Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/IO3u3IZiNdALMj7DGoCrN52KJC4.roa
File: IO3u3IZiNdALMj7DGoCrN52KJC4.roa (raw, json)
Hash identifier: /C8XJzSR3TbY/aAGj2Jmg69PWW606tn6ADfauwA1lnA=
Subject key identifier: 20:ED:EE:DC:86:62:35:D0:0B:32:3E:C3:1A:80:AB:37:9D:8A:24:2E
Certificate issuer: /CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D
Certificate serial: 3E
Authority key identifier: 0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/IO3u3IZiNdALMj7DGoCrN52KJC4.roa
Signing time: Fri 13 Sep 2024 12:19:11 +0000
ROA not before: Fri 13 Sep 2024 12:19:11 +0000
ROA not after: Thu 28 Aug 2025 15:30:19 +0000
asID: 396982
IP address blocks: 160.30.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 13:20:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D
Validity
Not Before: Sep 13 12:19:11 2024 GMT
Not After : Aug 28 15:30:19 2025 GMT
Subject: CN=20EDEEDC866235D00B323EC31A80AB379D8A242E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:82:cd:71:86:47:3d:a5:8a:ce:4e:94:f8:2c:
9d:ab:2a:a8:a4:05:63:7f:03:4c:e5:19:9c:e6:cd:
b7:39:4e:8d:8c:d1:e7:4a:92:7b:32:bf:c2:98:9f:
21:6c:56:f8:7e:ec:81:f7:c9:b9:84:76:5a:40:51:
fb:5c:bd:db:7d:a3:55:73:84:86:81:e3:54:f4:eb:
e9:da:57:13:e0:52:e7:f3:7e:d8:f6:46:81:ec:d0:
1e:50:ff:ea:0c:3f:f7:83:c3:55:70:1e:9a:e8:d7:
33:df:51:7a:76:47:5e:f4:87:60:c0:16:9a:26:e3:
5f:e0:8d:1e:26:c1:14:5a:56:ae:d1:21:d0:6e:23:
08:5d:09:39:86:63:51:54:49:75:5d:ea:ac:e0:b7:
7a:1a:84:ed:18:2d:58:40:b6:2e:27:e6:2b:33:58:
d0:ca:e0:ef:1d:fa:5d:9e:d7:9a:4a:b8:30:c4:20:
a3:e5:b2:23:3b:7e:7a:62:68:8f:71:98:3d:78:b2:
e1:c0:34:fb:46:64:62:38:c0:84:56:25:76:ce:89:
97:5a:3b:3d:c4:bd:4d:99:1d:72:d7:6a:f3:be:a9:
ed:81:c0:a5:80:25:30:63:95:5b:c3:75:13:e2:a1:
18:b8:fa:cc:8b:c2:59:bf:a8:85:b5:7a:21:5f:11:
34:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:ED:EE:DC:86:62:35:D0:0B:32:3E:C3:1A:80:AB:37:9D:8A:24:2E
X509v3 Authority Key Identifier:
keyid:0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/C2fHjjXSNjKiVTKu_otKn8q-O00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/IO3u3IZiNdALMj7DGoCrN52KJC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.211.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:92:c0:65:74:35:6d:bc:d3:3a:34:dd:3f:5e:8b:1f:34:c8:
0b:21:7c:c9:b9:f6:79:69:db:36:30:a3:5a:90:3e:60:06:7e:
e1:e7:09:f6:74:69:a7:2f:46:a2:02:b6:73:b0:85:c6:7e:1d:
84:7b:7e:2d:34:fc:22:c4:95:8a:6c:f2:7b:57:7a:fe:06:a9:
fa:2f:7b:da:36:a2:cc:41:0f:13:4a:a5:d1:05:c8:7d:87:a2:
8e:88:39:01:e0:f8:be:1c:04:d8:ad:07:64:d6:27:2b:34:28:
c5:7e:8e:ee:b9:7e:ee:03:33:7e:b1:45:a2:42:10:b2:db:64:
da:27:4b:f8:9d:dd:f2:30:11:c8:af:cd:ca:c0:c5:00:4a:a5:
22:c9:16:13:f8:e4:b3:be:84:9a:24:e2:be:d4:91:37:f2:9e:
91:90:f1:4d:b2:6b:3d:1f:4a:f5:c1:36:32:c0:9f:db:62:ad:
d8:7e:b9:41:0a:e9:11:da:60:b6:f5:b8:6b:42:b1:48:1f:99:
c3:51:83:12:b1:1d:77:a4:24:a9:dc:76:6e:94:28:d5:c6:c8:
75:5b:dd:fe:fb:45:ab:f9:36:73:de:95:17:cd:38:e4:aa:0c:
41:9e:34:4d:b1:e8:0e:f9:d5:87:3a:4e:42:f1:35:c5:84:8a:
2a:7a:30:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 16:54:31 2024 by rpki-client on console-ams.rpki-client.org