Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa
File: rAJQAKorLGBtRfuRX394GiNLJyM.roa (raw, json)
Hash identifier: TitXfCjv2ihGxgJLCDdY/2DvO3SFLz6YP/r8k+jU3N0=
Subject key identifier: AC:02:50:00:AA:2B:2C:60:6D:45:FB:91:5F:7F:78:1A:23:4B:27:23
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CCB
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa
Signing time: Mon 26 Aug 2024 05:27:33 +0000
ROA not before: Mon 26 Aug 2024 05:27:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3275 (0xccb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AC025000AA2B2C606D45FB915F7F781A234B2723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:82:92:69:4e:ab:f7:e5:d3:b1:34:f3:1b:c9:
df:ad:a7:e7:fd:07:ad:38:2f:cc:56:ae:ac:cd:43:
8d:73:41:97:f6:1b:e9:12:84:e0:75:b7:a9:80:5c:
2c:75:c3:4d:68:fc:b5:d5:50:41:8c:1d:a4:78:1a:
2c:71:13:70:ad:f4:84:03:bf:7c:88:9e:18:99:39:
6e:df:d9:f6:98:c7:8e:45:b3:bf:2d:dc:25:cf:cb:
1a:47:86:4a:1f:81:a2:db:36:92:a8:80:84:6e:84:
9b:e3:fc:f3:28:6d:e2:ff:31:e7:43:20:44:48:15:
30:9d:b8:58:bb:d4:3f:b6:99:83:51:9f:af:6f:c3:
e8:38:b2:67:6d:ad:3c:4f:39:6a:5e:cc:d1:d8:df:
27:0f:00:5e:8b:ef:02:b3:85:e5:e5:af:eb:b3:06:
c3:f5:b2:1f:e1:6d:43:31:e9:38:bc:4d:27:ea:45:
05:ec:d7:2e:53:0b:09:a4:5b:44:74:a8:18:0e:1a:
ac:21:1d:e8:62:53:48:50:c1:ee:51:03:1e:a2:a7:
f1:97:b0:b0:e2:19:c2:ff:5b:fe:21:c4:ed:84:2c:
13:ee:e7:3e:27:ca:bc:24:9c:77:18:f6:37:ca:33:
a3:61:bc:c5:6a:1b:e7:39:c0:6f:60:6a:11:2b:10:
93:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:02:50:00:AA:2B:2C:60:6D:45:FB:91:5F:7F:78:1A:23:4B:27:23
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
79:2a:0c:b1:3c:af:6d:48:3f:25:24:3e:bd:4b:9b:ac:9a:6b:
ce:98:1f:c5:40:7d:2b:0e:27:37:8e:85:4b:7e:10:83:a5:b8:
42:7c:a6:a0:68:58:d7:93:6b:f1:70:a3:cd:30:b8:70:8d:3d:
46:41:4b:0c:43:03:31:7d:e8:53:d4:f5:3e:0f:e2:92:43:26:
84:45:d0:8f:90:1e:94:35:d9:14:c4:b4:24:3e:21:7b:d8:0c:
2c:30:89:3f:75:8f:9d:4d:28:3b:e8:0a:ed:57:3b:df:e7:d6:
60:60:df:2f:f0:94:bb:13:7e:07:6c:34:4e:a2:50:f7:47:88:
f4:2a:ed:a7:fb:96:dd:56:e7:b0:78:21:a1:49:bb:a9:a1:fa:
2e:15:49:3a:e4:ba:4e:0e:d6:2d:a6:ef:fe:70:2c:a6:ab:00:
ee:29:e0:77:77:8e:6a:5b:bf:1d:7f:7c:52:18:1b:59:17:5c:
c9:b0:02:c5:ce:e1:5e:dd:4e:7e:57:3b:b2:45:66:63:d9:44:
99:bd:fb:04:18:20:c6:54:55:64:f7:ce:f7:4d:09:09:7d:d6:
19:df:6d:4d:76:2a:7f:76:5b:ec:6d:8b:34:96:43:54:cc:53:
be:69:6c:5f:a9:09:22:a8:be:8c:51:16:b5:a5:da:0f:15:8d:
ff:24:32:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:36:57 2025 by rpki-client