Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa
File: QshZ5gBblKSES9bJcDItO1CGInw.roa (raw, json)
Hash identifier: AjKNtVlHTv2h2U9CY80WRUrI5DaQ5VX6PF0Gw1y9cR0=
Subject key identifier: 42:C8:59:E6:00:5B:94:A4:84:4B:D6:C9:70:32:2D:3B:50:86:22:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 32E8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa
Signing time: Mon 26 Aug 2024 05:32:08 +0000
ROA not before: Mon 26 Aug 2024 05:32:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.176.0.0/20 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13032 (0x32e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:32:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=42C859E6005B94A4844BD6C970322D3B5086227C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:fc:11:f9:1c:07:d9:0a:91:37:43:55:33:
3b:1d:d5:ba:2b:9e:f8:d4:ec:67:64:7d:ff:ce:24:
da:d7:e6:53:9a:57:85:86:42:8f:ee:f6:ec:29:e6:
83:79:4c:7f:c7:af:e3:5a:a3:19:1a:6e:f6:cb:06:
36:8e:0a:25:15:4c:9e:a1:74:46:92:d1:57:49:75:
43:59:d2:3f:cc:4a:19:ca:3c:16:16:2a:2a:71:b7:
c9:b1:0c:7b:20:c5:e5:5b:e3:6f:ca:d6:24:5e:19:
7f:bd:34:c8:c8:45:bd:59:8f:3c:47:e9:7d:03:cd:
e3:88:25:11:75:94:e2:a5:25:04:9a:a0:17:c2:5f:
0c:51:34:00:32:02:27:e8:a7:7a:d4:72:0f:73:12:
f8:ec:f4:f0:f4:2c:72:3f:df:9b:6f:ea:f9:d9:25:
10:79:19:19:7c:1e:2e:24:19:9f:7c:5d:d7:29:b3:
35:f2:e3:eb:ae:54:a1:3d:a8:86:80:09:ef:92:6c:
30:96:7a:c4:f4:e8:14:6f:51:31:2b:de:fd:d2:99:
25:95:73:48:57:f9:7e:9a:c0:a2:7c:0e:3a:96:5b:
9d:8f:57:28:76:0c:ea:97:bb:4a:78:d2:8e:87:0d:
ce:a1:f2:1a:4d:6f:cf:8e:84:a0:25:0c:aa:ac:0c:
00:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C8:59:E6:00:5B:94:A4:84:4B:D6:C9:70:32:2D:3B:50:86:22:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:fb:d4:cc:d8:0d:21:51:b2:15:47:22:22:c2:4b:bc:b9:38:
28:5b:f0:34:d9:6b:7f:4d:80:67:8d:de:f6:af:01:3a:d6:79:
99:7a:99:68:3a:20:5e:21:62:28:cf:e9:02:cd:37:6f:dd:38:
7a:a6:8f:31:31:1a:75:c0:5c:b9:d9:4f:1f:cd:15:cd:46:14:
b9:12:c8:d6:d3:fa:c0:19:fb:ba:ac:4b:5b:fd:cf:4a:90:78:
67:44:92:2c:4f:d9:08:84:24:a2:78:93:c2:36:39:60:6f:00:
16:9a:21:00:fe:17:61:1f:3a:50:b7:8f:f8:63:55:fe:c9:1c:
e0:7d:97:80:df:bc:2e:e3:78:ec:d3:af:d0:54:3a:3d:b2:0c:
4e:29:16:f2:be:18:4c:a3:d1:ba:f6:0b:5f:90:e5:06:e2:00:
a0:2b:f0:4d:cd:84:cd:95:20:bf:69:fe:02:45:8b:2a:df:10:
d7:d0:8d:d6:ea:46:48:8e:a5:0e:cd:72:a7:78:3c:68:b0:a4:
64:90:b8:b2:0f:5b:4a:42:73:6e:e7:fa:f5:d5:64:8d:9f:ee:
39:69:c1:a2:b0:25:4f:0a:f3:b4:48:f1:ab:38:32:67:1a:7c:
0b:a5:59:29:cb:b7:76:2d:8d:9c:a1:11:d2:ff:0e:91:fd:31:
2e:9b:14:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:27 2025 by rpki-client