Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa
File: Zfclo-5TOA4jWnuvwZW10YcUd2c.roa (raw, json)
Hash identifier: A4sIjY7y2UbimycgZrc1mKdc04RN1J4WM2TJ8pKeK3I=
Subject key identifier: 65:F7:25:A3:EE:53:38:0E:23:5A:7B:AF:C1:95:B5:D1:87:14:77:67
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11C1
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa
Signing time: Mon 26 Aug 2024 05:11:06 +0000
ROA not before: Mon 26 Aug 2024 05:11:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.117.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4545 (0x11c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=65F725A3EE53380E235A7BAFC195B5D187147767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:da:07:e2:f0:ac:92:28:02:27:84:30:33:30:
99:bd:d8:dc:86:2c:08:7f:f4:24:f1:2a:73:44:aa:
4e:d1:6f:e4:d9:bb:7d:3f:59:92:13:96:d4:25:88:
27:8f:33:83:b5:76:b1:f9:be:f9:93:cd:22:5e:bb:
b6:f7:c4:f0:d4:63:36:34:38:5e:95:12:a6:c9:80:
ca:78:46:f8:68:09:9c:18:c3:a5:95:e7:6b:b5:56:
ff:2a:42:bb:7e:5f:1f:e5:7d:54:c7:64:64:e4:3b:
d4:5c:94:4c:73:45:a0:54:e8:59:e9:c8:f4:a2:99:
0c:c1:63:94:f6:cf:59:a7:42:49:66:fc:26:11:8a:
8c:a9:32:f7:37:c8:2c:93:35:b4:d1:13:94:53:26:
eb:8f:6b:da:b6:9c:d6:47:d7:bf:ed:41:86:cb:df:
69:95:6e:11:71:36:92:4c:14:b1:26:69:00:a4:b8:
61:c1:4d:d3:2e:18:87:cc:9a:4c:72:a2:78:14:d5:
47:b2:80:d3:14:d5:28:f6:a0:99:9c:76:e7:63:ad:
df:70:6d:83:6b:3a:c1:b9:8e:91:ef:00:ce:51:33:
09:fa:a7:0c:af:e9:ce:bc:b5:29:c8:9b:41:6e:f5:
c1:69:d2:92:cb:eb:c5:8f:31:85:3e:5c:0c:33:f8:
ae:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F7:25:A3:EE:53:38:0E:23:5A:7B:AF:C1:95:B5:D1:87:14:77:67
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.240.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:18:fe:e6:bb:e8:ff:ba:09:17:78:ed:09:b0:fe:f1:0d:ee:
27:ac:9c:ad:54:72:97:8f:07:ad:37:c5:a0:a6:20:a5:fd:1f:
c5:ef:43:2a:4e:50:90:d5:ef:59:50:7f:c3:e0:04:73:9f:d0:
38:bc:eb:13:b5:ba:c5:af:6d:96:c1:73:cf:b7:ca:84:00:f1:
67:3a:85:86:1f:88:e2:00:68:7b:30:c6:b4:79:55:27:dd:ad:
91:20:92:23:4f:d2:8f:6a:13:eb:09:14:32:54:5e:d0:46:9b:
05:97:4e:84:9d:0e:ff:5e:5f:cd:2f:01:b2:3a:df:ba:ef:84:
3d:f2:25:de:2b:2a:59:c6:85:5f:4a:4e:bd:0c:d9:82:b6:ff:
33:34:02:96:80:40:ca:20:61:c1:b6:29:21:2c:ba:5b:55:32:
79:b9:f0:4c:d9:d4:4d:71:2a:e9:14:fa:70:f0:57:28:d3:10:
a4:5d:6d:90:2c:d4:3d:ba:6a:24:1a:d8:7b:bc:bc:f9:e6:90:
3e:73:ed:91:64:c0:d2:c3:a7:0d:ce:6f:f0:8f:e1:5f:98:0d:
0b:6c:d2:e6:69:20:85:af:6d:f4:f3:59:8b:10:21:84:c9:78:
21:64:18:27:ae:a0:0c:f0:9d:4b:56:8a:d7:a6:d0:ed:03:fb:
f4:51:97:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:39:42 2025 by rpki-client