Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COLIN/iIH3zTVBNfGeDz27p5t3FMdOtRM.roa
File: iIH3zTVBNfGeDz27p5t3FMdOtRM.roa (raw, json)
Hash identifier: SX3+vZAYj9qj9WhmvQtvhZCrEu1UG+Jluzo0aqhvOWs=
Subject key identifier: 88:81:F7:CD:35:41:35:F1:9E:0F:3D:BB:A7:9B:77:14:C7:4E:B5:13
Certificate issuer: /CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1
Certificate serial: 0106
Authority key identifier: 97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/iIH3zTVBNfGeDz27p5t3FMdOtRM.roa
Signing time: Mon 26 Aug 2024 05:11:40 +0000
ROA not before: Mon 26 Aug 2024 05:11:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150768
IP address blocks: 103.6.124.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 18:03:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262 (0x106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1
Validity
Not Before: Aug 26 05:11:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8881F7CD354135F19E0F3DBBA79B7714C74EB513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:95:b9:62:e7:56:c0:62:bc:f0:5a:51:6e:92:
1f:f1:94:1a:7d:27:58:47:55:72:e6:03:c0:2f:d6:
79:be:20:6a:e8:99:4a:cb:43:86:b8:0d:ee:3c:f3:
57:e3:fa:06:44:87:91:f4:34:65:0f:70:3e:e0:eb:
6b:40:f4:46:ae:6a:7b:7b:41:73:50:53:4a:ff:bd:
fa:e9:63:fa:ca:46:c3:6f:d9:25:91:29:d3:57:ea:
73:21:98:44:a6:6b:5c:42:df:e7:10:4d:26:e0:96:
7b:10:92:af:cd:6d:d2:19:47:e4:19:e3:1c:aa:24:
04:c1:65:ea:8b:9e:af:79:16:97:08:ea:4d:ad:66:
6e:e8:f6:9b:d2:e7:52:76:d4:c8:ef:6b:0d:05:a0:
3b:0e:3b:c2:1b:03:55:ee:b3:49:df:78:89:06:18:
20:2b:73:72:bb:07:f5:4a:38:c7:49:7e:cd:ab:26:
ee:b7:a9:2a:c3:b8:04:8c:b0:24:42:45:c5:1f:dc:
87:04:d1:e1:73:c0:c5:27:f3:6c:e1:f6:1e:6a:60:
76:11:f4:83:90:b5:a4:bc:31:7e:2a:85:0e:bc:71:
20:6f:d3:6b:75:4f:ff:62:b2:43:9b:f9:6f:0e:5a:
b4:81:91:6e:7d:3d:d8:3d:b6:1a:f6:22:fd:44:a1:
be:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:81:F7:CD:35:41:35:F1:9E:0F:3D:BB:A7:9B:77:14:C7:4E:B5:13
X509v3 Authority Key Identifier:
keyid:97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/iIH3zTVBNfGeDz27p5t3FMdOtRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.124.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:02:13:59:3b:5e:c7:b4:7f:25:b7:9e:c0:1f:4b:e6:ff:f5:
e6:34:23:b2:2f:42:2c:97:50:d1:bb:ec:ec:71:bd:9c:99:a9:
b6:cc:6f:a9:2b:28:6d:09:34:47:bd:0b:a6:40:a2:70:63:34:
8a:ff:04:40:a7:09:8c:17:c4:c7:5c:1f:87:3d:15:15:f3:3a:
61:ab:d7:90:87:3e:81:53:eb:db:80:7b:3c:c2:78:43:aa:84:
9d:3e:cd:19:77:3c:5d:7d:48:7a:16:32:34:a5:cb:21:72:99:
7d:a8:56:8b:ab:9c:28:2f:b2:ba:d1:a5:46:85:a1:18:c4:31:
12:23:51:9c:d1:9f:48:c9:23:a4:14:97:c0:e4:63:63:13:fc:
6c:74:9e:f3:e4:93:ad:1a:86:de:5f:d3:f9:4d:aa:d7:2b:8d:
a3:ed:38:42:35:31:0f:41:d1:31:47:41:49:ec:e3:a8:61:d7:
d2:61:3d:4f:ed:cb:00:30:85:24:49:65:f9:c8:b0:d4:1e:e1:
1b:22:b9:ce:b4:a7:e4:c8:48:49:a0:be:4a:01:a4:5d:4d:92:
03:46:36:56:29:ae:02:a0:1b:91:05:c1:16:ad:b6:d0:97:a5:
09:ae:79:d4:2d:c4:07:4d:88:13:06:73:e4:80:e7:60:a2:1f:
78:26:c8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:21 2025 by rpki-client