Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q87AMJBA16yP7kxz1whvJT_OjKs.roa
File: Q87AMJBA16yP7kxz1whvJT_OjKs.roa (raw, json)
Hash identifier: AQ3GPTYOoZ5VcZvLGVEXCh+FF1BL48sm3I9XWNFu00Y=
Subject key identifier: 43:CE:C0:30:90:40:D7:AC:8F:EE:4C:73:D7:08:6F:25:3F:CE:8C:AB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3056
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q87AMJBA16yP7kxz1whvJT_OjKs.roa
Signing time: Mon 26 Aug 2024 05:29:22 +0000
ROA not before: Mon 26 Aug 2024 05:29:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.194.192.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:52:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12374 (0x3056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:29:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=43CEC0309040D7AC8FEE4C73D7086F253FCE8CAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:13:0e:5b:12:58:1a:50:98:0b:65:39:ed:04:
75:c0:0d:82:0a:6b:e8:59:b3:d8:e1:27:fc:32:9c:
e7:e6:06:90:56:6f:31:be:57:07:ea:77:5c:31:bf:
2a:6a:19:c8:d5:b4:a9:43:c9:58:fa:6c:9c:7c:ff:
7d:29:38:75:29:6b:2a:7c:34:26:18:3a:40:88:07:
02:a2:c7:f9:48:52:9d:a6:6a:70:f0:6d:df:0e:71:
33:97:57:41:05:9c:d1:d0:e1:c4:87:eb:c1:e0:1e:
70:11:ff:02:21:97:b9:bd:83:5c:19:0d:8f:43:9f:
00:7a:fe:17:de:1e:93:76:9b:da:e8:99:33:bc:d6:
5a:a0:00:5b:07:0e:0c:ca:3a:50:81:af:3e:c6:2c:
ea:5a:ae:a6:c4:2a:9a:06:21:74:d8:67:ce:4a:d3:
f1:35:af:cd:be:33:db:39:11:4b:2d:a7:57:68:21:
d1:34:90:d6:c7:1c:00:b5:b8:28:08:95:65:95:61:
3e:2b:dc:74:cd:44:24:b0:2f:9f:e5:f9:af:22:8e:
02:96:6b:cb:be:62:a9:b5:77:1b:1f:90:93:f9:9e:
86:58:92:9e:17:2c:42:84:9a:f0:15:ce:17:c0:20:
25:6d:0f:c3:c5:9c:08:41:b8:b8:b9:f4:81:91:5a:
de:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CE:C0:30:90:40:D7:AC:8F:EE:4C:73:D7:08:6F:25:3F:CE:8C:AB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q87AMJBA16yP7kxz1whvJT_OjKs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.192.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:6f:15:cc:d4:32:c3:c5:15:9c:3a:6f:72:4b:eb:4f:c1:8c:
5f:ee:d8:a1:e1:66:f4:76:7c:27:3b:63:f7:4f:65:7b:ed:de:
a4:2d:6f:1b:02:09:a2:e4:d3:11:03:f8:ef:d4:c2:56:41:84:
51:fc:0f:aa:66:86:6a:e6:07:22:98:4c:1c:cc:85:81:21:4e:
ef:c8:39:06:d8:08:fc:b9:40:dc:32:0e:6f:d1:03:8d:7e:b4:
bc:5a:92:45:a7:4e:eb:73:2a:ba:ad:18:cb:aa:1e:87:a1:46:
8e:39:92:ad:c7:76:70:39:42:cd:ef:26:51:a4:9f:4e:04:fd:
05:af:98:f2:7c:05:fb:63:bc:2b:22:78:98:02:79:2b:3b:29:
2e:f6:95:1f:f2:f7:6f:df:19:e9:d4:6a:09:1c:be:0b:6b:23:
cc:9a:c5:c7:49:83:d2:a9:c3:b2:22:4c:a6:d6:22:98:65:d1:
6c:e6:1f:85:cc:1c:27:80:16:54:7a:2c:13:55:8b:fa:e0:45:
05:34:6b:9f:ac:0e:03:ba:12:d0:ff:e9:93:f9:df:d1:f5:77:
cd:bf:11:00:f4:66:4a:e4:35:7f:e1:9c:a2:6e:5e:0a:d3:fe:
40:0a:a0:8f:ed:a0:71:32:ab:05:15:e6:49:c6:50:93:10:5d:
6e:d5:a1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:54 2025 by rpki-client