Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa
File: 26EEmpxufMz5u91YwWp_S5QTi3Y.roa (raw, json)
Hash identifier: G/NkZE9cQhpO3zIfMqX2SGnreghA1JVqOJSlfDb3FEs=
Subject key identifier: DB:A1:04:9A:9C:6E:7C:CC:F9:BB:DD:58:C1:6A:7F:4B:94:13:8B:76
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 31AF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa
Signing time: Mon 26 Aug 2024 05:30:49 +0000
ROA not before: Mon 26 Aug 2024 05:30:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.192.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12719 (0x31af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:30:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DBA1049A9C6E7CCCF9BBDD58C16A7F4B94138B76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:63:0a:80:1e:1d:ce:d5:07:47:32:f8:da:7f:
2e:77:80:60:9e:01:ac:4f:d5:7d:a1:48:10:7e:b6:
59:6a:f3:8c:8a:43:60:0e:f6:1a:3e:60:c1:ea:38:
2b:78:e4:18:91:bc:08:13:46:8b:f2:69:44:ee:6f:
74:61:c0:2c:6c:f2:24:b2:f4:1c:a8:ac:65:47:f5:
75:b1:1b:c1:37:08:31:74:a5:c4:6c:42:88:d4:e5:
5a:3e:78:91:0d:cf:a1:f8:6f:0e:67:21:a4:d1:62:
76:39:e0:a3:38:a5:69:3d:2f:b2:70:99:0c:ea:4a:
9c:86:17:25:f5:8a:36:59:61:68:4d:cd:48:23:59:
62:fd:58:12:da:d5:5a:59:ff:fc:49:44:91:b4:49:
6c:23:f9:0c:49:55:c8:eb:eb:c8:c6:bd:93:83:28:
19:e4:20:a3:1e:77:96:45:64:15:d8:09:7c:33:5f:
bf:bc:2a:8d:9e:a2:6d:45:cf:90:d3:db:e1:a4:59:
e2:cc:70:5e:f7:23:b3:17:d9:99:ed:21:7f:61:ac:
5d:23:d8:db:bd:d8:6d:fb:f9:5f:f6:d8:44:54:26:
3b:d9:96:f7:2a:63:4f:38:4e:a4:63:aa:3e:ca:6d:
c0:74:4f:f9:4d:b6:5e:18:7e:c1:9d:18:76:df:7c:
76:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A1:04:9A:9C:6E:7C:CC:F9:BB:DD:58:C1:6A:7F:4B:94:13:8B:76
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.232.0/21
Signature Algorithm: sha256WithRSAEncryption
68:cc:27:6b:c0:8a:72:23:0c:cd:4d:9a:c3:c3:dc:c4:00:dd:
14:2c:9c:3d:cf:3e:70:7b:4b:d0:fc:30:03:73:6c:a9:40:9a:
04:77:cb:9c:3e:52:4d:9d:2e:bd:f6:d5:a2:7b:86:53:9b:62:
06:9e:06:2f:94:33:fe:14:f3:86:78:44:1b:30:11:0d:aa:bf:
8e:93:13:8a:f4:c3:0a:5f:bd:96:69:89:ca:bd:e0:10:ff:5d:
e6:45:3c:24:70:37:1a:c8:b1:b9:fe:ff:74:7c:39:3e:64:58:
b7:b0:f5:0e:e4:c1:24:87:84:a7:c4:fa:5d:4d:1a:e4:be:80:
fb:05:7e:a5:52:34:bf:ad:b7:57:41:34:d7:84:7b:59:c5:45:
57:55:d0:fb:01:6e:d7:f3:62:bc:f1:ec:d3:af:65:93:29:2f:
86:f1:7f:b8:08:60:0e:27:81:d4:05:b7:ca:bd:2b:28:23:fd:
8f:96:05:4e:87:46:7e:5f:25:23:9f:ea:3f:a2:8d:1d:bd:0b:
75:74:40:b4:da:2a:e8:57:d4:1a:6f:0d:59:6f:85:a0:bc:e5:
5d:af:ad:18:25:2d:09:71:c2:2e:55:07:cc:20:f6:e8:07:ea:
ea:a5:d8:9f:f1:26:51:32:e9:62:13:e9:47:f9:4a:eb:eb:15:
de:c6:13:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:12 2025 by rpki-client