Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/iLUJYmUoxd_Ll7_5HprswuR3mrY.roa
File: iLUJYmUoxd_Ll7_5HprswuR3mrY.roa (raw, json)
Hash identifier: UTfI2A2goXZoGLht63vbi9urpMcoZEs7Az09IAmqEB0=
Subject key identifier: 88:B5:09:62:65:28:C5:DF:CB:97:BF:F9:1E:9A:EC:C2:E4:77:9A:B6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 103E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iLUJYmUoxd_Ll7_5HprswuR3mrY.roa
Signing time: Mon 26 Aug 2024 05:16:12 +0000
ROA not before: Mon 26 Aug 2024 05:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 203.79.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4158 (0x103e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=88B509626528C5DFCB97BFF91E9AECC2E4779AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:c3:4d:fe:ca:1f:f3:9e:70:68:ad:01:a3:
b0:85:e2:27:9b:3f:d3:e5:3a:5c:24:fa:8d:fd:50:
4c:18:15:92:49:99:4c:2d:70:92:a3:39:60:99:5b:
52:b6:3b:c1:37:9e:2f:c9:4f:77:28:8d:43:d6:56:
4b:0a:82:9e:61:2c:d0:6d:f9:d7:69:2e:29:d4:3e:
cd:7e:49:46:3e:73:c8:ea:1a:48:e8:95:6b:24:c7:
9c:36:86:80:85:6e:a2:54:79:b7:18:3c:27:98:1c:
8f:6d:74:c4:43:c8:9b:18:f0:1b:40:42:d7:c1:6c:
4d:e1:95:69:7c:22:ac:a7:3a:eb:37:47:fa:95:ef:
9e:a8:d0:c7:5a:30:88:f8:46:7c:de:1c:93:ab:60:
b0:8f:0d:10:e0:7e:02:8d:4e:b1:42:3d:a4:42:0b:
9c:cf:42:6f:83:e0:5c:73:10:0c:60:4d:55:2b:f0:
d8:81:bd:af:6a:bc:e0:51:7b:c0:55:4c:88:cc:8d:
49:47:40:80:63:a9:74:95:35:38:cf:8c:c6:25:8d:
37:63:fb:ad:19:79:ca:a2:a8:6b:64:db:7e:28:f5:
a7:59:7e:67:40:ab:77:86:7d:a7:9a:19:18:21:bc:
bc:1d:28:7f:b8:b7:01:22:6c:5f:71:04:d1:a6:b1:
61:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B5:09:62:65:28:C5:DF:CB:97:BF:F9:1E:9A:EC:C2:E4:77:9A:B6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iLUJYmUoxd_Ll7_5HprswuR3mrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.232.0/21
Signature Algorithm: sha256WithRSAEncryption
c2:b7:ec:99:54:be:f2:86:ac:34:9e:38:42:80:a7:ca:f1:e2:
bd:5a:42:be:0d:c7:8c:61:20:5a:d2:01:d1:15:1f:27:c9:40:
35:4e:6b:61:c7:15:5d:23:a4:4c:54:19:7e:35:93:9c:5e:30:
1d:5e:50:97:04:3b:fd:df:12:3f:2c:14:3c:93:ab:85:db:4c:
8b:5f:3b:e5:f1:fc:4e:ce:2c:f4:58:70:06:4a:3a:61:88:55:
90:05:61:f6:c3:bc:d2:a2:fa:ac:ce:2c:e9:cf:fc:c7:65:4d:
74:67:9c:d4:72:7a:94:aa:c0:c7:f0:3b:69:7c:8c:b5:eb:70:
43:7a:04:92:14:34:52:8b:c1:bf:64:c6:e6:0d:ee:7a:4f:c1:
44:1b:cf:4d:d8:4e:ed:d9:4a:17:24:a1:3a:2f:75:be:bf:aa:
83:95:6a:50:8b:91:42:e1:62:66:28:67:63:d6:0d:36:0e:59:
4d:79:2c:3d:24:40:a4:32:bd:d1:9b:f6:e8:4a:4b:07:b8:6c:
2a:2d:67:58:61:e4:fa:be:d9:71:58:4e:14:fc:c9:f8:bb:16:
99:7f:b4:f6:8d:e2:e2:2a:40:2c:1b:c0:a7:46:69:28:3a:d4:
ec:7e:bf:e1:56:f7:45:8f:b8:3e:53:61:25:7c:d7:3c:4e:60:
0d:66:c2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:02 2025 by rpki-client