Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/OLCCm6ifUWrOcRPCBo0s2CIxJus.roa
File: OLCCm6ifUWrOcRPCBo0s2CIxJus.roa (raw, json)
Hash identifier: 7BBxygo1UMQMuuKg6mDiAuqc8fE6PTi9z3jfgJ0udX0=
Subject key identifier: 38:B0:82:9B:A8:9F:51:6A:CE:71:13:C2:06:8D:2C:D8:22:31:26:EB
Certificate issuer: /CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Certificate serial: 110D
Authority key identifier: 23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/OLCCm6ifUWrOcRPCBo0s2CIxJus.roa
Signing time: Mon 26 Aug 2024 05:09:23 +0000
ROA not before: Mon 26 Aug 2024 05:09:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131635
IP address blocks: 103.127.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:20:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4365 (0x110d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Validity
Not Before: Aug 26 05:09:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=38B0829BA89F516ACE7113C2068D2CD8223126EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d4:16:7b:db:bb:1a:84:6f:a9:86:b4:66:f5:
31:b6:7a:35:9d:06:e0:3c:e2:f6:5a:ae:57:f7:fd:
97:a3:df:16:aa:5d:f3:a9:7d:b3:67:43:78:d7:da:
9b:30:eb:c3:1e:c0:a6:0d:b4:b8:aa:e9:6e:9f:af:
2d:43:8a:2d:28:e9:5f:01:32:0a:97:c3:ee:1a:2f:
35:8d:1a:2c:e3:df:34:a6:d9:9a:d4:2a:48:6e:e2:
db:fe:b4:23:0b:20:2d:a3:0c:c5:f0:a0:89:5b:b7:
71:b1:7f:3b:8a:82:4e:65:f0:02:3b:9a:75:e1:40:
65:0f:ba:6d:62:c2:cb:f5:ae:d2:db:8e:13:b9:af:
e9:fb:de:0d:da:27:85:31:e7:01:96:65:dc:f7:b2:
35:82:b0:88:cd:f7:72:0a:54:ec:eb:45:78:6a:97:
34:3d:fd:b2:bd:55:aa:6e:53:37:ba:b8:04:15:ff:
14:2f:08:07:b7:39:80:f1:c9:81:b9:8b:de:0c:45:
02:a9:3f:df:a3:75:ac:f3:20:fb:6b:3f:51:8d:ae:
8b:85:f9:e0:ef:2e:af:15:3b:3d:e0:7f:d2:bd:9a:
f6:67:59:bd:02:15:c8:91:7c:c1:de:4a:76:70:16:
47:51:74:f7:70:50:ab:4e:9b:84:b8:d1:c1:61:23:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B0:82:9B:A8:9F:51:6A:CE:71:13:C2:06:8D:2C:D8:22:31:26:EB
X509v3 Authority Key Identifier:
keyid:23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/I-DEQDO1APeJMdEj69nzXprhfcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/OLCCm6ifUWrOcRPCBo0s2CIxJus.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.232.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:52:0a:6f:d6:f9:65:87:f4:a7:ca:86:4d:27:fc:a2:25:48:
92:91:f3:7f:ed:7c:93:99:c6:ac:08:21:af:85:91:2a:77:a8:
37:5c:ab:74:20:93:b4:5a:b6:7b:ca:90:5a:a9:2d:ab:fd:7c:
1f:23:62:c9:f3:3f:e0:45:26:15:1e:4e:57:75:f4:22:a0:99:
27:90:f7:f6:a6:1c:7b:83:05:ba:0b:c6:66:ce:43:2f:2c:e3:
56:e6:e7:81:72:e7:bd:42:ce:02:4d:14:34:94:9c:f6:29:47:
48:10:88:f5:00:bc:ab:b6:0f:65:ed:45:72:8b:d1:91:a4:9c:
e8:5b:45:88:41:19:7a:09:2d:18:c8:a6:8b:06:95:2f:47:81:
eb:be:b3:ff:bf:4b:24:f3:70:5b:60:a2:0a:32:07:7d:5e:3a:
b9:c3:af:af:56:d0:f5:22:ae:ab:53:ad:81:03:dd:36:33:bb:
ef:38:04:db:61:11:2f:f5:d8:0f:1e:7f:8c:1e:cc:f4:64:96:
a4:95:07:e0:2f:55:0b:01:56:82:55:57:a5:cc:8b:67:80:77:
31:09:e5:e8:de:e0:27:b3:54:87:f7:4f:b5:3f:ee:74:a3:10:
4a:78:1f:e4:84:cc:e4:b8:e4:6b:46:fa:a5:11:91:03:b2:8b:
73:33:af:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:20 2025 by rpki-client