Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa
File: DJz9GHffDt49NiKRzYKavnKNk-E.roa (raw, json)
Hash identifier: CmgC1j0aLhMAVAKMiHk1E3TxzXodXl5VBgYnO0uVDJo=
Subject key identifier: 0C:9C:FD:18:77:DF:0E:DE:3D:36:22:91:CD:82:9A:BE:72:8D:93:E1
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0CA2
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa
Signing time: Mon 26 Aug 2024 05:12:30 +0000
ROA not before: Mon 26 Aug 2024 05:12:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 116.50.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3234 (0xca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Aug 26 05:12:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0C9CFD1877DF0EDE3D362291CD829ABE728D93E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:23:34:f2:b4:29:f3:d0:7c:c6:7d:08:b6:eb:
8a:81:0b:99:88:96:3a:e7:89:92:1b:1d:30:25:2c:
ba:3b:aa:c1:0c:98:11:8a:48:f5:e0:78:8b:b1:f2:
60:33:57:42:be:f3:70:90:2a:59:a0:f5:43:55:97:
8e:13:07:8a:e1:c7:a4:a5:ce:c5:cb:ec:e7:34:fc:
a6:26:27:ea:eb:57:0e:9b:55:12:ec:c8:ec:b0:e4:
87:c0:9d:2f:30:0d:0e:6d:5b:8d:be:af:55:15:ed:
47:e1:c0:69:3b:3c:04:03:d2:eb:51:7c:08:24:4b:
70:d9:a5:84:9f:e1:af:81:71:77:dc:b3:97:4c:b9:
7f:a4:c5:58:78:6d:6f:62:01:fd:a8:27:c9:97:95:
0f:6b:2b:e5:a1:6b:8c:6f:f6:4e:cd:e6:9a:0f:24:
0e:89:a2:e4:d7:e4:68:ae:ec:8a:1b:f7:ac:18:b4:
60:6f:20:9d:ac:1a:94:1c:e0:92:aa:1d:c4:5c:83:
83:73:f0:a4:1d:65:05:48:97:7a:2d:db:8d:21:4c:
4a:fb:46:f5:11:e6:2c:64:fd:06:e9:97:3f:b8:7d:
c0:d3:91:41:0c:7d:f4:d0:3e:99:20:77:6a:3f:4a:
58:a8:f1:a9:5a:b6:87:35:9a:a6:92:0a:76:d7:c4:
89:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9C:FD:18:77:DF:0E:DE:3D:36:22:91:CD:82:9A:BE:72:8D:93:E1
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.32.0/20
Signature Algorithm: sha256WithRSAEncryption
d2:f3:b7:a4:cb:83:7d:46:9c:83:46:7c:2b:6c:03:18:dd:70:
58:5f:68:9a:cd:e3:b6:e6:59:83:a7:29:8d:cd:e9:57:7b:cf:
19:58:9a:61:1f:07:4e:92:02:97:22:b3:7c:d9:74:00:2b:de:
d3:0a:8e:0c:ce:b1:f0:00:8b:10:94:aa:e5:35:c0:8f:88:89:
14:08:ba:85:1b:11:81:ee:7e:00:9f:53:69:d7:87:51:cb:50:
92:a8:06:7d:5b:f0:0a:29:d4:34:be:ee:ba:da:c5:41:5b:f8:
dd:6d:3f:ea:e0:26:84:ba:62:a7:ff:62:91:ac:30:8c:01:fe:
95:c5:64:a6:79:45:25:0e:cc:9b:af:a0:d2:06:51:62:e8:bc:
9c:81:1d:20:84:8c:47:6d:ec:c5:72:40:50:87:7a:03:72:8c:
3d:5e:0a:3c:1b:e6:7d:b2:f1:52:1c:89:40:b3:1b:04:25:65:
48:19:de:bd:ec:fb:cd:3d:32:be:fe:1e:09:5f:a1:ea:88:1e:
8b:29:34:e5:9b:f8:7a:f2:e3:b8:1d:08:64:f2:1b:60:25:99:
f2:78:c6:66:bc:30:0d:39:78:97:ab:98:a8:85:c4:53:8e:97:
db:56:f0:77:28:8d:35:c6:f4:23:e4:29:90:48:dc:4b:06:bf:
67:08:e1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:31:40 2025 by rpki-client