Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ta84Rgw7xkIf9BL9jQjV59WZXc0.roa
File: ta84Rgw7xkIf9BL9jQjV59WZXc0.roa (raw, json)
Hash identifier: nLhJ7MIY0SzWxsplXai+Z2/HTv8Y2F1W+gcEq/W3iRw=
Subject key identifier: B5:AF:38:46:0C:3B:C6:42:1F:F4:12:FD:8D:08:D5:E7:D5:99:5D:CD
Certificate issuer: /CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Certificate serial: 07
Authority key identifier: BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ta84Rgw7xkIf9BL9jQjV59WZXc0.roa
Signing time: Thu 28 Nov 2024 10:16:25 +0000
ROA not before: Thu 28 Nov 2024 10:16:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2.58.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Validity
Not Before: Nov 28 10:16:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B5AF38460C3BC6421FF412FD8D08D5E7D5995DCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:96:7f:b1:6b:6d:fd:6f:8e:01:0e:83:7e:
b7:65:93:98:6a:d0:d2:32:d5:ef:75:b2:2e:18:16:
d5:06:83:ea:29:93:69:91:a9:91:ef:a3:02:6d:3e:
87:91:4e:7b:d5:27:24:af:26:5d:f2:4b:ff:d8:ec:
e3:af:47:e4:b5:8c:1f:9e:64:43:9a:85:90:cd:b5:
0f:cc:6f:d6:a7:40:d5:6d:ef:20:ab:b4:cb:4b:9a:
54:3a:03:56:bd:18:66:bd:f1:bd:30:85:dc:9f:ed:
08:b0:26:9b:c5:69:c9:ae:96:37:ef:da:21:b9:ac:
b0:27:96:d3:a0:d4:fa:b5:43:04:76:3f:09:6a:10:
1d:80:d0:30:09:e9:a5:95:78:36:f0:29:7e:8f:79:
a8:bd:f0:ce:1b:18:0b:41:71:7b:38:11:85:79:79:
94:9b:04:de:b4:79:0d:df:cf:00:fd:91:df:52:09:
63:6b:43:b5:a5:48:f5:c4:27:67:30:ab:7d:e3:60:
c9:f3:36:17:26:fd:e8:6b:df:fe:5d:9e:46:df:e4:
d8:80:20:b0:3b:dd:99:88:96:2e:ff:8a:77:a9:52:
47:f2:14:97:18:b0:b7:9a:30:a9:fb:88:82:c3:2a:
bb:93:87:3a:7f:cf:8a:f7:15:f2:40:75:cd:a8:53:
e3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AF:38:46:0C:3B:C6:42:1F:F4:12:FD:8D:08:D5:E7:D5:99:5D:CD
X509v3 Authority Key Identifier:
keyid:BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ta84Rgw7xkIf9BL9jQjV59WZXc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
2.58.242.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b6:36:11:56:12:57:c6:4a:6a:37:d4:b4:bf:ad:d3:93:f8:
4d:fe:6e:4f:b4:0f:81:63:9a:1a:3c:26:ef:ef:46:ee:8d:26:
bd:69:a8:0b:1e:7f:f4:88:42:b4:77:4a:be:18:00:af:9b:27:
ec:d5:7d:63:3f:59:ce:05:ed:58:7b:dc:97:f7:38:57:ca:e6:
39:cf:4a:e7:fd:3c:e6:68:68:75:01:ba:f2:95:31:c6:f0:ba:
83:92:0b:f8:00:ab:12:ba:32:2b:ec:fa:cb:91:21:46:88:be:
a6:7e:50:6d:e2:7b:19:42:47:00:e9:c9:1a:be:7c:09:0c:83:
99:92:10:0b:26:a2:20:4e:5e:c1:9a:16:b4:84:ff:7b:59:16:
74:e3:f5:fa:a0:98:52:04:b8:f6:9f:66:4f:1c:ef:65:b1:5a:
19:20:32:e1:36:dd:d8:f5:43:31:93:a2:cb:7d:51:0b:15:1a:
3f:69:3b:2d:b4:41:e3:33:cf:00:84:17:d7:41:ea:38:f9:02:
fa:fd:c6:5e:54:f9:6d:a5:80:33:9e:9c:9b:b6:59:f2:ad:37:
58:de:b0:37:ad:95:dd:cb:f3:a5:4c:39:a9:c7:f2:0d:2e:6d:
bb:23:7a:c4:cd:07:79:56:28:a5:a9:d6:05:0c:56:76:d4:b2:
93:6f:d0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:56:53 2025 by rpki-client