a:ea:57:85:
ca:e8:b4:0b:d2:14:46:10:1c:4e:26:18:49:8f:95:01:43:7c:
58:47:f1:9b:8c:9b:63:62:d9:08:f5:15:70:a1:66:81:ba:0e:
4d:be:07:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:53:37 2025 by rpki-client