Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa
File: sjvk9ACb0OxK9S0HcVmBQqruhPY.roa (raw, json)
Hash identifier: xPCvB5LxOD2k7skjAZVW05bZhqqvosBcL3kzcpf1pig=
Subject key identifier: B2:3B:E4:F4:00:9B:D0:EC:4A:F5:2D:07:71:59:81:42:AA:EE:84:F6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 117E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa
Signing time: Mon 26 Aug 2024 05:10:50 +0000
ROA not before: Mon 26 Aug 2024 05:10:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 150.116.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4478 (0x117e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B23BE4F4009BD0EC4AF52D0771598142AAEE84F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:54:d3:63:6c:71:00:a6:fe:7c:13:ec:e4:8a:
05:e7:c2:12:c4:e8:07:05:59:47:eb:4d:f6:ec:ab:
62:21:cf:da:50:ae:09:31:a0:3c:e4:ac:18:2b:ef:
27:95:a0:5a:a9:e2:04:96:45:35:e7:b2:48:14:15:
e9:a2:e2:4a:e9:a6:6b:e9:ef:15:f2:53:62:e3:44:
3e:37:05:21:ea:43:d1:f1:7d:be:66:39:f9:8b:56:
e6:4a:7f:ec:45:1f:e2:7f:7b:9c:fd:dd:75:cb:5b:
94:1e:98:07:07:f7:5a:12:44:94:d0:85:66:48:2e:
08:fd:3b:56:8e:c5:f5:9b:8c:1d:a6:c3:8a:28:3d:
47:71:17:76:2a:34:ba:de:48:65:f6:a8:3e:cd:58:
bd:9e:e5:9a:cf:d8:60:62:b8:29:59:c4:4c:d7:53:
12:e5:61:60:72:2f:4d:fc:3a:61:07:01:a1:cf:1f:
30:a6:9f:c4:62:ac:6f:64:3a:e0:74:0a:20:ff:ed:
07:9c:2e:f0:38:c4:eb:ea:e4:cd:95:64:6a:85:6a:
bb:87:95:1a:a1:1c:fc:d7:37:d7:f6:e6:bd:1c:53:
63:cc:b1:0a:04:12:90:bb:bc:8e:70:ec:2c:49:9e:
37:a3:da:e4:b5:9e:4b:dc:54:91:30:f3:96:49:63:
94:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3B:E4:F4:00:9B:D0:EC:4A:F5:2D:07:71:59:81:42:AA:EE:84:F6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.119.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:45:3a:2d:17:12:c1:d6:cc:59:88:f2:1a:b6:81:e6:f2:11:
96:f3:9a:19:4c:16:11:97:59:27:fe:8a:df:d7:4a:75:97:fd:
cd:69:32:bc:56:bf:b2:8b:a3:a2:e5:80:0f:6d:c2:8c:0d:e1:
48:70:d7:ce:b0:8a:e1:71:ce:61:06:48:ad:3d:40:e9:10:47:
fd:27:16:96:68:62:de:d3:38:d3:56:e3:e8:14:77:29:bb:c7:
33:5b:dd:9e:53:88:1e:bc:ac:9f:47:02:c6:c3:bb:37:4e:14:
cb:18:4b:cc:f2:6e:07:05:1d:45:95:f6:be:6c:41:a4:5f:f9:
fe:15:44:bc:23:04:00:6b:65:6b:20:da:f1:48:80:c3:38:c2:
38:26:c8:c1:92:9a:29:6c:58:29:80:e5:3f:49:27:d3:ab:d1:
28:28:28:59:40:70:d7:e2:d0:48:3a:5b:5e:ae:58:88:58:da:
78:d0:12:5d:30:34:88:7c:61:b1:99:d3:03:78:d2:41:00:a6:
12:d4:f5:fd:28:90:c3:6a:f6:d8:18:c7:c8:62:63:02:6c:8f:
3b:9e:7d:4b:6a:f1:00:13:9f:84:47:48:76:6b:f2:79:c4:49:
3a:2d:4b:9a:27:c5:66:46:4d:2b:0e:48:16:54:08:c1:2b:b8:
f0:8e:ca:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:56:41 2025 by rpki-client