Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgb_QK6m_cj3taLOEcSBzjQKyWE.roa
File: hgb_QK6m_cj3taLOEcSBzjQKyWE.roa (raw, json)
Hash identifier: AqgEWsNxza4ull8Wq71nJ/DWPeeQ4553xI4Gd+qF5Hw=
Subject key identifier: 86:06:FF:40:AE:A6:FD:C8:F7:B5:A2:CE:11:C4:81:CE:34:0A:C9:61
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2FDF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgb_QK6m_cj3taLOEcSBzjQKyWE.roa
Signing time: Mon 26 Aug 2024 05:28:56 +0000
ROA not before: Mon 26 Aug 2024 05:28:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.195.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:53:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12255 (0x2fdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:28:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8606FF40AEA6FDC8F7B5A2CE11C481CE340AC961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3c:1c:f2:ac:2c:ad:6e:55:40:99:d1:9f:a2:
cb:c3:ae:61:c9:13:43:d7:f3:f5:4c:5a:1b:66:62:
03:f0:91:a1:63:0a:da:be:ec:58:17:eb:a8:52:bf:
05:5b:76:43:83:e0:c2:d1:a2:20:72:23:fa:ca:7e:
fb:5d:b2:61:3c:2e:75:39:0a:07:72:c2:60:31:7f:
cc:84:05:5e:af:51:f0:fa:d6:e1:35:64:24:27:e7:
c2:52:74:ca:ff:df:3d:0b:45:90:ed:ee:31:cc:a2:
d8:13:f2:3d:80:ef:73:00:c9:0b:19:ae:02:3d:b3:
5a:97:41:94:3a:aa:c0:68:bb:b3:52:15:09:00:26:
06:87:5e:d5:52:b4:d6:1a:8a:5f:83:da:18:29:3c:
19:be:37:39:fc:ad:8b:08:97:f9:7d:50:df:f8:8d:
96:cf:38:2c:af:86:dc:a7:7d:f3:30:c8:dd:98:cf:
11:12:b8:59:3b:97:72:f4:4e:3a:f2:75:f6:57:f8:
85:8f:55:d3:3c:be:15:d3:5d:fc:13:d1:4d:1a:f1:
b3:de:49:27:a5:df:03:0d:35:db:29:d3:2f:23:0c:
9a:57:07:a7:6b:03:52:9f:a9:c8:c4:8c:a3:c5:f3:
85:79:95:33:c7:11:44:89:d8:64:f3:3d:45:de:0d:
e0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:06:FF:40:AE:A6:FD:C8:F7:B5:A2:CE:11:C4:81:CE:34:0A:C9:61
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgb_QK6m_cj3taLOEcSBzjQKyWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.160.0/19
Signature Algorithm: sha256WithRSAEncryption
68:68:8f:4a:07:32:aa:ea:a8:02:a1:38:65:45:d4:c3:d2:10:
59:e0:8a:6f:1d:89:cc:b5:8c:b1:d5:50:ac:29:2c:a8:e4:f6:
a6:96:67:e9:12:b7:c1:6e:8d:29:90:8b:fc:43:c4:83:27:83:
d3:e8:1d:88:fd:a3:ad:57:da:d9:68:a0:9e:62:15:f9:1d:fb:
8d:03:fc:b5:6a:a9:62:4e:8a:51:4d:60:7d:2e:27:41:ea:e8:
27:26:39:02:56:cc:89:7b:e1:a4:02:28:8c:db:b2:8f:72:29:
c4:3e:d9:f1:e9:c2:32:42:05:b9:e2:60:db:87:57:8b:80:ef:
04:f6:e1:2a:f9:c4:33:b0:83:ac:ff:28:f2:ae:03:80:8d:a9:
07:27:b2:a5:14:8e:1d:5d:ea:f6:69:13:fb:da:66:c2:b2:bf:
c3:66:e0:0a:17:17:01:22:60:83:66:a5:83:f2:56:8a:15:73:
79:14:a5:6b:33:8d:e4:0e:6a:b0:5d:9f:37:cd:ed:b4:51:b3:
a1:32:45:a6:e4:dd:ad:29:0b:74:ff:77:f9:bd:4c:33:c0:d7:
d7:d0:54:f6:0d:68:7b:86:ce:63:a7:b5:93:7b:9b:cc:10:28:
da:96:28:16:86:73:61:0f:7f:28:6c:81:3f:cb:be:b3:03:83:
50:33:7b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:13 2025 by rpki-client