Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa
File: JDxX9Dj060grtiAHzD6NI9aFx3Q.roa (raw, json)
Hash identifier: 4FJFRrHbD0GZNx07Tyz21aZFmZOJrEoXRdkoJg39FSs=
Subject key identifier: 24:3C:57:F4:38:F4:EB:48:2B:B6:20:07:CC:3E:8D:23:D6:85:C7:74
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 0136
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa
Signing time: Sun 07 Jan 2024 14:11:36 +0000
ROA not before: Sun 07 Jan 2024 14:11:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 152179
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 12:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Jan 7 14:11:36 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=243C57F438F4EB482BB62007CC3E8D23D685C774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:28:62:3f:09:9e:f9:c3:bb:13:f0:82:1f:07:
f9:00:4c:7a:04:26:25:31:64:6e:a0:a1:bb:7a:fe:
e0:72:07:28:fe:24:f4:ea:c5:66:c9:a6:fd:d7:72:
bb:7b:f7:db:82:9d:a0:e1:48:03:4b:96:0d:00:73:
50:4a:c2:63:2b:d9:42:5e:e5:b1:f0:fb:41:29:a3:
0e:e1:85:98:62:60:16:54:35:89:c4:d0:27:ac:16:
b7:b0:67:f9:8f:8b:59:36:84:21:ab:61:96:08:89:
3e:ff:97:52:cf:2f:3b:67:4a:d2:d3:73:fd:1a:33:
90:cd:d8:21:34:7f:d8:5e:40:f1:8f:b7:b5:af:6e:
5a:38:06:69:06:6e:e3:d5:be:91:a3:39:79:cd:f6:
2a:85:70:45:d2:73:71:be:c7:b8:46:7a:16:fb:a5:
22:cd:8f:01:23:84:7c:62:60:b6:dc:53:b3:1a:23:
a4:11:7b:2b:e1:64:06:07:f5:4f:95:61:6d:e8:92:
41:b2:fe:63:41:56:3b:c5:5c:a1:f4:01:f6:20:b4:
b2:65:2d:de:e0:b0:66:ad:2e:56:4f:f0:d8:80:f4:
14:9c:6a:65:44:16:66:e3:0d:bc:ce:87:87:c3:28:
00:db:0c:29:ef:25:ab:8f:fd:a9:48:93:10:f2:0a:
a8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3C:57:F4:38:F4:EB:48:2B:B6:20:07:CC:3E:8D:23:D6:85:C7:74
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
01:4e:9b:ed:e6:8b:aa:68:2a:90:b4:af:33:13:d2:b9:39:cc:
61:70:c9:79:8e:a5:7a:2d:57:0d:b2:37:1f:3a:89:61:0a:d9:
85:2d:3e:82:ab:b1:23:64:f8:8e:39:60:b6:2a:56:b1:94:01:
96:83:5a:f5:f7:5b:ad:97:1e:1f:ea:52:eb:1f:25:11:c0:7f:
f4:35:94:5e:f9:06:84:f9:92:55:b4:79:01:2c:f2:45:7a:d0:
bf:30:26:a6:de:f6:80:03:53:4d:f4:6b:5a:a3:41:88:8c:e3:
49:c9:7b:d5:78:63:51:8c:92:43:0d:96:05:f0:28:72:50:51:
09:be:cd:24:74:6f:4e:3c:2a:1a:9c:32:22:e5:d7:c4:2d:aa:
6a:0b:d3:19:71:32:4d:af:62:51:43:de:6e:6a:51:ba:ca:27:
67:d7:10:ac:e4:d6:6e:94:db:7c:21:f2:a0:93:ee:17:04:77:
15:60:ef:44:0b:99:cc:b5:2f:6a:17:29:cd:84:82:67:d6:1a:
a6:d7:d4:66:9d:15:93:26:c2:b9:df:70:18:b3:71:29:57:51:
f3:b5:1a:11:3c:95:ee:b0:df:ac:34:6b:fb:b5:47:38:f6:21:
21:3e:ff:6c:ac:10:43:0e:c3:8f:e7:29:23:05:89:e4:ef:d8:
74:11:d8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 16:22:21 2024 by rpki-client on console-ams.rpki-client.org