Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Jrjryqb62Rx4OChUa5tWJznejpM.roa
File: Jrjryqb62Rx4OChUa5tWJznejpM.roa (raw, json)
Hash identifier: q11K5LP64/DyhjgMdF39JTpaiTQHUnLof0p+k3YKcX4=
Subject key identifier: 26:B8:EB:CA:A6:FA:D9:1C:78:38:28:54:6B:9B:56:27:39:DE:8E:93
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 01E2
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Jrjryqb62Rx4OChUa5tWJznejpM.roa
Signing time: Mon 26 Aug 2024 05:11:45 +0000
ROA not before: Mon 26 Aug 2024 05:11:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38042
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482 (0x1e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Aug 26 05:11:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=26B8EBCAA6FAD91C783828546B9B562739DE8E93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:84:16:34:22:8c:bc:65:11:1c:c2:35:c3:bb:
aa:e2:f5:7b:a2:9d:b3:ef:19:ea:20:1c:6e:ca:e7:
94:27:1d:c1:60:fa:a2:2c:67:6c:b3:a3:2c:e0:e7:
eb:06:d1:ce:f8:95:07:95:ac:1c:d2:c7:13:54:a0:
ca:10:86:34:d6:05:73:8a:41:95:4c:a1:15:05:7a:
84:74:9b:1f:1d:71:21:c8:91:f3:1c:b8:8a:88:02:
2b:7d:cb:c4:ef:6a:74:76:a4:c9:3d:38:7d:05:d1:
d3:29:bc:36:5a:68:ab:18:9d:b4:c1:a3:25:ae:12:
94:52:42:75:33:d8:68:3c:00:51:21:f9:a7:a8:35:
5f:82:74:b2:b6:c9:d5:50:7a:8f:0c:f8:70:2c:cf:
11:b0:bb:9c:54:a0:72:dd:0d:59:73:43:fb:8c:6a:
9a:67:ed:3e:52:69:9f:e5:13:d4:74:76:46:3c:3d:
ea:15:87:bb:6a:b7:2a:22:24:64:f3:ff:48:29:4f:
24:77:25:c4:a7:56:fd:97:ac:05:55:e0:68:63:f1:
40:ca:fa:20:91:ca:45:fe:75:02:b9:d2:29:76:be:
3e:42:84:62:eb:a5:fe:ff:59:7c:b5:1a:c9:b9:77:
6a:6b:d3:ff:1d:da:71:ee:f7:69:1b:06:49:5d:49:
cd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B8:EB:CA:A6:FA:D9:1C:78:38:28:54:6B:9B:56:27:39:DE:8E:93
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Jrjryqb62Rx4OChUa5tWJznejpM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
49:30:74:b3:e0:28:c7:a3:15:f7:8a:34:87:3c:53:fa:4a:26:
be:9d:e8:b0:f3:ab:8d:6d:29:00:80:e5:7f:d1:63:58:1b:67:
8d:17:15:d8:f8:3e:cd:c5:1e:7b:61:0b:82:73:82:0f:4b:eb:
50:ad:7b:11:af:1d:d3:71:4c:4d:ee:a6:1c:a1:19:7b:fb:89:
30:0b:d1:56:bf:a1:c4:59:b9:9c:6c:20:68:d3:4e:8c:df:ab:
33:07:07:3a:0d:56:db:6b:a4:e4:8d:0b:8b:5e:3a:17:66:02:
7e:8d:db:4b:13:59:21:d0:22:93:a4:a3:ac:fb:0f:42:28:aa:
c3:90:15:90:ed:c6:9a:97:1e:5d:33:02:15:1c:ed:fe:07:6c:
eb:1a:dd:e2:08:bf:7d:1c:72:0b:ba:50:81:26:03:c8:99:13:
94:dd:63:39:dd:58:12:57:22:ec:94:33:dd:37:12:bc:f0:a3:
42:51:52:c3:3c:f5:29:74:95:eb:87:1b:6d:b2:d0:6b:df:c8:
aa:ad:f9:d6:eb:96:f3:7f:2d:f5:57:7e:f9:24:b5:1f:f5:f4:
45:3d:9c:da:59:9d:6f:6c:b2:a3:37:05:a5:b6:26:92:7f:a2:
7c:ed:45:c6:7f:d1:7d:6f:b8:54:fe:37:19:d6:bc:6e:f4:44:
42:30:ff:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:00 2025 by rpki-client