Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa
File: zmvta6VN5Y9womNDHXK8VETQP7c.roa (raw, json)
Hash identifier: I1kDtuHujPuwvqv7Pi8GNdIh6KKJmDwkKUnUI6CN5sg=
Subject key identifier: CE:6B:ED:6B:A5:4D:E5:8F:70:A2:63:43:1D:72:BC:54:44:D0:3F:B7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1174
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa
Signing time: Mon 26 Aug 2024 05:10:47 +0000
ROA not before: Mon 26 Aug 2024 05:10:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 21859
IP address blocks: 223.26.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4468 (0x1174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CE6BED6BA54DE58F70A263431D72BC5444D03FB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cd:2a:12:f8:50:02:c9:63:57:2c:ec:a7:68:
bf:b5:d0:b3:84:c7:a8:86:54:51:23:b6:ae:c2:9d:
1e:f8:d1:56:02:75:5f:ed:dc:fc:95:86:d8:64:8c:
81:0f:61:c6:2d:1e:21:ac:1e:2d:55:28:1f:4a:e8:
9b:9a:96:4e:80:df:db:13:8a:90:cc:9a:cd:f6:70:
11:64:74:96:21:e4:62:f5:ae:16:be:9e:a5:74:6a:
52:3e:34:02:a4:ad:d8:eb:a4:50:27:2e:25:58:82:
87:a3:cb:ef:f4:9a:77:d6:c5:f2:eb:8e:01:63:58:
48:70:2b:e9:f4:b0:cd:de:e4:7b:09:d5:d3:7a:af:
26:35:5e:a8:93:93:7f:cc:43:50:88:17:e2:90:81:
bc:07:e7:f4:85:ee:71:f7:fa:69:dc:3e:49:d3:d6:
20:b1:70:93:e0:ce:d9:12:e2:06:41:c6:9b:91:59:
b0:4d:c9:ab:8a:49:86:d9:60:ed:ec:53:dd:6a:fe:
a3:db:da:8f:45:c0:e2:00:65:83:b1:94:20:f5:49:
8b:d0:b5:05:f6:f1:6c:5e:a4:0d:39:39:9e:1b:2b:
aa:7d:12:69:0a:e2:4d:06:95:ac:7f:08:70:6c:4c:
62:82:13:44:b3:35:45:be:e3:cb:37:51:cf:5e:10:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6B:ED:6B:A5:4D:E5:8F:70:A2:63:43:1D:72:BC:54:44:D0:3F:B7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.72.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:20:0c:57:6c:f6:3a:40:e9:c7:8e:d1:51:fb:33:a7:97:b2:
61:72:ab:ac:a4:97:62:e5:d9:58:06:d7:e7:7d:18:7f:ab:eb:
9a:34:c1:53:44:a1:a7:a2:63:d6:8a:d4:4a:a5:9a:17:62:aa:
b1:0d:34:9e:67:2b:e7:8c:44:2e:2d:f8:23:4e:e5:61:fe:9f:
f4:81:7e:b6:a2:b3:f1:0c:57:a6:07:97:92:f2:4f:40:0f:85:
4d:75:30:48:08:1c:66:b0:50:3f:96:b8:bb:72:ef:a3:16:59:
b5:39:99:21:85:53:2d:67:d4:99:22:c6:e1:a3:71:b9:37:9f:
32:4e:5c:41:b5:00:6b:3f:74:7b:c1:50:7c:90:c8:22:6c:51:
2e:a8:be:b4:1b:88:4f:39:08:98:9c:01:fc:fa:c0:d0:bc:42:
16:0e:79:00:31:1f:e7:3a:74:a1:9e:02:4e:19:09:f6:24:44:
26:ad:26:35:de:ac:6d:75:96:5c:15:b7:79:df:c4:56:04:2d:
fc:57:cf:1c:b3:ca:c1:21:2a:90:d4:b1:24:40:77:1c:91:0a:
18:a8:f0:2a:a4:0c:60:72:d9:2d:35:14:b3:b4:2e:8d:f9:2c:
9c:8e:af:f0:c3:a8:2c:c3:61:36:0a:e3:6c:6b:81:d1:d5:8b:
44:6b:d3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:39:27 2025 by rpki-client