Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KJT8bImw_A-7ltfk04GUNvifKrQ.roa
File: KJT8bImw_A-7ltfk04GUNvifKrQ.roa (raw, json)
Hash identifier: q1C9aSTeq4ZKc1k+L9AVU4BPp9cnXxop3Gd46430kgo=
Subject key identifier: 28:94:FC:6C:89:B0:FC:0F:BB:96:D7:E4:D3:81:94:36:F8:9F:2A:B4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3292
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KJT8bImw_A-7ltfk04GUNvifKrQ.roa
Signing time: Mon 26 Aug 2024 05:31:47 +0000
ROA not before: Mon 26 Aug 2024 05:31:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 118.232.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12946 (0x3292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:31:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2894FC6C89B0FC0FBB96D7E4D3819436F89F2AB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:b1:c8:7e:66:b8:cf:68:f6:52:58:db:64:
69:ba:dd:23:f4:df:b8:65:b8:66:6b:84:4f:63:ec:
80:88:76:ed:b9:8a:da:7f:22:75:d4:2f:c7:ed:e1:
cf:7d:7e:cd:a6:3c:57:21:af:37:f4:dc:f0:2f:16:
1c:b4:b8:8a:d7:13:5e:32:25:dd:54:3e:d7:dc:6b:
52:90:72:72:a8:7a:1c:a3:c0:35:1a:7f:8d:77:43:
ba:9a:13:55:51:08:26:44:94:a9:a4:ee:67:c1:5f:
8e:d5:e3:ae:91:62:e0:a3:a9:5e:cc:2a:cc:c3:e5:
f6:4d:88:4d:f2:ea:76:61:57:81:5a:70:5a:a1:1f:
37:c8:a7:3e:60:a5:ca:71:78:91:82:62:4e:4a:e6:
0f:ec:f1:a0:8a:7e:5c:a7:a5:84:07:93:96:63:ca:
16:4b:06:89:36:a4:73:1e:16:a9:f5:e6:59:57:bc:
1e:17:75:09:56:ab:7d:b0:1c:59:4b:06:cd:8f:c5:
e9:eb:f6:d4:85:f1:44:15:af:e5:2c:cc:6d:4a:40:
29:21:f8:0e:ea:24:d8:04:22:48:ca:55:f1:ec:8e:
b5:25:c3:aa:fd:5e:27:ab:19:54:71:cc:62:55:7d:
33:02:26:51:7c:6e:81:85:b6:fc:74:07:f2:98:28:
81:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:94:FC:6C:89:B0:FC:0F:BB:96:D7:E4:D3:81:94:36:F8:9F:2A:B4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KJT8bImw_A-7ltfk04GUNvifKrQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.244.0/22
Signature Algorithm: sha256WithRSAEncryption
86:98:da:54:1c:1a:6f:dc:6f:41:77:a1:7d:82:57:41:2b:19:
ea:38:2f:10:30:f7:e2:de:ab:13:2c:77:ca:4c:11:a5:e1:d4:
27:79:c9:a2:fa:77:b0:94:97:bb:10:15:4b:34:7f:41:9a:60:
10:22:4b:73:b6:51:72:22:aa:4b:73:8d:85:a7:fc:0b:cf:ae:
96:93:61:86:8d:e5:cf:41:ab:f1:3a:d7:30:d4:8b:e3:20:bf:
e1:3d:ba:ac:c2:1b:41:2b:ed:79:b3:e4:c7:47:bb:03:f7:6c:
d9:71:4f:3b:22:39:61:d0:14:de:bd:77:6e:cd:1d:b4:cb:f7:
6d:8f:d2:4e:ee:fb:e0:ed:92:53:c8:41:61:9a:78:e6:df:3a:
07:fd:d6:4d:de:c0:63:2c:f3:54:11:92:cc:04:3c:ae:47:dc:
31:cc:71:56:ad:74:ed:53:2e:4c:6e:0f:c9:38:30:8f:84:d4:
04:74:7d:8a:06:2b:70:79:1f:34:41:34:53:67:c3:44:90:5f:
0d:d8:dc:4a:d5:fe:5e:58:b8:6a:aa:fd:2b:d7:06:01:7f:77:
b7:65:78:44:8d:35:76:27:18:eb:10:41:b6:f4:ed:84:33:37:
13:5b:77:f0:32:8f:86:2e:fc:dd:a6:3d:6c:74:c2:9f:02:0f:
ab:41:08:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:21 2025 by rpki-client