Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa
File: IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa (raw, json)
Hash identifier: j1ZdxUeG+Mob1qNIl2lUQwL5DyTOInVnGriUswkCj5Q=
Subject key identifier: 21:F4:FD:A5:D8:66:D6:F3:10:F9:5A:FB:C8:DC:E3:3C:40:E7:21:80
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 32C6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa
Signing time: Mon 26 Aug 2024 05:32:00 +0000
ROA not before: Mon 26 Aug 2024 05:32:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12998 (0x32c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:32:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=21F4FDA5D866D6F310F95AFBC8DCE33C40E72180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:35:ea:23:74:13:d9:e6:9f:6a:54:5e:80:c6:
e5:28:2e:6d:4c:d7:9f:77:a5:3c:6e:1d:5f:7f:1f:
54:04:f0:13:8a:0f:cf:98:ed:c7:00:83:9b:d6:c7:
8d:85:c7:20:dd:0a:d5:ce:0d:57:f3:3f:fd:30:b2:
e7:09:85:84:f2:6e:18:d6:1a:74:62:3a:6d:74:2f:
3d:cc:aa:9f:20:8d:18:b6:39:c4:27:cf:b1:81:46:
16:5f:cb:65:a8:68:89:94:fe:90:4c:c7:84:3d:f5:
da:3b:ad:20:f6:63:af:3c:d7:2a:6e:b4:56:08:e1:
c4:a3:52:ab:77:6b:ed:16:13:bf:6e:fa:44:c3:de:
bb:98:fd:00:d2:8b:d2:75:05:bf:6c:7d:b1:fb:a9:
9f:01:91:84:32:f5:e1:31:c9:24:88:02:eb:c2:68:
e2:02:ad:87:52:4e:c5:5a:aa:c4:22:3a:ae:11:c5:
13:6e:8b:ce:31:7c:fc:28:64:d2:cc:01:ca:70:b9:
ed:a6:03:05:a2:28:16:fc:fe:35:d5:4e:bd:03:87:
15:e5:bf:c5:e0:3f:b8:58:cd:3b:1a:95:8f:c6:9e:
c1:f7:ca:27:2e:04:a7:f0:fe:e3:a9:2e:80:77:ef:
c6:2c:21:ed:dc:ed:22:65:61:3a:b8:52:dd:f1:49:
11:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F4:FD:A5:D8:66:D6:F3:10:F9:5A:FB:C8:DC:E3:3C:40:E7:21:80
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.88.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:76:f4:5e:e2:db:bf:2d:5f:04:d9:98:26:12:32:14:01:89:
ea:e7:be:e6:66:15:3a:ba:cf:c5:fc:c8:d2:64:f5:e8:49:11:
7f:70:ea:d3:f6:ea:37:ee:54:07:f5:2d:71:0e:a9:b5:05:2a:
66:34:de:05:c7:35:fb:63:4e:a2:a2:88:0f:c9:48:6e:8d:58:
c4:61:c4:a9:b7:03:d5:0b:26:b0:b7:8b:83:fe:6b:08:64:cf:
9e:d3:93:68:f5:35:e2:a5:00:2b:6b:05:cf:b0:d0:e0:02:db:
c1:e5:1e:a7:5e:26:f6:26:87:53:1f:fe:90:9f:01:89:22:53:
52:21:8c:a5:99:eb:32:41:95:45:94:9a:b7:19:ed:f3:50:b0:
5c:7e:5e:9a:db:3b:34:a1:40:72:46:7e:64:35:ce:f6:d2:57:
42:fa:a9:d8:db:75:c9:a0:9e:fc:2e:8b:7b:05:16:da:cd:13:
1d:b5:51:de:e3:35:07:db:96:16:13:37:c8:68:62:52:5f:62:
8f:2d:3c:93:78:75:7e:11:24:b1:a2:f2:20:a6:3f:4a:c2:65:
74:a9:af:9c:12:ee:08:64:39:95:62:21:fb:a2:90:84:d3:96:
d6:d5:5a:95:54:bb:6a:87:de:e4:06:5c:ef:32:a4:71:40:df:
f5:1a:63:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:13 2025 by rpki-client