Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bobSKUiXpJqIIfFSmU-NuwQH5Kw.roa
File: bobSKUiXpJqIIfFSmU-NuwQH5Kw.roa (raw, json)
Hash identifier: KZeoUaeJxF4RiotDCf6jaNOrHtfCW04wU1s0Zq3gITg=
Subject key identifier: 6E:86:D2:29:48:97:A4:9A:88:21:F1:52:99:4F:8D:BB:04:07:E4:AC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 122F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bobSKUiXpJqIIfFSmU-NuwQH5Kw.roa
Signing time: Thu 02 Jan 2025 10:09:59 +0000
ROA not before: Thu 02 Jan 2025 10:09:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 113.21.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4655 (0x122f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 2 10:09:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6E86D2294897A49A8821F152994F8DBB0407E4AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e9:01:10:ec:8a:55:81:7a:11:66:d0:60:36:
d1:4b:07:66:c4:95:e5:0a:4c:e4:c1:ca:65:45:81:
9e:16:0a:8f:a5:52:cf:b9:34:ff:7d:98:75:44:1d:
6e:d2:cb:be:e8:cc:b0:aa:2b:c6:56:86:a5:f1:b5:
1c:77:5d:d1:ab:8e:0d:a6:46:5a:36:ca:12:1f:1a:
94:89:ff:09:52:c8:c4:f4:7d:15:ab:e2:b6:a8:b3:
5c:cc:60:12:fc:43:59:48:59:79:bd:75:6d:a6:28:
cb:4a:1e:91:53:e1:36:6b:aa:d2:8e:e4:0b:db:a0:
91:41:03:c1:f7:b0:ad:8b:7f:42:dc:f8:ac:ee:51:
d5:16:ac:26:c3:f3:30:05:bb:3d:b8:6c:d7:05:78:
de:79:28:60:08:94:7f:e0:4f:00:5e:f7:10:80:68:
6d:c3:41:f6:5c:19:bf:76:ba:08:a7:5d:46:94:ce:
11:9e:65:ba:1b:cd:db:3c:3f:04:bf:50:c1:64:ca:
9f:bd:1c:fd:49:39:56:1a:0f:2a:68:1b:77:43:ce:
b1:94:40:fc:d0:00:e6:8b:eb:24:01:a5:af:9b:97:
80:54:c5:98:3f:3b:84:69:c4:c1:0e:be:e5:88:b5:
94:07:fa:d9:31:24:95:18:6b:df:37:fb:75:5b:59:
1f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:86:D2:29:48:97:A4:9A:88:21:F1:52:99:4F:8D:BB:04:07:E4:AC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bobSKUiXpJqIIfFSmU-NuwQH5Kw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.90.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:8c:27:af:20:3a:40:e6:ab:27:ee:b1:f3:08:d0:45:09:95:
c2:80:57:e6:f4:06:23:c3:d1:05:1d:37:f8:00:dd:48:21:8f:
36:c4:1f:e9:26:da:91:53:03:03:3e:9c:7a:60:33:d1:6d:cb:
a3:90:1f:e4:d1:7f:e1:f9:d6:3f:f2:f2:6c:d9:8d:fe:af:4d:
97:5d:35:67:e7:fc:4f:c7:26:73:0f:cc:77:70:f4:96:c2:eb:
8b:29:f8:b4:55:82:92:9b:59:00:14:14:54:0d:13:95:93:6f:
26:50:38:01:4c:12:e3:55:19:78:63:83:52:58:ad:45:da:b8:
67:e9:aa:d9:22:7e:2e:5d:c6:a2:71:36:5c:e4:56:dc:c7:5b:
bf:12:72:24:c3:9c:cf:99:96:f6:d6:aa:89:a1:c4:e6:01:16:
3a:1d:57:f3:18:2f:f9:9b:49:24:59:85:38:65:42:fb:1d:b7:
da:31:29:89:1e:cb:58:d3:ea:7f:c1:72:39:16:77:d6:d4:cd:
f2:48:dd:7e:b1:99:1d:d9:85:3f:27:77:eb:6d:c3:69:2f:24:
9f:8b:f4:82:6f:42:18:8e:ea:07:12:f8:be:e4:79:2e:fe:20:
e8:35:cd:ba:64:4d:c7:b5:29:9f:c5:45:36:18:34:26:24:f3:
f9:6e:e6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:42:42 2025 by rpki-client