Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JiOgPjwK1wNgfie2CqbhaVUM07o.roa
File: JiOgPjwK1wNgfie2CqbhaVUM07o.roa (raw, json)
Hash identifier: ysoXiBog1wly5GITZ1phWxtqitmvNbdil0+vF60yG/k=
Subject key identifier: 26:23:A0:3E:3C:0A:D7:03:60:7E:27:B6:0A:A6:E1:69:55:0C:D3:BA
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0553
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JiOgPjwK1wNgfie2CqbhaVUM07o.roa
Signing time: Mon 26 Aug 2024 05:09:29 +0000
ROA not before: Mon 26 Aug 2024 05:09:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 205329
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 09:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1363 (0x553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Aug 26 05:09:29 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2623A03E3C0AD703607E27B60AA6E169550CD3BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:fd:43:e4:e6:f4:d9:27:19:fa:4c:2a:99:
30:72:e3:5e:4c:8f:61:f2:5c:54:b1:35:2b:00:f9:
12:7d:9f:dc:16:70:7f:ea:79:32:8c:f4:19:38:3b:
57:4c:91:e0:c1:7c:43:c5:99:39:8c:1a:b0:41:0f:
1d:7f:56:bb:62:3c:eb:30:ea:0e:e2:77:12:96:c6:
44:63:4d:b5:43:f3:ec:55:1f:ec:92:3e:14:bb:73:
10:04:e1:99:03:c9:ca:14:9d:84:85:fc:f1:80:e7:
df:87:ca:8e:cf:9a:ea:80:00:41:27:6d:59:51:78:
03:10:a5:c2:d6:63:37:4f:a5:b6:f4:53:61:1d:af:
c2:57:51:7b:2f:16:e0:aa:51:57:ce:b9:79:a9:62:
69:7f:24:f4:b4:f4:36:76:91:4c:87:61:03:3c:94:
4d:28:96:04:8e:c9:86:bb:ba:bd:bb:76:49:ca:65:
72:18:55:68:02:02:31:17:20:7a:81:5b:7f:b6:a7:
18:28:03:58:d5:91:31:b3:2c:49:5d:cb:7f:ef:56:
ed:62:75:80:05:25:e0:d6:23:ec:0f:01:9e:47:61:
b0:82:33:88:24:6e:dd:7b:07:d7:4b:8b:7f:e1:ff:
0d:b5:9d:1f:91:bb:78:7b:f4:20:a6:ab:ed:b3:c9:
38:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:23:A0:3E:3C:0A:D7:03:60:7E:27:B6:0A:A6:E1:69:55:0C:D3:BA
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JiOgPjwK1wNgfie2CqbhaVUM07o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
73:60:08:88:c9:f1:55:13:a4:57:50:c3:cf:d4:28:15:74:d8:
cd:b4:40:1d:65:85:80:78:34:4f:be:4f:cf:6a:c5:3a:e6:5e:
34:09:f5:0a:fe:d0:f9:96:a4:7e:c4:18:52:46:26:f3:9d:51:
25:8c:04:96:1e:3e:4b:1f:94:36:2b:b2:1d:06:76:63:27:bd:
66:6d:52:d9:66:75:f3:b5:ac:56:91:36:63:01:c6:84:cd:63:
01:71:3a:c9:f2:78:45:dc:47:e4:c8:53:fc:82:39:27:04:d8:
1d:74:4d:8b:b9:ca:ce:ba:0b:5f:79:b7:e6:93:e6:96:a7:e3:
0a:0e:53:ca:91:98:d0:b1:08:1b:8a:03:9d:60:20:b6:01:59:
e6:12:6a:5b:4c:3f:96:cf:17:ce:3b:5e:42:ec:b5:a4:b6:72:
25:66:87:92:a6:81:d7:d1:ec:e7:71:f4:91:53:2b:7a:06:c0:
dd:d7:76:ec:f3:b7:44:66:de:f3:60:ff:62:e7:87:b7:5e:8e:
9a:a7:06:33:af:29:68:32:d2:9e:4e:4b:6a:71:0a:7c:67:70:
fc:45:df:f2:e7:67:f6:bb:c0:7f:4e:92:fe:f5:96:cf:4b:53:
0b:4b:56:f8:a5:3b:a4:dd:66:43:80:d6:48:5d:81:85:a8:47:
ef:90:88:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 10:35:15 2024 by rpki-client on console-fra.rpki-client.org