Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rGpxzSJGXjsd0Axs2xPf7g__yBM.roa
File: rGpxzSJGXjsd0Axs2xPf7g__yBM.roa (raw, json)
Hash identifier: YL8po7n4zzGW5gJ+r1QePJTHbfnbQIudGWcLGgOLk5g=
Subject key identifier: AC:6A:71:CD:22:46:5E:3B:1D:D0:0C:6C:DB:13:DF:EE:0F:FF:C8:13
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1186
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rGpxzSJGXjsd0Axs2xPf7g__yBM.roa
Signing time: Mon 26 Aug 2024 05:10:52 +0000
ROA not before: Mon 26 Aug 2024 05:10:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4486 (0x1186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:52 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AC6A71CD22465E3B1DD00C6CDB13DFEE0FFFC813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:52:9e:c4:09:24:31:5a:7d:4f:9d:6a:96:43:
ce:5d:71:23:27:61:89:d7:bd:cf:9e:de:da:0d:a3:
4d:54:ec:59:9e:7e:57:0a:f6:4c:64:be:71:1d:9c:
06:a0:18:8c:62:7c:e7:8f:f2:a4:ce:4b:82:a8:59:
3d:81:89:57:ba:b4:e0:e8:3e:a7:d7:f5:72:f6:5c:
9f:0c:79:8a:b0:74:5c:7e:e0:e6:c6:ba:e4:10:3f:
a3:36:0f:7d:d8:90:0e:45:98:47:6d:8d:89:4c:56:
12:86:8b:41:9b:cf:80:5b:81:e7:c2:bd:d8:a4:8f:
3e:43:f1:80:ee:aa:5d:ec:92:f8:68:8c:bd:c3:4d:
26:d4:ed:87:a2:77:10:3c:d9:17:95:80:22:9e:69:
53:c4:7f:30:74:db:6b:de:1d:77:28:c2:eb:35:f3:
64:7e:f2:77:91:bd:0f:27:e7:ab:e9:b1:66:6d:9f:
1e:db:07:23:78:ce:0d:10:b6:5f:2b:31:8a:a7:f4:
36:93:72:f2:1f:9f:7f:5f:67:8f:bb:5b:3c:61:7e:
02:6e:8f:d4:c6:19:ef:f7:85:a7:e6:cc:ad:38:a1:
88:38:ae:8b:3f:25:d8:30:60:76:eb:8a:04:a5:a3:
16:5e:cf:3e:08:97:26:39:1a:a1:3a:e2:6f:16:a6:
f5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6A:71:CD:22:46:5E:3B:1D:D0:0C:6C:DB:13:DF:EE:0F:FF:C8:13
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rGpxzSJGXjsd0Axs2xPf7g__yBM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:1b:9d:92:99:59:52:d4:99:06:06:0b:6e:a2:77:60:47:5b:
6a:b5:2d:54:27:0a:d7:af:36:a1:f2:16:b3:4b:33:bf:7e:e2:
db:c5:ae:7f:61:f6:66:26:17:55:94:45:2e:7a:c6:91:02:28:
91:e2:76:24:e6:12:97:95:c4:4a:07:22:40:5e:5e:b9:08:25:
25:eb:a4:f4:ce:77:fa:8a:7d:a0:f2:a3:ec:f1:88:24:75:c1:
b0:d4:2e:10:41:b4:5c:e2:9c:3f:9e:6d:73:7f:11:30:23:ea:
b3:fa:b3:f4:d5:d3:c9:72:64:67:0f:8d:26:04:71:d9:06:d2:
60:f7:dd:98:50:85:b1:fb:a0:a7:97:d5:36:f9:8d:95:48:7d:
ba:34:6c:7c:b5:2e:11:85:1f:44:6f:66:c0:9e:f1:80:cf:9e:
b3:4a:59:04:f1:27:97:0a:a3:54:2b:ce:5f:61:27:a3:78:bd:
80:c3:84:42:ec:d8:d3:82:b2:27:bd:1c:34:1c:d9:c7:00:41:
0c:b9:5c:bb:ac:24:94:7a:a0:d2:6f:ab:db:cd:89:e1:7b:de:
96:fb:a4:fe:a1:4f:cd:81:57:67:c1:ae:52:43:80:ac:a5:16:
21:6d:75:2f:73:b3:2e:6d:93:1c:b8:8c:17:64:d1:d0:dd:5d:
f5:4d:f0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:32 2025 by rpki-client