Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/PWkbxxIpvlC1ceaPyjv7LwCByMo.roa
File: PWkbxxIpvlC1ceaPyjv7LwCByMo.roa (raw, json)
Hash identifier: HEmdOYU2XRPa0YiR3DzCYcBbpO+jEWfk7Cp9Xh/2Pss=
Subject key identifier: 3D:69:1B:C7:12:29:BE:50:B5:71:E6:8F:CA:3B:FB:2F:00:81:C8:CA
Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE
Certificate serial: 05
Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/PWkbxxIpvlC1ceaPyjv7LwCByMo.roa
Signing time: Thu 17 Oct 2024 06:20:18 +0000
ROA not before: Thu 17 Oct 2024 06:20:18 +0000
ROA not after: Wed 15 Oct 2025 15:30:20 +0000
asID: 150766
IP address blocks: 160.191.8.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE
Validity
Not Before: Oct 17 06:20:18 2024 GMT
Not After : Oct 15 15:30:20 2025 GMT
Subject: CN=3D691BC71229BE50B571E68FCA3BFB2F0081C8CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d6:a9:29:63:0c:ee:df:76:73:f4:1d:c9:56:
c1:72:0d:52:25:ff:2f:ef:b6:2c:eb:a7:99:b6:ea:
b4:0f:ac:6a:c4:6c:dc:92:2f:37:22:82:ac:fb:96:
d1:b7:4b:76:a8:8a:be:35:3e:ee:d7:3b:a2:a4:5d:
3f:62:54:b2:f2:c6:8c:b9:18:de:11:a4:a4:32:4b:
b1:00:71:52:48:7a:28:4a:0a:f8:8d:f2:cf:96:9c:
7e:91:67:4d:ae:2a:36:46:41:7f:ba:6b:eb:e0:29:
18:c7:9e:60:08:23:00:b3:de:dc:0e:c1:89:c5:37:
33:51:d8:cc:36:2f:33:dc:16:70:19:44:84:b7:89:
02:b5:af:75:d6:82:9b:20:3b:2b:7c:44:92:60:64:
67:b3:61:93:8d:9f:2d:cb:68:74:8a:24:a4:cb:cf:
0b:4c:7f:21:a6:70:64:5a:af:8a:f1:1e:19:c1:38:
01:a3:3e:84:b3:57:2b:e3:bf:fb:25:1f:86:24:3b:
cb:14:d1:81:51:0c:78:c3:cd:61:8f:c9:fa:bf:bd:
d0:a4:a3:6a:f0:96:0e:55:a3:de:62:3d:25:7a:a5:
e9:6c:4b:3d:a5:0b:da:0c:04:d4:ba:a5:db:10:79:
30:e8:a3:68:5c:89:d0:4f:cd:af:b7:0a:0b:2a:26:
27:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:69:1B:C7:12:29:BE:50:B5:71:E6:8F:CA:3B:FB:2F:00:81:C8:CA
X509v3 Authority Key Identifier:
keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/PWkbxxIpvlC1ceaPyjv7LwCByMo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.8.0/24
Signature Algorithm: sha256WithRSAEncryption
55:77:70:f9:c2:a0:28:22:65:c4:ad:3e:21:ce:05:f3:e4:91:
89:8f:b3:72:5b:62:7d:d8:e8:9c:a1:92:d5:6f:13:d7:3b:01:
c7:07:97:e8:36:d4:91:7c:66:67:86:33:64:ef:52:de:0a:25:
3a:04:69:45:18:79:cc:3d:2e:ad:f7:53:63:f4:13:a0:93:2b:
ca:31:c4:b6:58:4c:30:ff:73:3d:32:e5:b6:6a:69:ac:e7:e0:
ac:2a:9b:22:9d:60:68:c8:cd:46:89:be:f1:55:21:c2:5d:33:
8b:8f:5d:dc:11:d3:fb:5a:52:e9:71:78:6a:e4:f8:42:83:4e:
06:f2:52:b5:a8:6c:b9:c3:eb:1f:d4:b7:d5:d9:43:ba:c7:b2:
1e:5a:92:9f:28:a3:4b:ef:f2:4e:35:f0:60:13:a9:81:65:f6:
b3:87:f7:bc:07:4b:8b:ce:49:ab:3b:4e:b9:16:6a:ad:dc:2a:
29:98:c1:57:02:4d:01:e1:a7:f3:ca:1a:b4:67:0b:81:80:b0:
9f:7d:35:ab:f5:0a:78:1e:4d:69:44:6c:a6:8d:86:7a:cf:66:
a6:fb:74:94:a3:af:3b:59:74:f2:90:58:46:25:ce:e7:dc:f8:
d7:a9:87:5f:f2:2d:4c:c1:15:96:c1:d9:fa:0b:c7:1d:ba:1d:
ac:2b:8d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:08 2025 by rpki-client