Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/X64nHS5fVFMCfjm-798D6oboYf8.roa
File: X64nHS5fVFMCfjm-798D6oboYf8.roa (raw, json)
Hash identifier: jbDd7x76bsGFS6WLHIN/Uu1tCy1eex0Zza3PMAf+IDs=
Subject key identifier: 5F:AE:27:1D:2E:5F:54:53:02:7E:39:BE:EF:DF:03:EA:86:E8:61:FF
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0C50
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/X64nHS5fVFMCfjm-798D6oboYf8.roa
Signing time: Mon 26 Aug 2024 05:12:03 +0000
ROA not before: Mon 26 Aug 2024 05:12:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 103.130.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3152 (0xc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Aug 26 05:12:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5FAE271D2E5F5453027E39BEEFDF03EA86E861FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:52:07:14:14:1e:e0:03:37:ec:11:0f:be:d6:
1e:39:00:c1:bd:1d:90:08:65:16:d3:a0:e0:4f:0c:
bf:07:fd:43:05:71:a8:fa:dc:8c:50:56:60:c8:07:
77:be:f9:bf:af:64:e3:33:f5:3a:6e:1d:23:ac:11:
5b:e1:cb:42:aa:7e:18:d2:65:d8:3f:01:9b:a5:a5:
80:43:62:36:60:43:73:1d:22:66:af:e7:35:55:f5:
28:be:62:19:1c:72:8d:37:dc:c8:04:24:32:aa:fd:
2a:2a:16:6d:89:55:65:89:cf:ac:ab:30:37:2c:f8:
72:62:cc:d1:b5:6a:c6:5f:0e:3b:4f:68:e5:ae:15:
e2:e0:10:8e:97:86:79:53:5c:c3:ef:ee:a2:06:c1:
d9:bb:9c:e0:85:a6:32:5f:68:b8:86:d7:30:d1:ac:
63:cc:f8:5c:07:8a:73:3a:96:34:52:11:5b:84:69:
5c:9a:42:28:03:1b:a1:08:80:bd:96:92:cf:61:27:
a3:78:27:68:75:83:e3:14:bd:d7:71:b4:1f:0c:59:
cb:9d:c9:4d:e2:29:be:f4:16:84:16:94:7c:05:1b:
25:5e:15:5f:92:fe:ef:1e:f0:73:27:f7:2f:f4:44:
3c:18:f6:0b:30:3b:41:66:34:2f:8a:96:7e:71:54:
00:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:AE:27:1D:2E:5F:54:53:02:7E:39:BE:EF:DF:03:EA:86:E8:61:FF
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/X64nHS5fVFMCfjm-798D6oboYf8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.36.0/22
Signature Algorithm: sha256WithRSAEncryption
02:fb:cd:e2:0f:9b:ac:15:2e:cd:ff:9b:a3:2b:bc:1a:0d:59:
5d:a8:6c:03:fd:73:01:d8:7d:54:79:44:ed:8f:77:80:c1:f9:
3f:79:b0:2e:7d:be:aa:6a:43:7b:43:c1:9e:c4:45:ab:53:3c:
47:1e:e7:bf:5c:11:d4:70:9e:47:de:e8:97:a6:b5:2d:8b:0d:
05:de:80:9e:6c:17:fc:4c:72:9a:ea:da:a4:e2:f9:91:a7:09:
dd:8d:9c:fa:00:2f:e0:9b:b3:e5:a7:89:63:5e:fd:47:23:f3:
fc:8b:e5:f5:19:35:bf:39:c5:18:6d:d5:f4:f4:fa:5d:e1:50:
8d:a4:15:d2:4d:55:07:d8:99:e1:6d:af:8d:29:3d:c0:24:7e:
b7:ef:c1:41:24:84:26:8b:93:a0:59:c9:30:e4:de:c0:4c:af:
de:31:b8:05:ed:e8:75:2f:db:ad:96:49:d2:5e:2b:19:8d:97:
59:56:ad:45:4a:c4:50:d7:a5:67:cf:d8:a2:6d:ee:d0:3a:4d:
84:b7:23:35:97:ff:70:eb:77:d1:e5:e3:f1:53:bf:50:c1:0f:
71:17:56:21:52:e5:9b:54:13:63:cf:5e:48:8d:72:76:ad:5c:
7f:62:3a:2d:05:32:17:95:98:59:8c:73:1b:55:11:d0:0c:4a:
ae:fd:8a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:50:27 2025 by rpki-client