Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa
File: xHoCBhWfrKfryOMM-VHf5BBfkXc.roa (raw, json)
Hash identifier: dwoT/GXDAkv7EryV+bo5Nrpne0F7mzyz62MUQw0tOn0=
Subject key identifier: C4:7A:02:06:15:9F:AC:A7:EB:C8:E3:0C:F9:51:DF:E4:10:5F:91:77
Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Certificate serial: 05
Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa
Signing time: Wed 12 Jun 2024 06:29:41 +0000
ROA not before: Wed 12 Jun 2024 06:29:41 +0000
ROA not after: Wed 14 May 2025 15:30:25 +0000
asID: 152610
IP address blocks: 160.19.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:19:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Validity
Not Before: Jun 12 06:29:41 2024 GMT
Not After : May 14 15:30:25 2025 GMT
Subject: CN=C47A0206159FACA7EBC8E30CF951DFE4105F9177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f7:d0:17:d9:fd:ea:ca:29:fa:4a:4d:b0:6c:
74:39:43:b8:c0:de:8d:d7:71:a2:7e:63:4e:25:25:
fe:6f:c6:f2:b2:1e:db:0c:be:a2:00:f9:51:15:c2:
da:c0:12:c9:0b:8d:ce:25:aa:8f:6a:cb:85:ac:87:
fa:80:d7:df:bd:1b:00:a4:dd:97:ca:eb:8c:3d:19:
f0:e8:94:bd:dc:d9:3e:3f:85:03:50:fd:e2:03:8c:
c5:57:16:d6:ee:59:e4:60:83:e9:88:51:92:30:14:
8a:48:5d:7d:1d:bc:a0:6c:09:fd:32:e2:af:28:4e:
8e:1b:95:f8:b9:a3:1f:e4:4e:33:37:78:8e:d0:3d:
54:f9:d8:d3:00:c2:ae:a6:87:3d:92:92:22:db:77:
62:6e:ee:4e:2b:9b:d2:1f:ef:70:14:f4:a6:01:14:
e6:61:be:e5:00:ec:62:bb:da:5b:64:6a:b3:0b:6a:
b8:94:33:e3:00:84:5c:9e:2f:13:76:2f:95:94:5d:
92:d9:56:0b:2a:95:96:5a:9e:ed:c4:de:02:15:da:
ce:da:79:31:73:24:84:50:85:b7:2d:aa:4b:dc:1d:
0c:47:59:57:6f:1d:6b:2e:7d:cc:06:3d:b9:89:ef:
7e:ff:be:2e:dd:f2:c0:87:28:35:4d:4d:a1:12:33:
34:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:7A:02:06:15:9F:AC:A7:EB:C8:E3:0C:F9:51:DF:E4:10:5F:91:77
X509v3 Authority Key Identifier:
keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.91.0/24
Signature Algorithm: sha256WithRSAEncryption
62:0c:05:2d:5a:fe:80:95:bd:df:94:b9:41:eb:32:db:80:b4:
27:78:24:62:e0:68:df:21:c0:fb:f5:27:71:f5:f7:ee:6b:aa:
ed:c7:15:7b:1a:be:82:c9:5b:1b:a9:24:f5:c9:9f:5d:33:a6:
d8:b3:ae:1e:70:3a:d8:44:7f:d5:8f:16:80:37:7d:56:25:31:
83:46:59:ef:09:f8:67:5a:e9:f1:70:72:4c:5f:4f:08:21:1a:
6a:a8:94:8e:2e:77:c2:61:e8:16:13:86:01:6a:98:d5:0c:4f:
c3:f6:9e:14:50:d7:96:8b:2a:ec:61:dc:11:8d:31:cb:a5:9b:
2c:48:cb:ca:fd:a0:64:63:70:73:9d:1e:a7:1d:4f:c7:19:50:
d7:58:a0:bc:46:b3:da:54:0a:4a:e8:fe:31:89:1a:88:e5:a7:
6e:ca:ed:27:7e:3d:3f:59:fd:5c:e9:1b:aa:c0:f7:d4:6b:7f:
27:fc:be:d9:82:21:27:ae:ab:31:5c:4f:f8:45:98:db:08:71:
96:9d:d1:6b:32:ae:d7:35:21:03:f4:04:6b:91:47:ba:9e:95:
6c:f3:20:02:de:8d:55:06:45:19:45:26:ca:a8:00:b3:6b:14:
63:2f:92:7f:67:26:55:c1:5a:e6:38:a6:cb:22:05:95:b8:97:
21:22:ab:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:38:51 2025 by rpki-client