Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/t8yYmcUmPU4GgSI3xsZS9aQ-xcY.roa
File: t8yYmcUmPU4GgSI3xsZS9aQ-xcY.roa (raw, json)
Hash identifier: C0NBQYTpbroZWrQ/e9LDjpU76m4laUv9WngOCDGpBn0=
Subject key identifier: B7:CC:98:99:C5:26:3D:4E:06:81:22:37:C6:C6:52:F5:A4:3E:C5:C6
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0C41
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/t8yYmcUmPU4GgSI3xsZS9aQ-xcY.roa
Signing time: Mon 26 Aug 2024 05:23:48 +0000
ROA not before: Mon 26 Aug 2024 05:23:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17420
IP address blocks: 210.241.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3137 (0xc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Aug 26 05:23:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B7CC9899C5263D4E06812237C6C652F5A43EC5C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:02:69:61:a7:ff:29:45:d1:63:68:fa:ab:3d:
26:a6:88:a5:1b:45:88:f0:b5:52:c6:b8:8c:f6:cb:
b9:55:56:c2:a1:70:85:41:a7:f2:5c:78:38:00:ad:
c0:9f:3b:73:1f:88:a8:f9:41:29:c3:7b:ef:72:a6:
74:31:aa:7b:99:93:e3:c7:1b:a1:4c:52:84:ab:6a:
48:27:37:e1:64:ac:13:5e:2f:b8:00:87:5e:bc:ae:
9c:28:f0:b1:13:ef:82:d0:fc:d7:81:4e:c5:be:01:
c6:bb:a9:0d:8f:3d:22:43:d6:1c:f8:91:a6:2f:13:
3c:4a:e2:33:12:26:b1:98:dd:50:22:5d:58:57:ac:
e1:d1:ad:ea:5b:09:39:1e:c6:e7:eb:73:6b:04:da:
43:c0:c6:a4:6c:df:7b:3d:03:ad:c2:5f:51:75:44:
db:56:8f:96:51:e3:ee:c5:f7:96:2e:b0:96:2b:12:
c1:cf:1f:ee:4d:27:31:7b:fe:bd:82:05:fb:e4:18:
df:f5:b6:68:db:f0:21:f2:16:e9:23:38:0c:78:f7:
19:50:31:68:be:dc:40:16:01:d7:6b:45:0e:9a:af:
7f:2f:f1:a2:87:0f:07:aa:ef:05:a6:40:11:47:9d:
7c:0c:25:f8:55:c0:6a:f2:3e:5b:02:d9:43:27:98:
1f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CC:98:99:C5:26:3D:4E:06:81:22:37:C6:C6:52:F5:A4:3E:C5:C6
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/t8yYmcUmPU4GgSI3xsZS9aQ-xcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1e:0d:47:55:0e:d1:db:f9:d1:d6:4f:9b:63:16:51:10:e0:e9:
0b:9b:38:a0:4c:36:ac:5b:86:9c:03:fa:65:8c:ed:5f:e3:20:
46:a3:61:bd:d9:07:9a:0f:e2:b6:ec:37:ff:43:66:47:4b:ec:
e7:0e:cb:f8:b6:06:7a:87:ab:25:b0:d5:a6:74:a2:c7:bf:fe:
0c:33:14:d0:62:0b:6e:36:f9:80:f5:d4:dc:0b:c2:5d:8d:57:
34:a2:8c:df:7f:e9:8f:f1:f3:24:ed:c7:1c:98:f6:12:ae:52:
7d:a7:09:20:31:e9:e4:9c:fa:6a:10:9e:f9:58:0b:89:f2:af:
92:5f:3d:58:e2:45:65:c8:c0:de:77:f4:ac:1f:53:0b:71:e8:
8a:5e:33:ea:c2:07:6b:a1:f4:9d:02:44:13:74:7b:29:b8:a5:
18:51:ca:a2:6d:26:27:a7:30:c5:5f:0f:e6:62:a8:3c:cd:37:
34:76:ce:39:a4:df:36:45:22:2d:62:70:c0:17:5f:a6:8c:86:
bc:d0:f3:db:09:b7:2e:73:e8:31:c1:6f:0d:57:bd:79:34:b7:
c4:00:1f:f8:5d:52:f0:c8:31:93:7a:f9:d0:ac:6a:eb:ed:32:
b7:b3:a5:bd:0a:da:3c:26:1a:c2:35:20:de:da:3c:c0:61:c7:
40:0f:b1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:23 2025 by rpki-client