Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa
File: mreEGvJxQQodjPrXk5UIcKbNOfk.roa (raw, json)
Hash identifier: 1rS+WZ9JPxENwKTs0vU/Emb2h03oICQ81oPZxu2XGCQ=
Subject key identifier: 9A:B7:84:1A:F2:71:41:0A:1D:8C:FA:D7:93:95:08:70:A6:CD:39:F9
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0C9B
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa
Signing time: Mon 26 Aug 2024 05:12:28 +0000
ROA not before: Mon 26 Aug 2024 05:12:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3227 (0xc9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Aug 26 05:12:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9AB7841AF271410A1D8CFAD793950870A6CD39F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2e:9a:c9:b0:2a:9c:39:ea:45:6d:38:46:00:
40:65:78:e7:9e:ce:e9:1a:31:43:c8:88:3d:f0:9b:
73:8b:e6:14:62:1c:0d:4f:90:ad:6c:1f:63:e1:a8:
af:0a:bf:74:20:a7:4d:fe:d4:86:60:89:5a:ab:92:
de:d8:27:d8:3c:d5:8b:e4:92:cf:c1:2a:e1:52:b3:
b0:70:e0:aa:fa:2d:83:60:49:d0:40:73:dc:f4:86:
61:4b:79:1b:64:e0:94:ca:1f:5d:8a:28:76:62:43:
d7:8a:b4:6b:b9:ef:41:9b:51:fd:44:d4:a5:64:93:
8a:75:b0:02:27:d4:2c:83:f2:b9:58:9a:7e:0b:51:
22:1b:e5:c0:27:d8:8a:f3:0a:8d:58:95:9b:3c:6e:
94:b3:35:b7:28:98:ab:e2:ab:fc:d2:40:2e:15:af:
a9:54:8a:0d:de:85:41:96:39:12:5d:1f:1c:f7:bd:
93:4f:40:b6:61:cc:fa:29:7c:88:b7:ad:cb:dd:c8:
ac:9c:d6:39:a7:58:09:24:ff:4b:c8:52:1b:c2:6d:
15:21:18:8c:23:1c:d0:fb:fd:26:6b:c5:57:e7:ba:
b5:c3:43:d7:7f:d9:45:f1:bb:2f:1e:4a:0c:63:50:
99:90:89:a0:12:93:4b:57:6c:6e:dc:2a:cd:7a:1e:
18:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B7:84:1A:F2:71:41:0A:1D:8C:FA:D7:93:95:08:70:A6:CD:39:F9
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:eb:f8:4e:d4:b3:79:fb:84:7a:d5:dc:23:13:a3:c8:66:47:
8f:7e:d1:3d:c4:b3:74:c1:1d:1f:fd:b5:1d:3a:94:1c:41:02:
5e:a2:d8:c9:be:ef:45:d3:f7:c3:f9:d8:ef:15:d2:eb:82:b4:
ef:0d:d4:dc:70:be:9e:d5:67:e5:d9:5b:f9:72:e2:45:38:cd:
42:5e:e2:69:ea:8d:47:f6:10:58:3c:59:f8:92:8e:bb:9c:88:
4a:d8:00:58:65:1b:0d:0d:00:1e:37:5a:24:8c:57:f1:99:5f:
e4:89:80:e6:c4:e9:71:7e:ef:91:39:68:76:c4:9c:e7:7a:4b:
f9:83:66:43:51:58:b0:83:e2:ad:22:5a:5d:7c:96:c6:f0:63:
2f:85:7d:70:81:b4:4b:19:da:26:8a:2d:9b:42:03:54:f7:e6:
1c:ca:85:76:bd:13:4f:c3:6c:6b:11:9f:34:d5:4a:95:bb:3b:
8f:52:a0:41:3b:f5:00:cf:6c:10:28:84:9e:c2:1b:5d:7d:66:
86:cd:d3:ee:09:60:aa:b4:53:3a:dd:4f:c9:61:ed:46:a0:f7:
7e:ab:e3:4e:03:97:11:19:b9:ec:af:0c:d3:e5:87:5b:10:70:
a3:ad:f4:a0:67:7e:82:95:fb:ac:ff:eb:14:12:0d:bc:51:4c:
9c:4d:83:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:48:18 2025 by rpki-client