Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/oOhSzx4X9WlXmQPlQcjjm6rlHk0.roa
File: oOhSzx4X9WlXmQPlQcjjm6rlHk0.roa (raw, json)
Hash identifier: /lD2PacBYiFX9imdYIFIORPU7uTUsdzjKfyta2sdy7E=
Subject key identifier: A0:E8:52:CF:1E:17:F5:69:57:99:03:E5:41:C8:E3:9B:AA:E5:1E:4D
Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial: 0168
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/oOhSzx4X9WlXmQPlQcjjm6rlHk0.roa
Signing time: Mon 26 Aug 2024 05:11:30 +0000
ROA not before: Mon 26 Aug 2024 05:11:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63910
IP address blocks: 103.130.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360 (0x168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Validity
Not Before: Aug 26 05:11:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A0E852CF1E17F569579903E541C8E39BAAE51E4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7f:74:01:3f:c9:ed:9a:07:49:1e:de:f8:e0:
80:23:8f:b7:8e:4f:4f:94:7b:91:bf:a6:34:65:1c:
0c:b9:43:50:18:9f:22:db:d3:a7:06:ce:4d:16:78:
70:d8:a2:e2:ca:ab:c4:53:51:b2:be:7d:ae:e4:6b:
bd:aa:7a:00:2c:55:1d:86:c7:ef:a6:3c:a0:1b:cc:
44:87:9f:4f:22:cf:c3:a2:72:66:ea:9a:e3:27:09:
7e:e2:c0:99:aa:1f:86:e7:23:45:2e:9d:9c:36:3c:
97:b2:cf:c8:ce:97:08:47:60:7a:7f:01:70:bb:57:
cc:e6:3b:21:c9:5d:00:33:4d:27:9e:9d:aa:f7:9a:
e8:c3:41:1d:39:60:d6:aa:4f:5d:32:d2:da:bc:38:
f6:a1:d6:44:25:89:6f:3a:08:89:ea:c5:3e:fc:ca:
df:9d:a8:9a:b7:e2:84:57:1f:d6:4b:00:31:bc:0e:
06:7f:2a:33:39:32:c3:28:08:38:19:4a:c8:44:f9:
c4:e1:a4:3e:8c:35:a7:c1:c2:a3:3c:9b:91:b7:70:
f2:f2:95:c7:34:06:13:d5:76:a0:ae:37:e1:1d:25:
75:0f:74:af:5c:9a:48:52:33:01:b5:3a:f9:8f:04:
6d:23:90:bf:1c:60:c2:34:11:40:92:cb:b2:92:6e:
28:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E8:52:CF:1E:17:F5:69:57:99:03:E5:41:C8:E3:9B:AA:E5:1E:4D
X509v3 Authority Key Identifier:
keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/oOhSzx4X9WlXmQPlQcjjm6rlHk0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.236.0/24
Signature Algorithm: sha256WithRSAEncryption
29:da:48:5c:74:52:f1:bd:4a:5f:d6:9c:fa:ce:21:a1:13:4c:
5e:50:79:bb:2c:e2:35:12:79:47:73:81:19:78:fe:c2:20:2a:
85:f9:e6:86:43:0a:28:90:dc:df:f1:39:b9:38:16:cb:af:17:
5b:bb:9d:9e:90:84:c9:55:3b:bd:35:a3:d5:ff:f1:14:48:ec:
81:66:69:4d:e3:15:47:19:09:09:6f:a2:aa:f8:87:8e:1b:f5:
6e:4f:e0:33:81:9c:7c:eb:d6:d3:b7:9e:44:ce:91:70:dc:7a:
6a:2c:0f:02:60:a8:fe:61:83:b0:4f:ba:0f:7c:4f:de:7b:e7:
6b:b7:0e:fd:b2:88:87:a0:90:17:03:1a:d0:02:ef:ec:17:58:
ec:35:da:79:9c:f7:02:48:21:ff:e0:ee:f9:f8:78:16:6d:83:
cb:a3:ef:eb:46:8f:c0:08:38:20:5b:6d:6c:31:b6:a2:2a:30:
d1:89:6b:64:0f:ac:ff:2a:ca:ee:d4:38:8e:a3:a9:52:51:71:
10:d7:dc:f5:77:56:f3:2c:fb:ea:f0:2f:ab:b7:61:94:1b:44:
43:50:b7:0a:5c:10:c1:18:a3:ea:bd:b3:d1:6a:66:58:53:b4:
01:67:d0:08:bc:f0:74:d2:1c:c4:25:b4:85:da:84:8c:42:f4:
bd:4d:70:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:45 2025 by rpki-client