Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/Ez__gCM0J4Fjig4ByV2cq7r8VAw.roa
File: Ez__gCM0J4Fjig4ByV2cq7r8VAw.roa (raw, json)
Hash identifier: bWEvpEZuATifD2gwpyrTBvNyi1GXM9gICGLe+i6K9HA=
Subject key identifier: 13:3F:FF:80:23:34:27:81:63:8A:0E:01:C9:5D:9C:AB:BA:FC:54:0C
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: 027E
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/Ez__gCM0J4Fjig4ByV2cq7r8VAw.roa
Signing time: Mon 26 Aug 2024 05:19:07 +0000
ROA not before: Mon 26 Aug 2024 05:19:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 103.182.226.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:57:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 638 (0x27e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Aug 26 05:19:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=133FFF8023342781638A0E01C95D9CABBAFC540C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:4c:e5:76:2c:92:8f:a2:f5:c5:13:eb:36:
bd:c1:f9:9d:5d:a6:6b:3a:53:c9:cf:51:87:48:41:
35:e6:9c:22:37:44:1a:2c:59:74:13:fa:3f:21:6a:
05:0a:5a:3f:9a:ad:c1:4b:c8:39:5c:54:c3:0a:76:
fb:1d:93:25:c5:bf:d2:69:2e:82:74:9c:9d:0f:72:
22:a3:19:e7:e6:f0:3e:c2:c9:e2:ff:c8:e4:40:85:
38:58:88:76:c7:bd:c4:76:a7:0a:e1:0e:61:f1:c3:
1e:bf:f2:b6:87:71:c5:17:9b:32:f2:eb:48:d4:ed:
0f:91:5d:af:23:6f:24:68:6b:25:fa:fa:21:db:58:
49:ce:69:07:ac:be:04:1b:ab:c0:d9:17:5a:ab:3a:
ef:41:7d:7d:60:bc:92:54:68:50:ae:ae:4f:d9:f6:
d4:71:86:27:58:e0:6e:16:cd:b5:63:6e:2f:0f:42:
61:15:3d:73:eb:a5:16:ac:a0:c7:cc:7f:36:f5:84:
97:0f:43:7e:c0:f5:29:dd:17:a7:ce:c1:cf:91:79:
0b:b3:da:b4:6d:96:da:ed:6b:19:e6:df:0f:6f:1e:
fa:a3:43:40:2a:a5:d3:b9:2d:e6:75:49:f7:a4:28:
9c:43:7e:31:fc:7c:8d:dd:fe:6b:03:8a:96:d6:35:
05:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3F:FF:80:23:34:27:81:63:8A:0E:01:C9:5D:9C:AB:BA:FC:54:0C
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/Ez__gCM0J4Fjig4ByV2cq7r8VAw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.226.0/23
Signature Algorithm: sha256WithRSAEncryption
80:e1:39:ca:65:f6:e7:79:7a:2b:ec:a7:a5:c0:76:6f:b5:3e:
c8:dd:92:0f:b6:29:06:41:fa:7d:40:0d:11:06:11:b0:8e:a6:
f1:38:0d:b1:13:31:e8:bb:ac:75:e2:60:ac:67:41:a2:03:45:
25:f5:19:73:7d:2f:6f:10:d3:d8:76:28:d7:21:79:73:23:be:
d1:cf:5e:68:09:98:34:f9:8c:b7:ce:b2:c2:57:bc:77:e3:94:
90:c6:79:fb:c7:62:33:32:73:60:d6:aa:67:2b:c0:ab:53:9d:
b6:44:15:0d:b9:fb:2d:14:78:0c:a2:f0:83:f3:52:73:a6:96:
c3:6b:e3:bf:56:71:84:c8:d3:05:57:4c:2a:24:8e:c3:33:28:
cf:42:b0:54:87:47:79:71:f4:d8:55:1d:4a:85:68:cb:54:38:
d0:db:fe:40:fa:18:78:ff:46:16:fa:93:e5:39:ef:e2:d4:97:
5a:d9:41:f9:93:df:12:78:25:47:d0:7b:e7:aa:26:2d:28:ca:
a9:30:2f:8d:ac:cd:03:6c:5d:00:2f:04:cf:5a:d6:17:8c:e4:
62:02:2c:96:6c:33:bb:c9:9c:0b:01:b6:c8:21:7a:0d:b6:d9:
0f:63:8d:c7:f3:cb:2a:e5:f1:34:13:85:c1:32:55:26:23:9c:
1f:d9:25:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:33:56 2025 by rpki-client