Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/EY-1gw3TIlpWGMH53CkY2JqOlMg.roa
File: EY-1gw3TIlpWGMH53CkY2JqOlMg.roa (raw, json)
Hash identifier: rAqYJJJ9Wv7WaA2TmA9Z+Y1Qp5YI3rPz0FP39H9eL8E=
Subject key identifier: 11:8F:B5:83:0D:D3:22:5A:56:18:C1:F9:DC:29:18:D8:9A:8E:94:C8
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 0101
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/EY-1gw3TIlpWGMH53CkY2JqOlMg.roa
Signing time: Tue 10 Dec 2024 15:57:46 +0000
ROA not before: Tue 10 Dec 2024 15:57:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150766
IP address blocks: 36.50.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257 (0x101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Dec 10 15:57:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=118FB5830DD3225A5618C1F9DC2918D89A8E94C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4c:29:81:43:95:4f:71:f2:de:94:f1:2d:53:
aa:7e:d9:68:fd:9c:85:b5:7e:79:f6:2d:5e:bf:e1:
c3:22:ca:5b:48:33:ea:62:16:e3:bd:40:d1:6c:16:
37:41:1a:4f:3d:6f:ae:ce:97:a6:af:3c:d4:d7:59:
a1:e5:e3:f3:ef:8d:b8:76:e2:62:5b:a2:5f:4f:0d:
0a:6f:48:72:6e:da:2c:ec:fc:f1:48:cb:e5:13:73:
93:a8:81:a7:03:77:1a:1c:a4:df:fd:84:88:29:51:
ba:5f:22:83:c7:f0:8d:66:0e:24:d0:64:37:f9:66:
02:98:fb:4e:bf:72:ac:bb:73:46:63:e8:fa:63:db:
9d:a4:38:41:ca:a6:a1:dc:c6:98:9e:3c:13:51:39:
97:2b:9a:15:56:1d:ee:59:df:18:fb:48:ee:ca:d1:
43:22:32:3b:85:bd:07:5c:21:9e:05:47:24:99:5a:
58:81:1a:f6:de:28:35:23:93:e9:06:ab:ff:f3:a7:
06:59:57:be:52:a2:51:4e:c4:e5:92:a2:33:97:1f:
0b:89:41:ad:3b:13:04:88:d9:b9:98:8f:3d:0a:b8:
68:39:ba:09:c7:5a:1a:0f:b7:ea:da:3f:b0:15:d7:
e8:64:8c:bb:0e:bc:db:96:07:f8:51:9b:ae:cb:78:
59:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8F:B5:83:0D:D3:22:5A:56:18:C1:F9:DC:29:18:D8:9A:8E:94:C8
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/EY-1gw3TIlpWGMH53CkY2JqOlMg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:40:f1:2c:37:89:f4:31:27:f6:95:1b:96:3f:34:a0:5e:60:
be:15:c4:1f:b4:2e:93:ae:35:b0:60:f3:28:f9:65:80:e0:c0:
33:70:ff:14:54:79:25:26:e8:dc:96:18:c3:c3:7b:2d:87:49:
b6:35:81:b9:97:7c:96:c4:9c:8f:3f:85:fc:2d:09:ef:14:4c:
1c:17:e0:03:06:a0:71:51:c7:76:dd:3b:ef:98:c1:9b:43:b1:
5f:b4:ec:9a:1f:e6:c0:d6:42:b3:cb:99:f3:41:7e:de:23:76:
3e:37:94:15:0c:e2:5e:1b:81:96:34:08:b5:8f:f8:0e:df:38:
dc:75:64:76:e7:53:be:7e:cf:cb:39:a8:37:4c:76:d9:bc:0e:
2a:a4:4a:ec:e0:5a:0f:8b:f4:e1:fb:df:dd:38:02:8a:a5:bf:
bf:9e:32:8e:4c:36:93:21:9b:85:22:55:fd:e6:a6:98:30:2f:
a1:ee:5e:b3:26:d9:52:0b:98:02:8d:6b:3e:f6:34:4d:2d:fe:
e9:74:0a:5b:d0:2b:de:0d:1f:3d:96:11:72:e0:d7:d3:e4:78:
fc:4b:53:ea:fd:e8:a2:db:78:21:c1:e7:27:c7:9e:2d:a9:84:
95:2a:55:f0:c8:73:91:8e:10:bc:5b:ce:d4:63:58:37:92:5c:
69:c2:34:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:43:47 2025 by rpki-client