Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xnWmJOUf_6wl63LvwWPZjI_1cuc.roa
File: xnWmJOUf_6wl63LvwWPZjI_1cuc.roa (raw, json)
Hash identifier: pan+FCA3gjoDpY2me6deFPm+CRN9Bylc4xj0/Xt7Mhw=
Subject key identifier: C6:75:A6:24:E5:1F:FF:AC:25:EB:72:EF:C1:63:D9:8C:8F:F5:72:E7
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0549
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xnWmJOUf_6wl63LvwWPZjI_1cuc.roa
Signing time: Mon 26 Aug 2024 05:09:26 +0000
ROA not before: Mon 26 Aug 2024 05:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 151188
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 09:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1353 (0x549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Aug 26 05:09:26 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C675A624E51FFFAC25EB72EFC163D98C8FF572E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a4:13:51:89:7c:30:74:64:cd:10:41:79:c3:
f4:6d:52:47:07:49:a5:a5:d7:2c:c0:ad:2b:14:8d:
a3:2c:91:41:64:7f:39:c4:da:73:66:60:3b:a3:f6:
88:0e:51:90:47:cf:4b:98:99:66:0f:09:52:1d:cc:
78:16:dd:2a:da:aa:48:0f:9e:7a:ea:8f:06:6b:73:
5f:54:10:a3:6b:25:b2:1b:2f:cb:46:0e:32:db:74:
45:eb:12:0a:a3:4b:7f:8d:58:f6:2e:bd:6f:50:bd:
fd:de:13:f3:db:18:53:21:16:67:5b:c7:ae:0d:bc:
56:42:29:6d:83:3f:0d:d0:07:2b:05:6f:cb:f9:7b:
d7:03:dc:86:87:3f:ea:3a:ba:34:79:8e:e7:15:21:
63:74:c8:7e:90:26:5b:20:e8:ab:7b:82:5f:d2:5d:
c0:18:04:c6:ba:37:d8:f9:4e:c7:9d:bf:ed:c3:6b:
8a:c2:e5:a7:76:10:5a:43:cf:0d:ad:81:50:53:a2:
33:69:57:c8:9d:ce:ba:a4:c7:c7:e8:ea:af:22:db:
e9:80:fe:2c:18:f2:74:69:8b:14:57:be:ba:b6:87:
f1:50:e8:17:ab:9d:e5:89:9a:8f:4e:04:4d:78:5e:
07:53:f2:65:95:1b:45:b8:c2:2f:9d:3d:f9:f4:59:
ae:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:75:A6:24:E5:1F:FF:AC:25:EB:72:EF:C1:63:D9:8C:8F:F5:72:E7
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xnWmJOUf_6wl63LvwWPZjI_1cuc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
64:00:f6:5a:f3:1e:bd:12:6f:d5:8b:aa:85:0c:de:1a:5b:46:
d0:8f:55:3d:f9:f7:1f:ad:47:c9:43:87:17:75:b4:6f:25:b5:
55:96:26:a1:a8:8c:0c:54:da:db:8d:f6:4c:ee:d7:c0:6c:51:
29:4c:c5:48:dd:f0:4d:9e:20:a0:19:0f:8f:38:e1:50:72:c1:
f7:95:a5:e7:a1:f0:35:c2:b2:be:43:bb:e9:2f:61:56:35:cf:
38:63:0e:5f:5a:85:88:63:25:6b:ea:32:6a:ad:09:d7:e2:f5:
4e:14:dd:92:32:7a:04:4e:aa:9f:c9:e9:4b:66:a0:b0:3a:df:
fc:d0:18:cb:81:7e:d6:13:3f:04:ce:61:c8:54:cf:4c:1b:a1:
e2:40:bf:7d:e6:66:86:58:10:e0:36:cb:bb:db:8c:c3:83:9e:
bd:c7:b2:44:68:6b:14:c1:55:07:1b:6a:a5:9e:35:61:14:39:
78:d2:4a:a7:1d:95:19:d8:db:8b:ff:0c:bf:db:9c:4b:95:41:
ab:81:9a:68:18:e1:86:61:50:fd:30:23:38:1f:c2:a9:bd:dc:
39:5c:bf:b4:92:b2:61:22:ba:3a:a6:d0:ff:81:70:56:86:4b:
47:cc:3d:66:26:c0:39:79:fd:45:96:fb:2b:36:0a:30:90:ed:
a6:b5:61:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:22 2025 by rpki-client