Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa
File: T5w4f2QkEKd1d6T7strnTDYEU3M.roa (raw, json)
Hash identifier: 7i4wHOFEgZ/YgC6L3Gl9DaM9qdQ12wqPsNwoq2GUPmQ=
Subject key identifier: 4F:9C:38:7F:64:24:10:A7:75:77:A4:FB:B2:DA:E7:4C:36:04:53:73
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 30C7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa
Signing time: Mon 26 Aug 2024 05:29:49 +0000
ROA not before: Mon 26 Aug 2024 05:29:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.205.128/28 maxlen: 28
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:52:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12487 (0x30c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:29:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4F9C387F642410A77577A4FBB2DAE74C36045373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:e3:65:fd:57:4f:8b:11:57:5f:04:7c:82:
67:fa:76:4d:dd:55:00:61:d7:6f:b2:2b:75:ca:05:
d4:05:74:87:5e:92:94:c5:13:c1:76:d1:f7:1b:17:
b5:24:6c:7c:29:48:a9:2e:a0:6d:ba:db:42:f5:77:
7f:93:a3:c6:2b:d2:24:32:2f:b1:d1:e3:8d:2c:b1:
1e:71:d2:26:74:27:ef:0b:82:2a:02:70:3c:92:7c:
22:9a:4d:e4:61:a0:43:85:e4:da:2a:73:45:8e:86:
34:91:32:21:cd:64:31:97:5f:d1:67:db:a3:2d:8d:
a2:ea:17:a3:24:53:cc:02:50:37:74:20:c2:1b:79:
13:c7:5d:2b:18:7c:56:18:e9:10:97:4f:39:8b:43:
03:10:21:12:c5:82:a8:c1:4c:00:5e:a6:26:9f:e9:
20:e2:03:86:ab:83:40:03:f6:cc:9e:e0:a5:21:7d:
ae:3b:a7:a2:d3:a9:22:1e:3b:d6:b0:11:a4:0a:4b:
af:a4:29:a7:48:f6:65:74:d8:56:a2:02:c7:f0:9e:
fa:74:4a:37:c8:92:7a:34:60:6e:7f:f1:08:d4:f2:
c4:5e:e4:26:fa:eb:12:14:0f:94:2f:b8:1b:ba:03:
15:51:c3:92:92:5d:46:36:64:b5:59:11:aa:c2:72:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:9C:38:7F:64:24:10:A7:75:77:A4:FB:B2:DA:E7:4C:36:04:53:73
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.128/28
Signature Algorithm: sha256WithRSAEncryption
81:81:e1:4a:e1:82:50:fc:97:76:36:70:14:da:80:29:31:4b:
99:de:11:15:b2:4e:26:c8:48:ee:99:f6:35:55:5a:62:5b:8a:
2e:22:1b:35:5f:30:c2:9c:f6:42:2c:18:52:01:80:de:c8:78:
01:41:68:a5:60:52:79:4f:7a:9f:23:83:16:15:ac:a9:05:80:
9f:36:45:21:d1:c7:ae:af:d1:42:e2:1f:84:cc:4f:bb:8e:28:
69:60:46:e8:c5:30:b4:8a:81:bc:36:77:ad:0c:ab:df:7e:19:
e6:5a:9e:54:dd:2f:fe:0e:97:a2:27:a1:b6:7e:d7:34:0e:f0:
74:a2:54:5d:42:ef:51:bd:18:53:13:d3:8a:58:e1:d6:f3:92:
76:44:85:75:16:21:62:0a:99:4a:98:21:81:36:46:9c:7d:fc:
eb:83:ea:9b:b2:9c:e6:1f:5a:e7:e7:03:c8:02:cb:0b:53:1d:
44:1d:93:c3:bd:d0:ec:88:73:29:3e:00:f1:f0:2f:a3:bc:0d:
21:2d:f4:d9:09:2f:99:33:53:bb:f5:dd:7e:3d:32:e0:06:de:
b9:7a:dc:ed:ee:bd:52:ba:b9:78:65:7a:fe:15:b4:22:c8:2c:
48:73:0b:89:c5:0e:0d:4c:f3:e2:a3:ec:6d:c5:16:94:13:14:
f4:bb:fb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:17 2025 by rpki-client