Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/LewrmQs1ZCqwDqr559mKBuPZIHg.roa
File: LewrmQs1ZCqwDqr559mKBuPZIHg.roa (raw, json)
Hash identifier: wWDpeMygBZaJ37V7VsfGbiKwE0rZRV7WN4nvYKUWhKk=
Subject key identifier: 2D:EC:2B:99:0B:35:64:2A:B0:0E:AA:F9:E7:D9:8A:06:E3:D9:20:78
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0D22
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/LewrmQs1ZCqwDqr559mKBuPZIHg.roa
Signing time: Mon 26 Aug 2024 05:19:36 +0000
ROA not before: Mon 26 Aug 2024 05:19:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 220.157.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3362 (0xd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Aug 26 05:19:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2DEC2B990B35642AB00EAAF9E7D98A06E3D92078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4b:69:71:ef:32:6d:26:ad:19:a9:2a:9e:b7:
d2:4a:28:eb:fb:43:26:69:1e:5a:0d:cb:bf:3f:11:
f5:c5:36:64:3a:bf:49:14:89:85:45:62:8b:16:3e:
4e:99:48:ab:bb:ec:16:a5:03:04:6c:ec:ca:b2:b8:
84:33:7f:cd:45:11:b9:f2:6f:7f:a7:d9:15:b0:51:
c6:d4:18:64:c4:52:c0:c3:52:08:4e:80:02:d9:c7:
bd:2f:c5:fc:09:d4:fc:ea:ef:1e:13:98:23:e1:14:
dc:86:65:13:a5:45:ed:b4:06:a7:bc:ff:b7:7d:db:
b3:35:9d:fd:81:6f:be:c3:52:e9:fc:f7:bd:7a:bd:
e4:65:51:c7:c4:27:2d:ee:93:b3:de:8e:7b:02:3b:
eb:5d:b0:30:7e:2e:81:bb:40:94:ce:d2:71:6e:39:
a7:78:69:65:6a:6a:49:db:bf:cc:f8:da:a1:e8:cf:
ed:a8:6d:ab:3d:00:db:fb:83:44:2e:f3:e4:e2:c4:
63:50:f4:be:e8:75:43:01:ae:9d:7e:f6:58:6f:15:
c3:77:7c:e7:0d:6b:06:62:6c:95:fa:0f:3a:98:2a:
78:4e:e0:7d:4a:b1:64:93:17:77:f5:18:95:66:b5:
ae:38:ee:f7:57:1d:20:46:d2:fa:73:97:82:e6:52:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EC:2B:99:0B:35:64:2A:B0:0E:AA:F9:E7:D9:8A:06:E3:D9:20:78
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/LewrmQs1ZCqwDqr559mKBuPZIHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b7:f7:ec:90:84:27:1c:72:1d:6f:d8:2d:7c:c0:b5:98:ce:3e:
c8:18:26:23:c0:04:24:8e:e7:aa:5a:32:79:ed:40:6a:64:df:
6c:58:45:c3:5c:e6:70:df:85:92:e7:2d:f8:a0:87:fe:98:4d:
92:a7:22:72:cd:26:d4:b3:b3:b9:aa:b4:8b:fc:05:03:27:ea:
e3:38:53:81:86:b9:e8:a1:d9:28:da:71:47:9a:35:2e:b1:ae:
53:6d:3c:a4:ba:7e:d8:8e:3a:5e:81:d7:64:72:27:d0:a2:c2:
59:63:be:cc:07:d4:40:e1:8a:f5:3b:26:5a:ce:e8:01:e7:67:
43:ca:3d:ae:56:97:17:a0:c3:bf:30:56:0c:7c:17:1f:2b:6a:
64:ef:bb:77:29:76:3a:c9:c8:41:73:b0:5a:b2:2e:e1:e6:28:
52:1f:fc:9f:88:78:30:d9:d2:1c:02:20:43:00:82:58:65:13:
d8:27:84:bd:c9:22:bc:81:9a:59:f1:82:98:9b:44:3e:e4:bd:
5d:54:9a:32:a2:88:c2:d3:c6:58:cb:9e:5c:d4:e8:9b:7d:ba:
8a:b3:9b:57:c2:98:4b:72:30:4d:40:50:20:2f:55:90:3c:b8:
b4:d1:a2:0d:99:2a:44:12:2f:09:f5:f8:41:fa:87:2a:25:43:
57:2f:4d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:43:51 2025 by rpki-client