Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/z-zG-TdaZkHNSxt6p4gtg69t_qM.roa
File: z-zG-TdaZkHNSxt6p4gtg69t_qM.roa (raw, json)
Hash identifier: y5U4UDrPgVGA3PZHqXD3S+jmPdD19LKckn8Fx4E9MWE=
Subject key identifier: CF:EC:C6:F9:37:5A:66:41:CD:4B:1B:7A:A7:88:2D:83:AF:6D:FE:A3
Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial: 0254
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/z-zG-TdaZkHNSxt6p4gtg69t_qM.roa
Signing time: Mon 26 Aug 2024 05:10:32 +0000
ROA not before: Mon 26 Aug 2024 05:10:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63895
IP address blocks: 103.185.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 596 (0x254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Validity
Not Before: Aug 26 05:10:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFECC6F9375A6641CD4B1B7AA7882D83AF6DFEA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:82:da:d1:82:8a:13:c9:58:ce:98:b5:96:1c:
d5:5b:9a:38:77:b3:f3:4f:fe:d8:43:24:59:81:37:
96:24:be:a9:80:b0:78:a2:e3:a9:65:64:03:e0:18:
c5:f7:ab:d2:84:dd:ee:8e:f1:ff:58:19:66:8f:40:
9e:5f:31:bf:1f:c0:a1:43:93:c9:7f:17:45:43:9c:
d1:b5:88:bb:d8:f1:9e:95:95:fa:b6:85:4f:e3:96:
ef:5e:67:83:b8:3b:9d:24:b8:1f:bf:0c:22:20:1e:
1f:e0:df:9d:62:5d:5c:7a:41:a8:23:27:b0:cc:8f:
dd:ae:00:16:cd:0c:e0:40:e1:3e:06:e3:d1:b2:0e:
5d:41:6e:1b:7e:ba:b1:cc:ed:45:a1:6a:62:79:29:
b0:76:9c:dd:83:1f:75:f3:18:71:9c:7c:61:84:dd:
8e:f9:9a:a3:61:fc:97:6c:d1:bd:d1:2e:46:f1:98:
9e:ba:fa:f0:0a:ad:35:5b:d9:ab:d2:eb:a4:15:15:
46:dc:4e:e0:1b:21:74:fa:de:43:4a:55:f3:db:fc:
f2:0a:f2:05:de:57:46:da:12:fb:05:2b:f1:0c:83:
67:71:14:d4:8a:74:ea:45:cc:07:5e:12:6f:8d:c5:
04:5c:50:26:7d:d9:10:1d:d2:ea:2e:22:bf:43:75:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:EC:C6:F9:37:5A:66:41:CD:4B:1B:7A:A7:88:2D:83:AF:6D:FE:A3
X509v3 Authority Key Identifier:
keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/z-zG-TdaZkHNSxt6p4gtg69t_qM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.28.0/24
Signature Algorithm: sha256WithRSAEncryption
69:42:cb:89:95:ab:02:04:33:d0:cd:a9:79:d9:9f:fe:b4:08:
9d:db:cc:c2:86:6e:11:66:5d:64:a5:15:ea:58:66:86:e7:36:
05:f8:21:97:cb:d3:93:72:52:5a:49:ea:17:b6:17:fb:62:24:
4f:7a:28:7f:40:13:32:ee:87:d0:29:5e:f9:51:da:52:18:f7:
e3:c5:c5:86:24:8f:b4:2a:d4:3a:ef:84:db:0e:ec:4a:3e:a4:
f9:28:cc:34:0c:98:52:7e:f8:05:ae:7b:57:e3:f1:19:78:39:
a9:eb:68:25:24:82:72:d7:29:3f:14:d0:9f:54:d1:e3:2e:4b:
3d:24:68:33:ee:0c:e4:76:66:ec:f1:87:2a:0f:a1:b8:4d:2f:
6b:87:08:08:06:f1:ca:97:9c:08:6b:70:d5:6b:1a:2e:21:34:
96:f5:77:30:83:9c:83:a2:7b:17:17:f4:c7:5c:88:a7:4d:db:
97:03:bc:49:9a:45:8c:40:70:a0:1c:e4:8c:af:0d:a1:26:07:
d2:cd:c8:93:42:c2:87:3d:97:1c:13:7b:42:8a:d1:ea:5c:a8:
4d:1c:5e:d0:48:fd:dd:54:11:a8:b6:06:c6:9d:b2:07:8e:47:
4f:45:b2:9b:2d:ea:e6:e2:63:57:df:73:42:9b:20:8f:ae:ca:
ab:91:44:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:51 2025 by rpki-client