Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa
File: NRqN0ExlaP_lcUOCWWXghbB40Sg.roa (raw, json)
Hash identifier: LWvFqwJCLHZNMlYpr4Ix5jFc+Sq7/lX9Ngs1r8Wjssk=
Subject key identifier: 35:1A:8D:D0:4C:65:68:FF:E5:71:43:82:59:65:E0:85:B0:78:D1:28
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 32AE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa
Signing time: Mon 26 Aug 2024 05:31:54 +0000
ROA not before: Mon 26 Aug 2024 05:31:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.219.192/26 maxlen: 26
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12974 (0x32ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:31:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=351A8DD04C6568FFE57143825965E085B078D128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6a:c6:68:5b:30:2e:5c:8d:c6:6a:00:11:75:
af:0c:51:7c:79:84:c7:86:e6:3b:5f:e2:23:af:70:
49:ff:a9:cc:2c:68:d0:e5:79:97:7d:a3:30:10:ce:
ac:40:44:76:a0:e9:66:f3:c9:8c:19:4e:75:af:13:
32:9d:f9:14:ae:3e:ad:c4:2e:11:8f:db:4a:a2:ff:
b7:05:86:8c:6d:b0:9d:e4:49:75:aa:38:a1:50:f7:
dd:cf:13:2c:f5:21:ad:60:db:89:fb:2c:6b:66:ac:
70:18:94:fd:2e:4c:d6:a2:c5:53:0f:24:29:50:16:
b1:1b:35:9d:ea:a5:c1:48:67:f7:ff:71:63:23:e1:
d9:c7:0b:4e:0c:7c:40:ce:63:0b:92:60:6a:8d:fe:
9d:00:91:74:66:3e:a4:02:3c:d9:1d:01:8d:01:6e:
0c:e1:29:91:b1:55:7e:20:87:a1:cf:42:61:bf:80:
52:1d:95:b2:24:32:b8:bd:36:f5:48:fe:46:c0:ee:
16:41:38:2f:b8:d3:3b:e0:b2:8d:c2:f2:db:e2:e0:
ae:fc:37:d1:ac:24:08:22:5c:49:f0:83:20:f1:f4:
96:e5:ee:f0:df:d0:d7:78:3e:5c:15:97:60:3a:88:
35:12:e3:eb:9e:a2:3a:5d:2e:c9:6c:47:7a:dc:ac:
a5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1A:8D:D0:4C:65:68:FF:E5:71:43:82:59:65:E0:85:B0:78:D1:28
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.219.192/26
Signature Algorithm: sha256WithRSAEncryption
a9:71:77:69:c8:38:87:8f:02:64:d6:f1:e0:bc:ea:18:97:60:
c8:5e:a3:21:68:ae:db:63:61:0f:90:d2:54:34:9a:e2:46:06:
60:be:52:da:a4:fb:14:a5:03:2f:21:bc:e0:ab:eb:ec:53:4b:
0e:30:58:3a:62:a0:08:f8:b4:9a:b5:e2:39:60:00:9d:8a:1a:
e7:c0:bb:16:fc:cd:aa:0c:ac:19:bb:e8:ac:05:cb:3d:29:f7:
f1:76:c7:a2:be:d6:07:b2:44:be:dc:8c:fe:e7:79:5c:f3:8f:
01:57:a5:28:95:fe:d3:96:7e:86:0b:bd:99:65:d8:77:92:50:
dd:c2:ca:d7:41:8f:52:18:8c:0d:6a:98:0a:83:3f:73:71:c4:
8d:f5:ef:55:84:62:47:df:8a:ed:d2:50:36:41:5a:f1:71:c1:
b0:29:b8:0f:f7:bc:99:8d:1e:ff:47:68:66:e2:c5:c4:5a:c7:
d4:8d:ba:97:7c:d4:21:f5:52:75:b0:6c:09:a3:d4:38:df:5a:
cc:c5:49:6f:28:e7:d7:65:3f:27:cc:13:09:57:6d:86:0d:39:
49:96:fe:5c:2a:ed:54:97:80:b2:e3:aa:5d:7f:1d:d2:ca:8e:
4c:55:da:b0:84:50:bc:b8:47:41:b7:93:d1:95:e5:c1:a3:bb:
15:60:cd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:36 2025 by rpki-client