Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa
File: VTG7PWroXziYRH7gjSj0uNkxcWw.roa (raw, json)
Hash identifier: lv1+pMHj1XavvjjcXyaOEK2t63R3+zE43xziAxnmtiw=
Subject key identifier: 55:31:BB:3D:6A:E8:5F:38:98:44:7E:E0:8D:28:F4:B8:D9:31:71:6C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 309A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa
Signing time: Mon 26 Aug 2024 05:29:37 +0000
ROA not before: Mon 26 Aug 2024 05:29:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.204.0/26 maxlen: 26
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12442 (0x309a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:29:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5531BB3D6AE85F3898447EE08D28F4B8D931716C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:ef:5f:80:fb:24:3c:8a:ac:83:7f:99:4b:
b0:b3:1d:d3:41:de:3e:0b:11:23:15:a1:13:88:8f:
5b:d7:c8:1d:05:07:88:b0:bb:28:90:42:40:51:28:
9c:d3:21:8a:62:57:6e:ac:9b:65:d0:29:f7:87:89:
84:33:0c:b5:ab:f7:85:82:eb:89:fa:1d:e7:85:c0:
6c:a9:af:72:dd:90:f7:da:30:c6:aa:8c:44:d2:86:
6c:37:93:2e:54:4a:33:ae:cc:dc:2d:50:9f:57:85:
35:6d:2b:b5:c2:2f:c8:9d:50:9d:07:bd:ec:19:e9:
4b:ef:a0:74:10:a4:8d:ee:a0:9e:2d:b3:4e:c0:52:
c9:7d:f7:66:57:4b:56:98:d0:bf:02:16:f5:61:b6:
27:97:65:01:d8:9e:1f:9f:23:a9:b6:30:59:a4:ad:
f2:44:38:62:12:a0:02:13:c4:33:e8:38:a5:a3:67:
c0:53:ae:8a:3d:43:ad:16:fb:91:c4:ac:39:57:d1:
3d:a3:e4:4b:f6:3e:8d:e5:45:09:27:bc:73:d8:fe:
7b:57:bf:b1:8a:42:ca:1a:1a:0c:7b:35:71:56:fc:
58:a5:fa:5a:cd:eb:46:33:bc:87:ff:21:06:92:bd:
6c:1b:d2:e7:0b:04:c0:02:ea:ca:e1:5b:d7:aa:4f:
bb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:31:BB:3D:6A:E8:5F:38:98:44:7E:E0:8D:28:F4:B8:D9:31:71:6C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.204.0/26
Signature Algorithm: sha256WithRSAEncryption
45:ce:58:c7:00:f3:2c:95:5a:15:7a:b0:69:03:72:b2:b8:96:
8f:2d:09:28:a2:df:bd:f3:4f:08:5b:05:6e:4c:d1:aa:75:82:
30:38:43:cc:67:f5:7f:e8:96:86:fb:60:75:e0:ae:26:32:26:
dd:8b:e4:7e:10:41:83:0b:ca:60:98:52:07:df:71:a4:c1:08:
86:ac:7c:da:a8:61:45:0f:29:49:3a:0f:23:f6:8a:65:aa:66:
9d:95:70:86:2a:07:69:32:3b:43:5e:05:a8:04:84:f6:c9:2b:
46:03:75:59:2f:cf:19:da:b2:98:5b:c4:18:4c:72:cb:6f:0a:
39:ef:9a:1e:a3:2c:b0:d1:22:28:36:37:06:c2:7f:32:0b:2a:
b6:a6:16:7e:7c:d7:13:93:23:16:0d:38:df:23:0a:e8:80:3e:
85:dc:b6:20:07:65:f7:4d:51:33:2b:e0:f2:35:1e:0b:51:84:
8c:46:b8:5c:ef:06:90:36:da:0b:97:17:fd:57:0b:d4:80:3e:
a6:6a:fa:75:54:23:c5:b3:7b:fc:f6:04:07:cb:38:eb:76:13:
ed:6d:06:44:94:46:9e:03:12:18:fe:4a:f6:f1:9e:66:58:2e:
25:fc:ec:ca:85:c3:5f:9f:05:e8:0f:61:ab:b6:9c:b3:73:eb:
b1:95:d2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:29 2025 by rpki-client