Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa
File: q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa (raw, json)
Hash identifier: O+J/pNYuwKEpsieY4g6+KytGwPtp0DZbOXIiRg73Eh0=
Subject key identifier: AB:EB:C1:B5:D3:A9:56:BF:D3:9B:BF:42:3D:19:E8:55:EF:5E:61:57
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11B1
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa
Signing time: Mon 26 Aug 2024 05:11:03 +0000
ROA not before: Mon 26 Aug 2024 05:11:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10085
IP address blocks: 223.26.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4529 (0x11b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ABEBC1B5D3A956BFD39BBF423D19E855EF5E6157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9f:d0:e3:b0:ed:0e:8a:26:b5:e6:0b:8b:e6:
f7:83:8f:a9:a4:9a:1c:92:6d:93:6f:ec:30:62:4c:
43:61:95:0e:ce:61:f8:9d:ad:1a:80:a3:17:77:d5:
64:ec:c0:28:9a:08:cf:be:8b:e9:a9:46:fa:84:08:
9c:09:88:40:53:67:dd:4f:52:7e:f0:09:4e:fb:4f:
89:a0:ef:34:5d:12:49:5f:cf:a3:2e:a5:6c:7d:96:
32:98:a7:68:ff:ef:49:54:f9:e9:44:29:bf:43:2c:
73:74:dc:d5:f3:fe:8b:09:2e:02:e2:0f:c4:1a:e8:
cb:7d:43:6f:6a:ab:4b:bf:83:f8:34:ae:34:98:2c:
b4:3c:b2:d3:89:74:70:0e:74:7a:d7:33:17:76:74:
70:da:a6:a5:63:8a:47:67:77:46:e3:e2:5a:e2:ae:
20:c2:47:45:bf:53:5f:f7:9e:77:3e:dd:70:85:29:
ab:b8:e9:5b:32:8f:34:81:79:5d:53:5d:89:fc:b9:
65:1b:94:40:c1:65:cb:ec:32:63:9d:54:a4:ea:47:
22:c1:96:92:86:62:45:30:9d:cf:bd:cf:4c:02:bf:
7d:3a:a4:f5:7d:8a:2c:da:d8:fd:1a:72:8f:e2:eb:
93:fe:e8:4c:30:89:f1:80:73:0a:ab:2a:22:b9:c6:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EB:C1:B5:D3:A9:56:BF:D3:9B:BF:42:3D:19:E8:55:EF:5E:61:57
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.96.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:2d:f0:08:d4:72:f7:ae:7a:7e:e8:5a:cf:ac:5a:0f:3b:c5:
43:59:ad:66:0d:2d:7b:74:4e:bb:f4:b3:ea:92:c6:bc:18:51:
dd:f8:0b:01:9b:b1:f1:df:b5:5f:44:80:4c:b5:5d:21:fb:40:
e4:7b:55:25:fc:91:a9:b3:07:8f:ec:b2:40:62:16:cc:2c:d2:
41:77:c1:28:8e:b5:06:95:5c:e0:1e:13:52:4c:d9:f0:49:d6:
4c:21:54:2a:4d:01:d3:40:31:1b:6a:f3:5f:ee:7a:11:5b:fb:
4c:15:b0:52:85:e3:4f:01:25:7f:81:d9:92:79:76:0b:4b:9e:
73:92:cf:59:78:f2:cb:d6:ca:5e:02:e4:71:6e:ab:32:18:60:
8a:f9:bf:5e:e1:53:4b:5e:bb:fe:3d:de:73:b4:38:20:a8:23:
92:09:aa:a1:a2:5c:a0:64:a6:ef:91:d5:51:c9:dc:7b:a5:c0:
54:55:58:38:50:0e:56:6a:94:72:a2:09:45:26:0d:ff:cf:5c:
2b:d2:1c:7c:af:e4:19:5e:26:87:b1:49:6d:25:a8:00:cf:12:
7f:8a:3e:9c:aa:f9:f7:10:1a:dd:43:fe:72:4b:2d:c1:b2:88:
c3:d9:ec:a2:e6:1a:74:44:65:c6:3f:ba:ac:79:d0:fb:b2:f6:
9c:63:f7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:32:15 2025 by rpki-client