Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/zgASGa_ImAN3cqAHkCXfgCzfeVU.roa
File: zgASGa_ImAN3cqAHkCXfgCzfeVU.roa (raw, json)
Hash identifier: b46XTIYgEfz4j0XYoksec8WebNnN5LcpeH4bSXmGjVI=
Subject key identifier: CE:00:12:19:AF:C8:98:03:77:72:A0:07:90:25:DF:80:2C:DF:79:55
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0C42
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/zgASGa_ImAN3cqAHkCXfgCzfeVU.roa
Signing time: Mon 26 Aug 2024 05:23:48 +0000
ROA not before: Mon 26 Aug 2024 05:23:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17420
IP address blocks: 211.73.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3138 (0xc42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Aug 26 05:23:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CE001219AFC898037772A0079025DF802CDF7955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:3c:c7:ab:2a:a0:06:39:73:12:21:09:9f:
fd:80:56:d0:8e:00:f7:7b:75:a2:40:99:19:91:65:
68:4b:95:b7:5e:48:00:0e:b1:42:83:f3:6a:13:b5:
dc:92:43:e9:f5:89:18:b9:92:27:ea:4e:d3:39:50:
04:6b:fd:fa:38:79:63:74:f8:81:2c:f1:d6:57:3d:
13:d2:d5:76:58:4f:ae:03:74:48:df:3d:ec:04:f8:
a3:7c:1e:e2:76:56:a6:fa:a1:c4:2d:a8:0d:aa:cf:
99:9c:e5:21:9f:08:07:74:b2:6a:1f:bb:10:07:41:
73:93:24:b0:55:2a:d0:27:14:30:15:83:12:b1:36:
31:fb:9b:3e:3c:99:6d:85:42:fd:b0:1a:af:c9:25:
08:c6:a5:ca:42:ba:27:84:6a:49:17:f6:35:4b:16:
ad:4b:29:28:10:0e:7d:a4:d5:ff:85:49:61:e5:89:
6f:55:cb:b2:bc:a6:3c:09:f8:9a:8f:a9:b8:79:b1:
2f:f9:eb:15:72:53:3c:0f:7a:19:c1:ef:88:e6:38:
a3:47:18:e7:12:a5:74:6b:15:6e:65:f5:a0:ab:a3:
a7:04:b6:8c:2a:ff:1e:f4:ad:74:c4:4b:b0:60:42:
3f:15:bc:47:fa:5f:5f:99:02:62:1f:4e:84:13:af:
2c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:00:12:19:AF:C8:98:03:77:72:A0:07:90:25:DF:80:2C:DF:79:55
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/zgASGa_ImAN3cqAHkCXfgCzfeVU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.224.0/19
Signature Algorithm: sha256WithRSAEncryption
81:8d:3c:ce:50:1b:b7:fd:64:fe:82:7e:b0:e7:6d:62:ca:54:
de:08:9f:5f:b2:49:ef:fc:79:ec:ad:98:b8:3a:b2:ee:34:fc:
9d:fc:33:b7:62:c4:d8:27:cc:6d:c8:91:b3:f4:3e:19:a4:f8:
dd:83:f3:a4:dd:16:96:68:f5:f2:8f:7b:4b:09:8c:fa:17:97:
2e:d8:d1:9d:09:bf:7a:00:e1:67:a5:c0:6d:fc:de:aa:8c:b9:
75:32:6b:e1:d4:77:ec:12:c1:7b:1c:98:7a:0e:f3:ad:9c:ca:
50:b1:7b:96:53:0a:b1:30:06:7c:8e:0c:38:c3:12:06:ab:bd:
0f:39:53:12:ea:76:94:a5:99:d9:ed:cc:a5:b6:00:10:bd:99:
bf:f9:af:26:10:8f:01:9d:ff:0b:83:5d:85:07:22:58:f2:ce:
29:0f:3b:a0:1f:cd:30:c9:09:26:7f:6b:5a:6a:94:83:3b:63:
b3:04:cd:6d:8b:c2:e0:e6:b2:0a:82:b5:2d:fe:c1:b6:e0:64:
89:d5:28:2d:97:4f:07:86:44:9b:81:09:2c:84:c8:7b:9b:a7:
f3:6a:ec:5d:d9:96:c8:41:b3:b5:89:44:a1:a7:0e:ea:78:eb:
1a:ca:30:52:a6:c2:06:46:58:39:c9:68:88:44:06:b2:d9:86:
3a:de:f4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:30 2025 by rpki-client