Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zS0Fj-ZbC46XOKzbcwIwm6RAHp8.roa
File: zS0Fj-ZbC46XOKzbcwIwm6RAHp8.roa (raw, json)
Hash identifier: +IKpopS1es4OXOHjPP2+B2qLs9Cmqtlp2XANYPOwY3k=
Subject key identifier: CD:2D:05:8F:E6:5B:0B:8E:97:38:AC:DB:73:02:30:9B:A4:40:1E:9F
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CDE
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zS0Fj-ZbC46XOKzbcwIwm6RAHp8.roa
Signing time: Mon 26 Aug 2024 05:27:37 +0000
ROA not before: Mon 26 Aug 2024 05:27:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3294 (0xcde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD2D058FE65B0B8E9738ACDB7302309BA4401E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:37:24:3a:9c:3e:78:1d:aa:64:03:7b:d7:
72:35:4b:f9:74:d4:b8:74:81:15:42:33:45:f9:fe:
6c:8d:13:4c:e4:e8:b8:3f:38:50:23:b1:3f:e3:e9:
9b:7a:44:5f:cf:ff:a5:b1:09:25:74:67:5a:d4:df:
a2:61:1e:23:ce:72:72:14:62:bc:5f:f6:71:68:f2:
60:a7:06:71:51:84:95:fc:59:66:5e:af:2d:e9:c7:
6d:30:d0:d3:0a:e1:f1:a9:2c:5e:00:4d:6b:69:cc:
e5:2e:7d:72:52:76:c2:58:66:b1:bf:42:b2:e2:58:
4b:f3:b9:f4:6a:32:4c:0a:c3:40:e5:a1:1a:91:a6:
bf:f0:c5:b3:df:c7:d1:be:e3:22:17:28:00:ee:d3:
63:8f:16:49:95:21:c7:4f:fb:f5:5d:9a:1c:a0:d9:
2f:87:77:60:91:e4:e4:5f:e8:cf:7f:90:82:32:23:
1a:22:af:ee:6b:94:b2:97:7a:ad:78:74:23:06:a0:
43:d3:f2:6a:a6:2e:92:80:cd:9c:05:27:93:1e:9d:
16:fc:dd:c0:e5:71:3c:7d:c9:e5:c5:6f:35:7c:a8:
df:90:25:3a:7f:13:bf:61:2c:26:82:9c:e0:a4:2e:
e5:6c:83:86:27:5f:37:d9:b0:00:f6:27:e3:3d:b2:
62:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2D:05:8F:E6:5B:0B:8E:97:38:AC:DB:73:02:30:9B:A4:40:1E:9F
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zS0Fj-ZbC46XOKzbcwIwm6RAHp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ba:49:ae:e6:5a:e0:0b:e3:ba:e7:3b:44:a6:78:87:2b:aa:a1:
6e:c2:f2:0c:8e:95:9b:df:56:28:8b:70:cc:1d:54:ef:d2:c6:
58:b7:3f:f5:d4:f3:7c:1f:81:c6:2b:65:b1:bf:21:ae:cb:c9:
62:50:df:01:a8:1d:ac:51:46:c2:29:ab:24:29:a5:69:62:65:
f4:eb:f8:0b:ea:48:73:c7:01:1f:1d:d1:c8:75:09:5c:6f:da:
89:53:f7:e8:1d:de:80:2d:60:36:02:40:9e:9f:8b:a1:7e:52:
61:67:eb:68:41:60:ff:07:ef:67:22:ed:e9:f8:c1:e8:a4:d6:
9b:7b:22:19:13:5a:a6:97:88:71:c3:ce:0f:cf:e2:0b:38:78:
39:be:3a:2e:7c:97:65:db:c1:77:73:c3:06:b6:9b:8a:85:af:
1e:1a:89:c9:1b:5b:d4:c7:0a:8f:1f:ce:18:ce:1b:7a:36:31:
07:cb:b5:f9:c0:f0:5d:4c:94:5f:62:de:bf:ee:be:47:3f:35:
68:90:23:53:e1:34:fa:d8:b4:1e:b0:ad:ec:9a:1a:c5:f7:47:
fa:66:4a:01:bb:ec:c8:f7:3f:ed:02:de:22:de:fd:f3:d6:61:
cb:e2:a9:a0:3a:0e:bf:f6:fe:a0:27:c7:9a:f7:5c:87:dd:68:
d1:7d:6f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:09 2025 by rpki-client