Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/cDcDBjMUan6C7QDPYkFoxGdm_I8.roa
File: cDcDBjMUan6C7QDPYkFoxGdm_I8.roa (raw, json)
Hash identifier: W4OEEp8t4jQ0wttIk5Pt3o8vz8Qzg6Z5l2fQr3RejX8=
Subject key identifier: 70:37:03:06:33:14:6A:7E:82:ED:00:CF:62:41:68:C4:67:66:FC:8F
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: F2
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/cDcDBjMUan6C7QDPYkFoxGdm_I8.roa
Signing time: Fri 29 Sep 2023 06:46:30 +0000
ROA not before: Fri 29 Sep 2023 06:46:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 11:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Sep 29 06:46:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7037030633146A7E82ED00CF624168C46766FC8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:60:a9:60:eb:9d:8a:8e:83:6c:10:cf:16:99:
02:78:2c:0e:38:8a:97:01:28:0a:53:92:c4:71:2a:
cd:96:62:98:a0:83:35:6a:2a:c1:b0:e8:56:14:39:
8a:84:81:72:63:46:a0:b4:0a:b1:d9:51:f2:40:78:
8c:1b:ad:ee:08:48:7c:bd:49:c2:92:3b:9c:92:0a:
9a:63:ed:d8:02:1e:a7:d7:88:9b:03:e4:fc:63:dc:
d8:f4:95:a5:e6:96:5f:97:6d:f2:b4:ac:7f:c8:48:
c6:0b:7f:db:d0:3f:26:7a:04:18:f1:26:a5:61:36:
6b:64:7a:84:b3:69:32:d1:5d:8d:2c:8e:23:8a:27:
1e:f9:a8:fd:52:42:38:e1:82:7d:8c:58:bb:7e:7a:
69:66:36:d8:7c:02:f1:7f:01:fb:33:ac:70:4a:66:
77:95:40:79:4e:1f:0d:b8:21:7f:4d:b8:67:0c:23:
82:f0:7d:01:b6:b9:db:1f:25:c9:b9:0b:d3:14:3a:
2d:79:eb:15:c0:e0:8c:75:66:42:6d:92:18:68:ca:
d3:e5:2f:ec:87:49:58:26:0a:b2:34:94:df:ef:08:
ad:f9:17:a5:29:db:58:b5:26:40:37:88:98:0c:32:
f8:e5:d2:1d:cb:97:a1:22:cc:2a:b9:aa:e7:f5:63:
e0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:37:03:06:33:14:6A:7E:82:ED:00:CF:62:41:68:C4:67:66:FC:8F
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/cDcDBjMUan6C7QDPYkFoxGdm_I8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
16:32:46:a8:a4:d6:35:1e:65:82:1e:c3:96:f7:7f:86:02:c1:
0d:2c:37:9f:87:4a:d2:65:c6:1a:f5:e6:f2:2e:92:5b:80:e4:
2c:89:a0:f9:e6:28:5c:7c:27:2f:8d:f9:06:60:8d:73:d3:b9:
5b:78:f0:65:19:3a:dd:52:75:9c:b1:92:10:67:ff:00:18:c1:
6a:2e:28:04:a3:da:6d:01:9c:0f:bc:d4:52:37:e8:6e:1e:91:
22:22:e6:05:74:80:7f:f1:ab:3d:09:25:a7:c1:5b:2e:82:87:
93:f7:f1:04:1e:7f:ef:62:4d:fa:fa:eb:27:30:d2:d7:8d:1c:
ed:6d:b6:20:a4:6d:4e:04:e7:34:0e:8d:ea:49:c5:69:6b:78:
dc:53:8f:aa:db:f9:66:0a:cb:aa:5a:fb:7f:dd:a4:08:02:ab:
b0:93:12:be:96:2a:6a:f7:84:c4:9a:04:a2:3b:3f:33:3b:4e:
70:8e:bd:63:eb:ac:7c:7b:c2:9c:15:9d:df:67:e4:5d:1b:fc:
2a:0e:09:62:1b:da:5e:7c:bc:08:87:ab:0f:ee:bb:7c:95:b5:
2c:a4:0c:6a:6c:f9:08:4a:3e:55:ba:75:56:24:b9:16:47:88:
26:0a:e1:6a:c8:f1:5f:fd:97:4c:91:38:4e:0c:3c:02:7e:95:
31:c5:db:5b
-----BEGIN CERTIFICATE-----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Generated at Mon Jun 24 16:22:21 2024 by rpki-client on console-ams.rpki-client.org