Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ig4xiRB08mFJzI_BJ_mOVZDfvLE.roa
File: ig4xiRB08mFJzI_BJ_mOVZDfvLE.roa (raw, json)
Hash identifier: 3xiWsWIRWFQRA5vksY5nVhxJxcm0D8m19FggkGdoIUU=
Subject key identifier: 8A:0E:31:89:10:74:F2:61:49:CC:8F:C1:27:F9:8E:55:90:DF:BC:B1
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CDA
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ig4xiRB08mFJzI_BJ_mOVZDfvLE.roa
Signing time: Mon 26 Aug 2024 05:27:37 +0000
ROA not before: Mon 26 Aug 2024 05:27:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 116.241.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3290 (0xcda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8A0E31891074F26149CC8FC127F98E5590DFBCB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:7d:a2:c3:0a:d5:8a:b1:ea:71:9b:e3:69:
9e:8c:48:00:c6:0e:c3:7a:93:5e:22:3f:68:52:b9:
08:c1:08:2e:72:27:54:33:48:95:8d:d3:7e:d5:2a:
52:27:51:3a:6d:8c:e7:6d:a1:64:e4:f7:8e:61:d1:
3d:fb:7c:00:9b:5d:34:46:0d:28:31:7d:92:6f:5d:
d2:f7:e8:6c:18:77:f7:8c:c8:13:25:d2:30:d9:76:
41:65:78:81:d6:48:e3:48:67:9f:29:42:49:7d:62:
c6:24:2f:38:c4:71:21:ba:a9:7d:c0:6c:ea:75:f8:
b3:d4:d6:35:6d:a6:d3:b8:73:9c:f4:aa:67:83:b9:
eb:02:2d:fe:78:71:73:80:de:20:1e:65:db:b3:35:
c3:6d:29:82:85:df:45:02:8c:fa:dd:83:22:54:3f:
a4:13:88:cd:a2:9a:99:e8:f4:0c:48:fc:58:50:4d:
90:57:8b:e9:dc:17:6b:cd:fc:6d:0a:43:86:df:76:
79:b9:ee:e7:32:4e:5a:d0:2a:e4:e1:d8:ab:20:c7:
65:23:f7:f8:63:cc:5d:19:07:56:f2:91:39:40:94:
61:2a:10:34:29:32:f0:b1:5c:8d:02:72:4d:3e:6a:
10:17:b1:1c:40:c4:97:9a:40:01:d8:d9:2a:5a:b0:
1c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0E:31:89:10:74:F2:61:49:CC:8F:C1:27:F9:8E:55:90:DF:BC:B1
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ig4xiRB08mFJzI_BJ_mOVZDfvLE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.241.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:37:04:8a:ce:84:49:42:6c:3d:f3:fe:8a:10:09:3f:b3:20:
0f:19:d7:d6:07:2d:9f:3f:22:c7:c9:ac:aa:84:75:4f:08:ac:
27:36:86:97:58:2d:f7:63:33:76:02:9f:dd:19:c7:14:1f:d8:
75:de:c5:77:33:b6:ec:91:05:e3:1e:ef:2c:7c:79:d3:80:03:
a0:32:3f:90:8d:99:0c:54:c9:ff:4c:cf:33:d7:56:24:d0:f5:
b2:86:c6:93:48:b0:41:e1:7e:2c:e6:24:f9:78:3f:69:23:a9:
8d:e3:c0:bd:66:4a:a5:cd:f0:5e:d2:70:4e:89:63:96:e7:75:
53:37:1a:04:86:2d:a9:1d:e5:30:a5:3d:96:69:b2:83:04:4a:
00:89:bf:b3:68:b0:c9:63:cd:72:de:21:dc:ac:75:bb:d6:6c:
32:a3:e0:b9:36:fa:25:d4:0a:9a:d6:b5:a7:61:22:24:e2:17:
dd:7b:de:b8:24:32:f0:38:60:8d:79:9b:ee:72:31:71:c8:3a:
e4:8f:65:db:68:87:ca:a3:93:e8:81:63:1e:b5:eb:2a:d6:97:
bb:25:ab:5f:39:39:6d:5d:bc:ea:0b:54:98:bd:07:2d:40:eb:
6a:58:4a:24:fe:6b:50:e8:1f:2d:f6:68:c4:6e:35:17:23:ab:
ac:d5:72:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:56 2025 by rpki-client