Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/MHpHy3nlEdE3ufGMDmtQNBUkOXw.roa
File: MHpHy3nlEdE3ufGMDmtQNBUkOXw.roa (raw, json)
Hash identifier: EdyTs8BuRYMEeUNZ4tFhYbvhRWnU+9mjxWFh0Ouks9k=
Subject key identifier: 30:7A:47:CB:79:E5:11:D1:37:B9:F1:8C:0E:6B:50:34:15:24:39:7C
Certificate issuer: /CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2
Certificate serial: FE
Authority key identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/MHpHy3nlEdE3ufGMDmtQNBUkOXw.roa
Signing time: Sun 22 Sep 2024 18:18:35 +0000
ROA not before: Sun 22 Sep 2024 18:18:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.127.218.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Sep 2024 05:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254 (0xfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2
Validity
Not Before: Sep 22 18:18:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=307A47CB79E511D137B9F18C0E6B50341524397C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a2:ce:8a:b8:30:c6:97:a7:8d:40:41:af:28:
70:e8:a5:b9:7f:46:e7:68:89:df:19:c1:af:59:85:
1d:64:b9:bc:69:3f:a6:70:1e:26:c7:48:a3:9f:4b:
de:38:34:5a:3c:8d:b0:10:92:b1:2c:1e:b4:55:22:
e1:7e:88:5d:db:14:ae:b8:9f:e6:1b:97:b1:79:13:
20:bb:6f:a8:6c:c8:40:a5:5b:d2:11:b8:78:fd:50:
b5:4b:03:f5:d2:b8:39:41:83:db:de:48:24:9e:ba:
1f:f9:d1:5f:bb:07:26:3a:5f:94:3b:77:c1:c9:b0:
6d:13:a5:93:38:0c:58:f3:db:0e:a8:d4:af:bd:33:
8a:a7:ce:60:50:ef:68:f8:a1:18:ca:6c:e8:81:9d:
6e:50:98:09:e4:f3:77:32:88:4c:6b:92:42:de:10:
6b:e3:e2:c9:a3:bb:36:c3:36:a0:03:d8:b6:d5:68:
94:6b:17:ff:85:80:18:11:e7:84:ed:32:8a:4d:88:
86:5d:11:aa:a2:fc:61:a0:3b:f1:38:48:00:7b:45:
15:f4:a2:ae:cd:96:1f:d6:4b:0f:4b:ab:83:9a:20:
d5:fd:5d:c6:69:51:e5:6c:43:cf:aa:4d:84:b8:3f:
37:46:21:c6:ef:b3:fd:e5:0b:2b:80:0e:cc:77:3f:
ca:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7A:47:CB:79:E5:11:D1:37:B9:F1:8C:0E:6B:50:34:15:24:39:7C
X509v3 Authority Key Identifier:
keyid:A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/MHpHy3nlEdE3ufGMDmtQNBUkOXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.218.0/23
Signature Algorithm: sha256WithRSAEncryption
57:29:02:59:ee:ab:c8:c3:04:a6:a3:60:3d:11:29:83:4d:0d:
b1:db:a4:6e:05:59:35:60:0f:08:8e:a0:70:3a:c9:c8:dc:31:
50:e8:db:1a:5a:d8:08:85:00:b2:da:6c:91:70:c9:b9:9f:5c:
0b:c9:cc:9f:47:9b:8f:50:e3:b5:cf:d2:47:e3:59:6e:02:35:
91:d0:37:7d:fe:b4:5b:d3:83:df:04:e9:53:95:37:5d:56:a6:
5d:47:c1:de:61:f7:66:6b:4e:30:df:0a:51:57:0b:80:e1:07:
ee:8c:16:45:e7:da:6c:69:c8:cc:4e:b2:91:40:dc:80:80:be:
13:94:ac:a5:f0:0b:4a:57:c2:94:1c:77:62:0c:25:3a:31:36:
66:8c:c3:52:6f:c4:c8:86:df:31:cb:24:f7:9d:57:76:a7:96:
ac:89:54:32:65:46:76:9f:4e:d6:fc:1e:01:6c:7e:de:ab:02:
4f:60:7e:d2:ac:2a:b3:3a:3f:4d:79:7d:1c:20:4c:d2:98:a7:
ef:3d:2d:8e:2c:e5:9b:37:36:cc:da:f4:b6:44:68:82:d2:9f:
09:cb:bd:30:f0:51:3b:eb:66:c6:6e:9b:a1:9f:ee:84:54:c2:
79:c1:12:90:3e:6e:05:f4:8c:27:e3:fb:60:60:bc:3b:02:54:
2f:6a:9d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 06:30:59 2024 by rpki-client on console-ams.rpki-client.org