Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/88Gl4nKKQcdRdBy8vhykd8fHpN0.roa
File: 88Gl4nKKQcdRdBy8vhykd8fHpN0.roa (raw, json)
Hash identifier: lPHVjNqcssltoCHUUKXBZvpQGzRYZCfU2iI7o5N522g=
Subject key identifier: F3:C1:A5:E2:72:8A:41:C7:51:74:1C:BC:BE:1C:A4:77:C7:C7:A4:DD
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0C5A
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/88Gl4nKKQcdRdBy8vhykd8fHpN0.roa
Signing time: Mon 26 Aug 2024 05:12:20 +0000
ROA not before: Mon 26 Aug 2024 05:12:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:49:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3162 (0xc5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Aug 26 05:12:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3C1A5E2728A41C751741CBCBE1CA477C7C7A4DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:83:23:ac:ec:18:12:8d:1a:1e:53:7d:83:b3:
a1:bd:54:27:37:ba:7d:0c:19:58:ed:47:55:01:ba:
10:5a:c4:92:27:b8:20:ae:89:9e:f3:cb:c9:5b:0a:
f4:64:43:da:b9:24:a3:30:77:ee:20:80:42:05:74:
b3:8a:c8:a7:6f:72:3c:38:ec:da:d8:30:73:46:99:
5e:8c:a5:eb:d3:99:9a:bb:b6:ea:ab:a8:87:e7:97:
5e:7c:3c:da:49:60:1a:8b:d3:63:95:61:89:e5:ac:
03:88:dc:79:50:93:8c:f1:5c:db:2c:6b:b5:48:2b:
af:0d:80:f8:85:32:3d:35:b9:88:12:93:33:cf:4f:
d3:e1:67:03:06:33:c9:29:4e:96:1c:09:d1:5a:7b:
85:75:ff:a5:3d:36:15:ac:63:7a:26:10:00:b6:e3:
a9:0a:b9:43:dc:6e:bb:39:5b:55:03:e2:b5:d1:2a:
15:34:59:b6:bc:80:f3:e1:9a:ee:5a:1b:05:c7:b2:
68:0b:04:92:10:44:12:48:2f:13:de:a6:31:22:08:
25:57:ab:91:40:02:c1:dd:80:9b:f1:a0:66:e6:a1:
8d:66:f7:a4:70:bc:4a:41:4a:b7:2b:28:34:80:ed:
b2:74:77:ae:d9:17:d6:da:be:50:bf:8e:87:9b:46:
3d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C1:A5:E2:72:8A:41:C7:51:74:1C:BC:BE:1C:A4:77:C7:C7:A4:DD
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/88Gl4nKKQcdRdBy8vhykd8fHpN0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
33:7d:4f:00:37:ca:26:21:23:70:53:73:12:b8:79:4d:85:86:
70:2f:7c:c3:2f:d9:d5:28:16:e4:47:1e:ba:36:ce:7e:7a:4e:
ab:1b:ef:20:b2:5e:47:88:93:55:af:7d:86:83:9b:36:ef:30:
46:b1:8a:36:39:c9:d1:79:ae:af:3d:f0:60:96:2c:04:b6:90:
3e:d9:84:a3:9a:78:db:94:7f:61:a7:c2:60:6f:a2:f2:a9:8a:
b5:b8:45:e5:34:ce:a5:8e:3d:db:af:ee:9e:70:d9:3c:bd:1f:
dc:06:8d:59:7e:49:c1:7a:fb:f1:0d:59:07:4d:40:db:aa:5e:
75:99:31:4e:e8:1b:65:1c:76:82:a7:08:b6:61:11:bf:bb:0c:
44:be:51:9b:a0:7b:26:73:9f:b3:49:b1:07:c1:00:b4:0f:52:
ba:b9:c4:e8:26:26:71:ce:b7:ca:99:df:f9:de:28:af:26:2d:
ed:8d:0e:21:3c:ed:c4:7f:72:e2:f9:92:00:6b:7c:e3:df:05:
66:7a:c3:ae:fa:55:fe:19:5a:f5:2e:53:34:62:65:36:2c:b5:
5d:cd:38:c3:d2:05:be:41:b5:fe:26:ea:14:cb:3f:48:0c:d5:
95:76:70:62:87:0f:9a:a6:eb:32:2b:a4:20:ba:81:e8:2f:ba:
7f:59:dc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:51:59 2025 by rpki-client