Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa
File: 2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa (raw, json)
Hash identifier: E5GWlMrxkmMolmrgsOpex0OOKsnckMB2Phbh9Fg7xVA=
Subject key identifier: D9:5F:44:62:19:44:DE:28:26:E2:4B:7F:46:A6:75:FB:7A:74:3C:4B
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 0BAE
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa
Signing time: Thu 14 Mar 2024 10:31:36 +0000
ROA not before: Thu 14 Mar 2024 10:31:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131601
IP address blocks: 114.29.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 03:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2990 (0xbae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Mar 14 10:31:36 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D95F44621944DE2826E24B7F46A675FB7A743C4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:32:d9:ac:1a:0f:75:12:d5:c3:d8:1e:78:c1:
30:e9:83:4b:ca:54:db:65:0b:12:46:50:ac:5f:2a:
da:22:a5:dc:c7:04:19:ac:ea:0d:f8:80:a3:ed:5c:
bd:53:c1:4c:cc:6f:e6:d2:c3:30:e0:2b:7f:db:c4:
07:0b:d9:10:85:76:d7:21:7a:ff:0d:f1:23:6d:9a:
3e:82:7c:d6:08:13:ea:aa:e3:eb:63:28:70:fb:55:
99:94:87:80:e7:26:48:87:87:73:7d:69:72:8a:4f:
d1:63:2e:de:9f:bc:a4:23:1b:d1:58:f7:b7:be:4a:
bc:20:01:41:b0:83:e2:3f:a4:af:63:ef:42:f6:68:
ba:89:8f:35:e7:5d:d6:b9:ad:74:c7:32:20:fc:e8:
78:68:60:ed:84:25:e5:ac:db:59:a6:1b:bf:5f:97:
06:97:33:f6:72:82:5d:70:d0:1a:4b:b4:74:9f:43:
86:82:df:9d:96:78:a4:71:5b:f0:b4:28:60:06:f9:
31:ce:d4:57:af:4b:ef:56:4b:24:60:d0:cc:33:41:
49:be:c5:b5:ea:3b:f1:74:f3:cb:f3:81:d4:0c:95:
77:00:01:95:a5:aa:d7:f5:ab:df:dd:88:3c:67:7b:
03:67:ac:df:ca:dd:16:ff:eb:79:05:fe:1c:0a:f7:
1b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5F:44:62:19:44:DE:28:26:E2:4B:7F:46:A6:75:FB:7A:74:3C:4B
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c5:0b:06:a8:ac:04:2f:7c:c3:a2:f0:0e:ca:e4:69:63:c7:
83:ee:4c:d2:fb:f6:b9:75:df:d1:40:d6:ce:9f:3b:e7:ef:ad:
0f:4c:fe:4b:a7:2f:b4:a1:07:5d:53:45:3b:1e:bf:58:b0:6a:
7c:50:b8:44:07:f5:87:5d:fb:07:e5:2b:91:cd:ec:b3:46:0f:
53:d5:e5:66:57:7b:0f:86:33:57:52:85:0a:92:f5:9c:53:38:
38:0d:72:b0:e1:01:6b:8f:6a:ac:90:49:ed:94:33:39:7e:e1:
d2:35:3b:77:f9:9c:8a:f3:a1:10:99:03:82:ba:f0:28:a9:da:
9e:04:43:ed:f0:d0:4d:2b:37:08:a1:01:9b:13:97:fe:ec:21:
d0:76:b9:a2:e3:ef:c9:0b:85:98:15:ea:6d:11:44:04:8d:1d:
3f:8f:b6:13:5a:bb:a4:0e:f2:c8:0d:c3:68:4a:db:7c:c0:e5:
ef:71:06:f4:0f:74:bf:94:ab:66:4f:3b:1a:a2:0a:c1:95:de:
76:a6:c8:e8:6a:ea:30:3c:b1:15:9c:34:b0:bc:44:15:1d:42:
1e:d6:e2:f1:44:92:0c:49:ad:27:bd:a6:d5:2f:37:cf:e3:bb:
19:5d:96:92:37:c4:3a:b3:53:22:52:69:86:39:5a:a8:ac:e0:
3e:e2:0d:b5
-----BEGIN CERTIFICATE-----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Generated at Wed Jun 19 06:51:18 2024 by rpki-client on console-ams.rpki-client.org