Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa
File: oj0MYite-NW9YvV2h68ymBvert4.roa (raw, json)
Hash identifier: sTwJqyiGYEY+Hdmwgda2eo/8M+HqzaUZtQInyScPHcI=
Subject key identifier: A2:3D:0C:62:2B:5E:F8:D5:BD:62:F5:76:87:AF:32:98:1B:DE:AE:DE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11CA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa
Signing time: Mon 26 Aug 2024 05:11:08 +0000
ROA not before: Mon 26 Aug 2024 05:11:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 150.117.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4554 (0x11ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A23D0C622B5EF8D5BD62F57687AF32981BDEAEDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:36:fa:86:09:0b:3f:3c:b4:85:8e:f6:40:a3:
e1:b1:d6:83:0b:78:3d:6c:58:d6:a9:b1:c7:54:d7:
1f:6e:79:8b:0c:1c:cb:e5:3d:86:72:e4:64:b9:92:
f3:b8:d4:00:a5:fb:1a:56:05:07:5b:c0:11:d3:7c:
00:27:39:f1:0f:ee:d7:b8:46:a4:13:38:76:d1:25:
1c:6d:ff:5f:2f:27:dc:f4:89:67:5f:83:9d:8d:90:
41:ad:2e:9a:6c:ca:60:70:c9:f3:d3:05:5a:79:99:
18:e2:b6:26:57:66:78:e6:78:24:a8:eb:aa:50:2c:
b6:fa:3a:d6:4c:0b:4e:d4:9b:8b:67:a9:a9:9c:f1:
71:03:2a:27:ae:7c:05:5e:23:40:27:3d:d2:6b:da:
23:e2:74:ab:ed:7e:af:ba:54:82:df:45:f5:c0:47:
cc:62:ad:bf:87:b8:87:aa:e3:c4:3a:a8:b0:f9:72:
5f:0a:c6:26:19:13:ac:7a:d9:d6:8f:e3:b1:0e:bd:
22:67:e9:85:73:8c:40:0f:6d:30:7e:62:8e:db:0e:
06:5e:75:cd:56:9e:91:2f:40:6d:1f:2d:c6:17:f2:
c9:3d:47:a6:e5:6e:38:fa:24:36:70:74:d2:54:86:
ef:33:b9:6e:c3:98:46:16:b9:e4:4e:d5:30:20:cc:
cb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3D:0C:62:2B:5E:F8:D5:BD:62:F5:76:87:AF:32:98:1B:DE:AE:DE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.48.0/21
Signature Algorithm: sha256WithRSAEncryption
87:b9:7c:7b:15:37:c6:fd:1b:d4:e8:14:8f:c4:e2:d1:11:45:
26:0e:c8:f3:7e:a4:9c:07:a6:38:40:e4:27:0e:2a:1e:78:02:
76:7c:5f:06:b3:27:c3:10:43:80:31:1d:ff:64:30:78:f4:78:
00:a2:57:d9:43:05:29:5f:2a:36:55:24:87:8e:eb:66:54:2d:
3d:1f:3e:63:64:e6:4d:79:d0:d4:58:a7:ba:a4:af:27:d1:bc:
e0:90:4b:7a:85:1b:71:9a:bf:81:0f:99:03:1a:3b:e1:1d:15:
86:a6:c4:3b:c0:cf:5a:77:d2:89:8e:c4:d5:b8:0f:14:a8:bd:
71:5d:d5:bf:a7:43:cf:15:da:6d:04:cc:3e:94:97:2e:3a:d6:
9e:aa:86:ca:1b:b4:1e:97:1e:6e:3c:e0:1a:cc:5c:9f:88:d8:
84:39:90:c0:b4:79:0d:1a:46:3e:d8:c6:b8:d3:e3:36:c8:7b:
8d:1e:bb:0e:17:49:92:67:bf:b9:b0:cb:7b:d0:2f:62:36:01:
41:91:9c:b8:51:e7:61:b4:80:65:eb:97:e2:e4:8f:76:3f:6f:
d2:6d:be:c4:f0:fd:ad:a6:a1:ef:3b:56:9b:57:51:d8:6a:56:
81:a4:53:7f:55:7e:69:6c:e2:c6:1f:2e:b6:b2:7c:38:76:fb:
44:a1:05:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:53:49 2025 by rpki-client