Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/qA_CFh9jVboiIvTsN-PIQAwsF2o.roa
File: qA_CFh9jVboiIvTsN-PIQAwsF2o.roa (raw, json)
Hash identifier: voGxd9YSgt/tQ5yzDwQ3W4XX75cZNhbppT+WH2KWsXE=
Subject key identifier: A8:0F:C2:16:1F:63:55:BA:22:22:F4:EC:37:E3:C8:40:0C:2C:17:6A
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0C91
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qA_CFh9jVboiIvTsN-PIQAwsF2o.roa
Signing time: Mon 26 Aug 2024 05:17:12 +0000
ROA not before: Mon 26 Aug 2024 05:17:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 210.241.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3217 (0xc91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Aug 26 05:17:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A80FC2161F6355BA2222F4EC37E3C8400C2C176A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:79:c1:16:96:33:3f:58:08:83:e3:df:ea:
d6:97:25:05:34:80:08:55:52:7e:3e:64:40:4f:58:
95:92:27:09:b9:72:0f:0e:d2:58:02:87:9f:2f:b0:
9c:f3:48:f7:0b:b9:02:1c:b2:c3:f7:e4:e9:48:cc:
98:8c:c4:39:1a:f0:c7:07:b7:28:56:95:66:1b:a0:
62:24:29:59:52:a4:e8:67:d6:be:59:7c:a7:d4:34:
f0:97:7d:54:a6:09:ea:cf:c6:1d:e9:3f:2f:59:43:
86:69:25:cd:46:c2:6c:6a:56:68:97:46:e7:67:3c:
67:e1:0c:32:9c:1e:16:7f:cb:49:75:91:0b:ab:64:
8c:8c:19:de:23:3b:f4:e9:b5:f4:b3:e1:4d:cd:fe:
35:32:b7:eb:d2:25:1d:73:1d:3d:1b:73:63:5c:ef:
e5:a5:0b:3d:a7:3e:3b:7f:64:39:ac:b3:19:00:62:
cc:68:bf:ff:90:c7:00:56:6b:79:35:8d:6c:36:4b:
d3:1b:19:54:69:5b:dd:2f:b7:bb:f1:1f:b6:ef:66:
e3:78:2b:cb:c8:a6:e9:51:ba:85:24:bf:f0:44:ea:
55:8f:59:e0:84:8b:13:27:f0:db:d4:06:04:89:0e:
ce:b3:32:75:a8:e1:0b:12:3b:21:ec:a3:cb:87:90:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0F:C2:16:1F:63:55:BA:22:22:F4:EC:37:E3:C8:40:0C:2C:17:6A
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qA_CFh9jVboiIvTsN-PIQAwsF2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.0.0/17
Signature Algorithm: sha256WithRSAEncryption
49:09:cd:d4:e0:70:d2:c4:ee:21:84:7f:6f:69:e1:5e:98:86:
2c:27:92:20:46:98:09:bf:3b:c2:d0:54:05:3b:0f:87:bd:50:
aa:a1:2c:c0:cd:dc:26:59:21:0f:40:34:96:30:54:02:06:27:
f6:27:bb:04:7f:cd:1e:46:83:2c:20:a7:75:d6:56:96:ca:b7:
17:f5:09:cc:79:85:31:20:0f:07:34:49:c1:30:dc:6e:c5:18:
4c:03:94:8c:83:a5:88:17:5e:e0:a0:a0:72:31:3f:1a:33:8d:
d6:da:06:f5:ef:74:9a:7c:00:5c:94:d9:94:6f:31:ad:30:7b:
54:1f:c9:e0:da:d0:05:11:ea:9d:0a:f0:5b:57:32:e6:36:0f:
f0:13:a6:52:37:cc:80:40:a3:3f:13:50:a0:1c:d5:de:9f:e5:
58:6e:6b:1a:75:35:52:7a:fe:91:ad:6c:6c:21:b6:7b:8d:c4:
1a:92:27:36:a7:9e:99:2e:0d:63:32:34:fa:d5:82:81:02:c9:
ca:97:c0:88:29:2c:08:f2:3b:83:ed:17:fe:50:0d:41:0a:3c:
18:f2:d5:90:70:b1:26:b7:62:9a:da:4f:a9:a4:d6:2b:4a:66:
ee:9c:20:96:bd:c2:e7:a0:0d:2c:a2:78:0a:3a:3c:4d:96:77:
51:87:9a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:31 2025 by rpki-client