Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ysYC7orI8dZ3K-2P1S_iJPBPntI.roa
File: ysYC7orI8dZ3K-2P1S_iJPBPntI.roa (raw, json)
Hash identifier: 7C+zncohLzWLjWSQiiIBZSyutrbMCF22gwkuNtaO7VA=
Subject key identifier: CA:C6:02:EE:8A:C8:F1:D6:77:2B:ED:8F:D5:2F:E2:24:F0:4F:9E:D2
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0FEE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ysYC7orI8dZ3K-2P1S_iJPBPntI.roa
Signing time: Mon 26 Aug 2024 05:15:53 +0000
ROA not before: Mon 26 Aug 2024 05:15:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9674
IP address blocks: 103.122.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4078 (0xfee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:15:53 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CAC602EE8AC8F1D6772BED8FD52FE224F04F9ED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:09:5b:c6:37:41:ce:16:8e:58:69:14:19:39:
e9:12:6c:48:b9:d6:26:13:50:23:08:c2:b3:a6:69:
42:9c:fe:59:04:57:4a:b9:6e:45:5d:66:09:b2:d0:
0a:40:60:fb:94:28:b4:ea:5f:8c:77:76:5a:7b:24:
8d:af:56:32:b6:98:01:8f:b6:0d:01:5e:85:ed:76:
26:c6:df:e6:38:77:c0:9f:15:00:5f:ac:1c:ad:2e:
5d:4a:a6:de:8e:9b:2d:0b:ad:cd:36:fa:49:b0:a4:
c6:9e:68:70:3d:cc:af:ba:02:d5:92:82:e5:e9:7c:
14:b7:b9:ad:0a:ed:d5:9a:f3:c6:86:64:5c:a4:6a:
0b:a4:a6:73:54:cd:13:55:64:27:9c:3e:76:47:e0:
e6:c8:f1:0a:32:ac:d8:c4:77:e0:8c:d2:88:18:a1:
b4:f6:6c:07:e2:20:73:06:fd:e4:5d:26:3f:3c:5b:
db:ee:7a:53:a1:12:ae:19:93:4a:87:64:7f:7d:ba:
e9:e5:1e:38:78:4b:fa:bd:92:6e:68:8d:34:8a:99:
58:33:05:f9:7c:e0:13:95:01:ce:de:31:97:0d:11:
7d:0a:d4:50:cf:c0:a4:e0:42:b8:ad:b7:d8:72:8b:
75:19:d1:fb:1f:9c:db:fc:3a:51:99:fd:f2:1c:6e:
e7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C6:02:EE:8A:C8:F1:D6:77:2B:ED:8F:D5:2F:E2:24:F0:4F:9E:D2
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ysYC7orI8dZ3K-2P1S_iJPBPntI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.148.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:54:b6:b2:04:53:a1:7d:f0:11:da:dd:ef:79:e0:c8:f0:07:
a0:4d:f8:8c:85:e9:74:be:c1:04:56:4f:33:cb:36:4a:7f:de:
13:46:a8:8f:f6:98:47:0d:27:ad:67:43:18:a9:3f:6c:ea:2f:
ef:95:35:be:3d:ef:67:a0:c1:92:5a:99:da:b4:2b:14:a9:8f:
d9:7e:dc:32:a7:88:da:4d:d2:e4:95:0e:38:71:d8:67:5a:98:
ba:77:9b:82:9c:25:03:f8:d8:e5:45:69:fd:b1:f6:27:3f:64:
e0:fa:3e:b5:7f:7a:af:6a:b0:bc:fa:30:6c:21:c5:04:da:d2:
f5:c4:a8:6e:52:09:99:0b:77:71:40:70:27:ac:8b:76:c4:3c:
3f:69:52:90:6d:41:b6:c2:35:7f:f9:31:7b:d8:9e:63:84:5a:
e1:a3:79:0e:bf:a1:d5:37:2c:ca:a9:6c:18:4f:40:2e:87:34:
01:69:06:eb:03:17:6a:23:50:05:d9:5c:e7:7d:a2:3e:a8:7c:
b1:96:eb:43:f0:85:57:d7:c7:0f:6c:76:94:16:ba:cd:c7:dd:
26:1e:d6:a1:16:b7:95:aa:fd:8e:d5:47:99:6e:1f:14:6b:84:
07:5b:00:17:7b:b9:4a:72:c2:39:3d:0d:34:6d:86:11:0e:f8:
4d:56:7f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:37 2025 by rpki-client