Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/_k6k7Y4K14J5jFZeaJl04vy-W0Y.roa
File: _k6k7Y4K14J5jFZeaJl04vy-W0Y.roa (raw, json)
Hash identifier: EcaZZ8zME10q3JzVBf+ZQ/0PPfH+EJJABwPVjlU4o1E=
Subject key identifier: FE:4E:A4:ED:8E:0A:D7:82:79:8C:56:5E:68:99:74:E2:FC:BE:5B:46
Certificate issuer: /CN=625D845D7953519D719EBDCC92C17632177022CF
Certificate serial: 09
Authority key identifier: 62:5D:84:5D:79:53:51:9D:71:9E:BD:CC:92:C1:76:32:17:70:22:CF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/_k6k7Y4K14J5jFZeaJl04vy-W0Y.roa
Signing time: Wed 15 Jan 2025 09:02:35 +0000
ROA not before: Wed 15 Jan 2025 09:02:35 +0000
ROA not after: Fri 09 Jan 2026 15:30:37 +0000
asID: 152620
IP address blocks: 161.248.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:25:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=625D845D7953519D719EBDCC92C17632177022CF
Validity
Not Before: Jan 15 09:02:35 2025 GMT
Not After : Jan 9 15:30:37 2026 GMT
Subject: CN=FE4EA4ED8E0AD782798C565E689974E2FCBE5B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:67:01:61:9d:fb:a1:63:42:94:6e:f2:ce:86:
7c:0d:dd:e4:85:f2:eb:62:35:25:da:57:9e:e9:6f:
e5:fc:af:c5:94:58:8b:ea:07:47:e1:5b:de:95:6e:
02:14:75:1f:08:23:84:9e:16:f0:f8:73:db:8a:86:
68:84:fd:c4:5a:1a:c8:72:39:1f:b3:1c:5d:2d:28:
32:e2:c9:bf:a7:b1:8e:be:0e:86:56:5c:ac:c6:3f:
f8:a3:21:5e:79:86:5a:c0:0d:4a:3a:df:3e:ea:f6:
36:ad:9c:26:3b:de:64:9a:34:64:85:b9:05:62:cb:
f2:60:5b:74:95:f9:84:79:f9:e3:a0:3b:76:66:f3:
16:91:8a:a7:fc:56:53:60:d8:eb:7f:8f:66:e6:1c:
a1:79:27:f1:29:76:a4:f7:9b:f2:99:a9:01:5d:f4:
cb:6f:81:65:26:9b:b4:fb:93:d8:49:d3:e3:d6:87:
4d:ad:12:6f:2b:5c:00:f9:72:d0:25:3d:d7:31:09:
31:0d:78:c6:6e:dc:69:cf:73:8a:27:ce:e1:75:53:
58:23:98:65:36:f8:6e:c1:09:24:0a:c9:33:3b:8f:
d0:bd:4c:2b:5d:b4:6a:d4:76:be:fa:be:1e:c5:82:
ef:4d:59:34:52:ff:ed:06:c2:40:cc:e1:5a:a7:a2:
92:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4E:A4:ED:8E:0A:D7:82:79:8C:56:5E:68:99:74:E2:FC:BE:5B:46
X509v3 Authority Key Identifier:
keyid:62:5D:84:5D:79:53:51:9D:71:9E:BD:CC:92:C1:76:32:17:70:22:CF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/_k6k7Y4K14J5jFZeaJl04vy-W0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.134.0/23
Signature Algorithm: sha256WithRSAEncryption
73:86:89:91:36:f5:b5:4a:7f:73:9d:63:e7:e8:11:d6:85:bb:
bf:80:28:6e:d8:36:52:db:dc:5b:5d:ea:e6:28:05:91:c8:0c:
07:03:cd:cf:d4:18:9a:69:19:44:91:d8:7f:88:f6:70:d3:77:
f6:95:29:10:68:aa:4e:87:02:69:51:33:48:ea:90:78:f1:ba:
c3:b7:c0:3c:62:4f:d0:54:13:7e:24:80:6e:39:3b:3a:4d:f8:
9d:b2:08:a6:84:f7:06:1e:34:53:c5:d0:de:36:88:a9:a1:9e:
0e:bc:52:6b:0b:f3:18:3e:52:03:ca:e7:37:ee:d1:54:af:d3:
4e:b5:8f:9f:cb:77:57:4f:16:fe:cc:b7:9e:66:0d:d0:e0:dc:
86:c5:36:15:6a:ad:dc:bc:b7:25:2b:a4:13:08:fb:3e:f6:3e:
13:e2:97:f3:85:ca:dd:37:16:7f:fc:16:93:79:9f:16:c9:29:
f8:62:c5:13:47:0d:93:04:05:fb:d3:8a:c2:77:e7:51:65:09:
87:0a:f8:c0:07:2d:c6:df:e5:b3:a4:cf:ea:95:5d:e6:45:39:
5c:e3:3f:60:65:ad:0d:c9:8e:11:ec:80:d7:75:0c:47:bc:ca:
2f:57:b4:58:f4:1b:41:89:6f:60:a4:c1:d5:0e:91:5a:93:e3:
d8:a6:56:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:27 2025 by rpki-client