Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa
File: _SXTwnMQaAROVUJH95OYdjp5tl4.roa (raw, json)
Hash identifier: x0JhmWQgHDVBnWKzJa1wfwQq0lnG+yCwY7HyGRAKwm8=
Subject key identifier: FD:25:D3:C2:73:10:68:04:4E:55:42:47:F7:93:98:76:3A:79:B6:5E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11B3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa
Signing time: Mon 26 Aug 2024 05:11:03 +0000
ROA not before: Mon 26 Aug 2024 05:11:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131600
IP address blocks: 113.21.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4531 (0x11b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FD25D3C2731068044E554247F79398763A79B65E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:74:3e:e2:b9:17:80:01:33:2a:6d:b3:8b:00:
60:1d:fd:f5:d9:5e:7b:45:86:73:15:7e:ca:be:a1:
e0:1e:7b:2a:f2:1d:f3:bb:f5:3a:4c:6d:38:95:71:
c8:35:0a:8c:e3:51:91:2c:87:c6:bd:c9:f1:2f:0d:
cb:83:a8:f6:24:04:a3:28:f0:9d:35:cb:38:fc:10:
67:54:0b:a9:91:4b:4d:b0:4c:73:42:3a:4d:5a:4d:
a6:4a:b3:0b:56:51:41:e6:49:63:7a:63:82:03:63:
6f:ae:c4:be:b0:df:ce:d8:54:a8:5b:17:72:ea:1d:
a0:71:4b:d2:f5:51:52:8a:de:c8:59:f7:48:dd:62:
3d:9a:e3:8c:ca:df:9b:61:0f:bf:08:0a:d1:1b:30:
66:9f:ed:d4:6f:e1:00:b2:98:99:ba:c4:52:fd:dd:
eb:6d:a1:d0:0d:e4:2b:a1:35:7a:72:9b:90:f3:4c:
7d:a1:05:dc:3e:d5:85:b9:a0:aa:95:fb:e9:ec:2b:
62:d0:50:b1:ed:70:4f:95:a3:d5:42:7b:8d:1c:84:
7c:2b:2f:df:1e:cc:59:b6:33:94:01:8f:29:e0:c6:
4d:79:32:96:9b:ce:e0:74:25:6d:7a:61:4a:26:6e:
f7:25:4b:73:a4:1b:83:d8:27:fc:69:05:dc:c8:8b:
e4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:25:D3:C2:73:10:68:04:4E:55:42:47:F7:93:98:76:3A:79:B6:5E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.94.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:c1:b6:c4:aa:41:16:18:76:ee:5d:59:bc:d4:f0:6f:d3:98:
54:06:86:4a:ed:12:6b:9d:b1:76:53:1f:c0:fe:0a:e8:d1:de:
3c:79:fd:ba:2b:cf:d7:5c:ec:58:a0:fd:83:3c:e9:ad:7a:81:
7c:b0:54:61:37:e9:9d:35:d7:d8:71:13:b7:ce:c1:eb:53:8c:
6c:98:d3:3e:69:76:3d:6e:20:f1:12:86:26:28:02:13:3f:1d:
e3:40:84:de:8a:d4:2c:39:30:30:00:8a:e3:d7:58:3d:8f:92:
d1:32:fe:c4:3a:f0:84:b5:d8:53:b8:93:fc:28:8d:85:76:4d:
1c:d9:09:19:97:04:bf:9d:ab:6d:76:2f:9f:76:a7:68:10:2c:
5a:c9:d7:87:b3:c0:2e:cf:df:c8:90:69:e9:6c:34:e4:af:56:
7e:5e:9b:2b:a4:2d:1e:a3:23:d5:e5:7c:05:1c:85:a6:03:6a:
bc:f0:0e:d2:b3:07:a6:ff:d1:80:3c:b2:1a:1c:46:df:d2:ce:
a8:0e:ce:42:79:ec:63:a9:a0:17:e1:a6:63:c2:79:2a:b0:ef:
bc:82:e3:26:5c:b6:aa:8f:38:72:8b:e2:53:75:2d:6b:2b:08:
f6:14:8d:0c:4e:d4:4b:88:ae:b2:55:db:e2:70:2b:ea:69:b2:
d5:7f:65:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:57:34 2025 by rpki-client