Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa
File: P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa (raw, json)
Hash identifier: S5JQHQE3BVhP2LYK36I8OJJW37EkWsnxzhMKIsSfb38=
Subject key identifier: 3F:80:97:B0:9D:E4:A0:DF:15:C1:5B:88:EB:16:D2:77:86:FF:66:38
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 31C4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa
Signing time: Mon 26 Aug 2024 05:30:55 +0000
ROA not before: Mon 26 Aug 2024 05:30:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.0.0/15 maxlen: 16
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:53:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12740 (0x31c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:30:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3F8097B09DE4A0DF15C15B88EB16D27786FF6638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:e4:df:3e:29:c4:7d:fe:89:28:5a:f7:08:
b2:17:86:9d:00:f8:fa:a5:f4:dc:51:59:1c:d3:e2:
cd:da:a7:af:f5:4e:19:e9:33:26:dd:73:6c:75:a7:
c6:26:0a:3c:b5:16:54:4b:cf:6a:ff:32:af:a8:3e:
04:0c:d3:ff:08:f7:ff:d4:c7:99:6c:9c:9f:ff:2d:
62:0d:c7:34:a4:e0:57:d2:4e:4d:de:8e:e3:91:c7:
0e:77:df:44:bd:83:0b:1d:37:29:bd:b6:cf:02:14:
c8:e8:a3:5e:25:26:99:41:5e:1b:36:d4:57:60:85:
0f:67:5b:8f:3e:c7:6b:6e:a8:ab:c8:34:55:5e:10:
ba:2f:13:f1:8a:93:8e:79:d4:77:5f:07:54:bb:c2:
31:de:2f:2f:0d:7b:61:4e:b9:de:ed:52:51:43:c2:
a5:60:7c:e2:5c:b7:a7:d0:02:f6:82:ff:4c:cd:fd:
38:8e:6b:e2:31:24:52:6c:fc:20:ca:99:71:e4:66:
c1:0e:11:19:df:c3:bc:00:1f:80:0a:7f:d4:11:a8:
d0:78:e4:ce:4c:77:b6:fb:2d:96:e6:b9:42:72:3c:
7c:56:f6:2f:6a:2d:d5:d7:8d:7f:09:46:7e:3f:30:
24:d8:06:3c:e8:6d:b7:17:49:fa:5f:e3:54:7c:20:
1c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:80:97:B0:9D:E4:A0:DF:15:C1:5B:88:EB:16:D2:77:86:FF:66:38
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
05:93:6a:14:8f:36:88:76:ee:dc:8f:61:85:7a:fd:28:ef:b5:
f2:57:76:f8:a0:e0:ee:78:d9:52:78:6d:54:b4:2b:a8:a9:f1:
1f:6e:de:a6:43:f3:50:e9:08:27:60:08:9e:60:79:b6:a0:05:
97:63:3a:18:4e:d8:ed:2b:43:0e:2f:a8:57:8c:fb:01:ab:65:
12:14:65:c8:1a:87:43:ee:3f:a2:c4:e0:22:ad:ae:d0:ed:59:
f4:bd:6d:66:b4:17:dc:1d:37:7e:58:09:2f:65:02:b9:ff:c2:
fe:97:07:b7:d9:56:9b:2c:69:f1:a4:dd:e6:32:ee:ef:28:85:
e2:bd:76:b5:c7:26:7c:89:01:97:e4:e8:f9:1f:b5:b5:df:65:
96:70:5b:70:86:df:f1:56:f6:43:4f:ed:ac:c7:93:31:94:e0:
f8:7c:a7:58:92:c9:e1:a6:3a:f7:3a:c4:29:20:e7:c4:78:3d:
a5:95:68:0e:66:68:f4:29:d6:2a:23:6f:df:5f:81:ba:50:57:
c4:46:fb:91:63:ce:e4:38:4c:cc:07:1f:0a:af:84:ef:c9:ad:
a5:fb:c6:af:78:dd:ee:34:56:c4:b9:07:c8:9f:95:35:1f:e6:
9f:5c:cf:6b:2a:f8:36:bc:6e:17:68:54:ad:8c:32:ae:d2:69:
24:e0:88:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:53 2025 by rpki-client