Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASUS/1vXPc47FcO6rMn8sm0p-1DTYZfI.roa
File: 1vXPc47FcO6rMn8sm0p-1DTYZfI.roa (raw, json)
Hash identifier: d4AZVk03+zBC+0tNR7ka3sQRRqeNhRjE8HHCRvzml/k=
Subject key identifier: D6:F5:CF:73:8E:C5:70:EE:AB:32:7F:2C:9B:4A:7E:D4:34:D8:65:F2
Certificate issuer: /CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Certificate serial: 0BE0
Authority key identifier: 78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/1vXPc47FcO6rMn8sm0p-1DTYZfI.roa
Signing time: Mon 26 Aug 2024 05:09:48 +0000
ROA not before: Mon 26 Aug 2024 05:09:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1340
IP address blocks: 103.10.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 04:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3040 (0xbe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Validity
Not Before: Aug 26 05:09:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D6F5CF738EC570EEAB327F2C9B4A7ED434D865F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:31:3c:c4:bf:1a:39:50:b1:54:4d:e6:a5:
c6:b5:43:24:d6:1f:a9:f8:01:aa:1a:f9:82:45:74:
ff:1b:36:f3:56:4a:d0:57:19:04:47:82:26:d9:d6:
c3:e2:5d:f2:33:85:ce:08:de:00:0a:a7:eb:96:2c:
cf:8f:35:63:ee:1b:f8:5e:52:ce:8a:45:2d:92:c9:
27:de:bf:fd:0c:d2:6e:c3:af:56:0e:cd:a1:92:73:
50:77:57:08:25:e8:96:dd:e8:89:e1:34:5e:db:e9:
90:99:43:12:27:c1:55:94:46:84:8d:d4:bf:91:04:
2d:d8:d2:e7:54:2e:04:74:dd:1d:50:cd:9a:cf:b0:
3d:c1:30:6e:01:4f:5c:a1:ce:d0:42:89:f7:9f:ec:
fa:8d:d3:19:8d:39:14:fc:0f:61:bf:af:88:60:af:
75:92:f1:38:67:8c:8f:53:fd:68:43:99:2a:b8:e1:
9c:09:de:d5:73:d2:87:a2:17:a6:1c:e7:8a:1c:13:
04:04:db:38:6c:4e:b0:7f:4e:d9:8b:92:c6:42:d5:
36:40:96:db:19:72:8d:97:80:19:41:ee:af:07:82:
4d:a6:6e:4c:9d:bd:54:e1:9a:3f:4c:31:5c:b7:5c:
3b:73:78:7f:00:d0:73:3d:a2:ca:1e:4f:25:f9:88:
02:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F5:CF:73:8E:C5:70:EE:AB:32:7F:2C:9B:4A:7E:D4:34:D8:65:F2
X509v3 Authority Key Identifier:
keyid:78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/eGZI95u3nh8LD_kDlpL3Tk884fg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/1vXPc47FcO6rMn8sm0p-1DTYZfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.10.4.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:aa:17:94:93:91:16:e7:8b:11:a7:5e:51:35:a7:b3:0b:4f:
28:e7:50:9d:86:a5:43:48:dc:84:94:18:21:fc:1d:18:a9:67:
57:66:ba:73:b1:a2:2a:cc:6d:7d:c4:dd:a9:91:ac:80:64:03:
2d:74:0e:b1:bf:0e:89:19:0a:b7:5b:e5:8c:b7:c4:30:3a:f1:
44:cf:09:2f:64:77:51:35:ae:fe:c5:24:48:fa:7a:e2:0a:5a:
40:c5:b1:a3:19:6a:6b:6c:b9:98:e6:40:54:ed:ac:27:61:4a:
80:29:cd:cd:16:e5:5a:44:b1:de:6f:a0:83:f5:f5:cc:11:01:
4d:ec:51:e6:42:ea:df:8a:c7:82:cd:a5:5f:26:a8:4d:b8:51:
96:12:25:2a:d7:85:4c:c2:6a:63:13:13:87:af:9d:3e:02:ee:
02:b8:5a:94:d7:b5:ae:1a:a1:a4:1b:66:8f:1d:f7:04:9b:97:
78:7b:dd:ee:83:2e:ec:9a:27:fc:d9:22:0d:08:f9:b9:4b:f2:
44:0f:af:39:2b:56:1b:f5:4e:75:3c:42:4f:93:43:45:65:27:
30:9b:8e:9d:cf:ae:0e:13:ba:28:ff:dc:a6:5d:79:70:7d:ce:
9c:c6:40:6d:04:51:07:45:f8:4c:57:93:35:47:44:d3:c3:f5:
c4:a8:ec:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 06:32:34 2024 by rpki-client on console-ams.rpki-client.org