Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AMZN/JLp1DrEOm1FAEFxwBpDbDvCkYlA.roa
File: JLp1DrEOm1FAEFxwBpDbDvCkYlA.roa (raw, json)
Hash identifier: 7GSt3K/q9WRgbOKbFnsZHRl4Hf9YYerjWIiMlqrD2Lk=
Subject key identifier: 24:BA:75:0E:B1:0E:9B:51:40:10:5C:70:06:90:DB:0E:F0:A4:62:50
Certificate issuer: /CN=655679B564FF9DD15745A99C75189C02FC81258E
Certificate serial: 0119
Authority key identifier: 65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/JLp1DrEOm1FAEFxwBpDbDvCkYlA.roa
Signing time: Mon 26 Aug 2024 05:09:33 +0000
ROA not before: Mon 26 Aug 2024 05:09:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7538
IP address blocks: 103.149.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 11:45:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281 (0x119)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=655679B564FF9DD15745A99C75189C02FC81258E
Validity
Not Before: Aug 26 05:09:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=24BA750EB10E9B5140105C700690DB0EF0A46250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:18:1b:68:73:be:87:e2:64:e0:a0:ce:06:
39:5e:48:24:c3:28:0d:7a:de:58:d5:e8:84:b0:2c:
7e:7b:bd:96:d4:f2:0b:39:f3:99:94:d1:25:3f:26:
95:6d:f9:b5:3e:1d:8c:04:4f:25:2e:94:ff:5a:28:
4d:8b:30:f8:0f:f8:73:6d:2d:64:ec:a6:5e:70:98:
8a:01:df:43:4a:74:1f:28:87:64:a0:d6:e9:85:a3:
72:d1:32:44:02:43:75:a3:bd:b4:fc:1f:28:3a:59:
09:fe:a0:70:39:f1:bf:79:67:1d:46:10:2a:32:97:
c6:3b:42:93:b2:ef:26:12:3e:92:75:c7:bd:20:83:
16:80:ec:8d:aa:fd:02:4c:55:2e:78:6a:c1:43:3c:
6f:82:d8:23:ff:d6:94:5b:57:cf:d4:1c:50:f8:a7:
72:d4:bd:16:b3:9f:bf:c0:00:06:db:6f:50:cb:a8:
5c:25:66:fe:7f:ed:66:44:34:64:47:b9:e9:f4:8a:
75:f2:ed:57:98:d0:87:30:90:a0:c7:e2:a5:7b:2a:
2d:37:20:0d:1d:0c:d7:9b:ae:4e:cc:50:89:41:19:
ef:cf:15:b2:d9:0c:6a:0e:59:f4:90:0a:b8:b7:33:
ab:8f:c1:02:49:dc:40:99:d0:da:16:47:2d:09:63:
6a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BA:75:0E:B1:0E:9B:51:40:10:5C:70:06:90:DB:0E:F0:A4:62:50
X509v3 Authority Key Identifier:
keyid:65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/ZVZ5tWT_ndFXRamcdRicAvyBJY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/JLp1DrEOm1FAEFxwBpDbDvCkYlA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:76:fb:17:3d:a8:ee:4a:41:e7:4e:48:be:f9:69:3c:01:65:
6f:40:bb:24:03:b0:c4:dd:de:e0:23:67:3a:2e:7f:d2:f8:29:
b6:3e:28:07:f0:d0:af:53:d0:3d:f1:48:59:93:d9:ff:a8:03:
e7:9b:db:40:f5:82:ad:09:d6:52:e8:69:8c:a0:26:36:af:49:
55:4a:c7:8f:c1:b6:d3:6c:a3:49:73:1d:cb:59:58:64:43:3b:
bf:93:e1:d7:92:46:28:ce:60:9a:7d:b3:7b:6d:67:6e:49:7c:
ed:dd:46:40:36:2c:56:aa:a6:f5:36:ae:07:f3:3b:77:13:36:
20:59:01:bf:c5:a1:11:d7:27:ea:cf:f5:e5:85:0c:0c:63:85:
0e:5d:56:d8:43:2d:10:72:78:f9:36:0b:da:0b:99:2b:23:05:
9c:9e:99:e9:c3:5d:3f:3d:9b:19:aa:03:21:8d:6f:fa:06:69:
fc:5c:96:bd:ca:08:d1:86:2d:b7:be:c9:0d:6f:39:22:cb:fb:
0b:8e:91:4d:b1:af:c1:4d:62:ec:c8:e7:e3:52:70:0c:ea:97:
1c:c6:89:b2:e2:f2:a2:91:4a:79:bb:24:d4:f0:d3:e2:56:e2:
9a:75:b5:97:c2:10:28:83:3b:59:ff:b6:c9:b4:3b:72:09:49:
52:09:1b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:07 2025 by rpki-client