Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/3nx3sUj3cONkWfgo6Jg0GGhRu2M.roa
File: 3nx3sUj3cONkWfgo6Jg0GGhRu2M.roa (raw, json)
Hash identifier: CfnxhARLMGJUypAMu7RkBGZ995LqaJdSxnFBUzmH03I=
Subject key identifier: DE:7C:77:B1:48:F7:70:E3:64:59:F8:28:E8:98:34:18:68:51:BB:63
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0555
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/3nx3sUj3cONkWfgo6Jg0GGhRu2M.roa
Signing time: Mon 26 Aug 2024 05:09:29 +0000
ROA not before: Mon 26 Aug 2024 05:09:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 60614
IP address blocks: 103.156.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 09:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1365 (0x555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Aug 26 05:09:29 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DE7C77B148F770E36459F828E89834186851BB63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:36:b5:08:98:74:b1:b6:37:47:da:8b:0a:d5:
9a:32:f6:76:6e:5d:07:0d:2d:8a:bb:be:0c:d7:75:
4b:93:41:18:9a:43:ff:f4:fb:44:f4:41:8a:47:c8:
2c:74:3e:30:a8:b1:5d:82:8f:10:59:dc:d7:48:c5:
31:59:f5:ab:27:d9:ef:57:be:22:4f:fe:dd:a9:dc:
fe:e5:d8:97:3d:3f:56:0a:f2:54:e2:fe:e1:18:ab:
1a:46:b8:8f:59:d4:ef:32:49:d7:ce:84:3d:c8:34:
03:9d:d6:57:ed:2b:21:24:76:86:79:ac:44:52:11:
49:e4:34:df:18:5e:13:67:65:47:de:73:06:57:de:
aa:82:af:94:99:78:11:da:6c:33:f4:17:ce:f6:48:
08:22:9e:43:7a:4f:08:c2:56:c5:3b:80:8d:11:6e:
09:e8:74:bc:9d:db:c7:b2:39:7b:00:5f:c0:ca:4c:
14:6b:c7:8b:30:53:f8:60:53:2b:9e:73:10:5c:75:
31:31:24:d5:77:fa:61:8f:85:ef:4a:4e:93:6e:4b:
14:ec:1f:5b:1d:30:e4:6a:9b:e0:af:9b:bf:34:38:
c3:4f:48:cd:8d:48:5b:0a:fd:ab:e4:b6:a9:d7:e8:
e3:e4:b1:8c:78:1d:4a:cb:58:86:d0:12:31:48:3c:
9b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:7C:77:B1:48:F7:70:E3:64:59:F8:28:E8:98:34:18:68:51:BB:63
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/3nx3sUj3cONkWfgo6Jg0GGhRu2M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
44:7e:5a:4b:0f:c0:5f:6d:e0:7b:49:75:20:27:97:85:9e:f8:
ce:21:5d:e1:36:87:16:08:07:d5:62:9c:4c:1e:76:b6:e4:cf:
39:82:b9:01:2f:e0:d8:f5:df:9a:42:aa:65:06:ec:84:49:51:
e6:f4:b0:a4:a8:86:a2:4b:52:11:21:41:fa:72:4d:43:52:7a:
ba:8c:ef:96:d2:de:a2:ec:48:ac:0a:7b:6a:b2:d5:27:33:3a:
ce:8a:b1:8f:34:90:38:3c:e2:9a:5d:37:9f:5c:aa:74:cf:7a:
f5:6c:30:50:ac:7c:38:90:c1:f1:f8:09:57:2c:88:4f:eb:1e:
da:a3:28:46:15:ac:b1:5f:79:cd:6f:6e:9e:1f:82:86:4f:9a:
52:ea:1a:cb:59:c2:f9:de:ce:39:79:71:82:df:08:5f:0f:b3:
3f:94:bc:19:68:17:db:c6:fc:f4:1e:59:5a:e2:39:8e:36:88:
80:58:64:91:55:3b:2a:67:35:07:69:3e:5b:ef:5d:5a:47:38:
98:1a:1e:db:3f:15:e1:08:48:b3:f9:d9:2a:28:84:20:3a:86:
05:ad:ee:c0:65:80:d8:3a:07:d8:b2:28:62:1b:82:32:8b:44:
83:40:00:4a:33:c2:75:91:82:ac:cc:e3:b0:86:eb:42:91:37:
91:72:af:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:44 2025 by rpki-client