Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa
File: jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa (raw, json)
Hash identifier: VsMzUSR73ZSOdfVa7Z9+hKbo2f7bOamjG6h/f0hrLKU=
Subject key identifier: 8C:CD:14:85:A9:32:F8:7F:02:18:70:2D:34:6E:7A:09:CD:AC:EE:1B
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06CB
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa
Signing time: Mon 26 Aug 2024 05:18:28 +0000
ROA not before: Mon 26 Aug 2024 05:18:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1739 (0x6cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8CCD1485A932F87F0218702D346E7A09CDACEE1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c1:43:ca:11:67:59:a8:9a:8a:95:00:ff:e3:
31:c1:cc:5c:52:a9:a8:59:b7:13:66:0a:b9:64:e5:
73:35:6a:90:99:bb:fc:a4:31:1c:08:ad:16:d0:57:
95:58:da:52:b4:d6:ac:f1:0c:a3:e3:23:c1:3a:50:
59:df:83:98:e0:93:9a:b6:1e:66:5c:5e:6c:b4:57:
e5:30:05:80:4b:76:bf:1c:3a:78:ac:95:2d:9a:2f:
db:e2:ce:09:a9:52:71:de:1b:24:30:3c:da:f3:e8:
f1:6d:27:01:e2:a1:a4:8a:0a:cb:b2:65:14:d6:36:
52:c1:04:0e:26:e3:e0:33:3d:e5:6c:6e:08:b1:66:
aa:80:1f:0a:37:ad:33:e0:28:e5:47:b8:4e:cf:65:
c5:04:24:de:ac:c8:a2:a5:0a:6f:25:e1:1f:d5:9b:
02:ae:5f:c0:d2:5d:e8:cd:e9:ec:c2:c6:6e:2c:58:
29:64:c6:26:fb:20:c2:33:e9:20:31:4d:99:36:5c:
4b:aa:56:fe:b3:19:39:70:88:f5:4c:2d:23:a5:f2:
f2:8e:e7:ae:c1:79:10:2f:d9:2c:32:53:68:cf:1a:
48:09:63:75:23:ea:f4:f4:49:41:85:f3:8d:a8:d8:
8f:80:d4:90:ae:5e:af:69:85:6e:09:6b:71:1b:59:
b2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CD:14:85:A9:32:F8:7F:02:18:70:2D:34:6E:7A:09:CD:AC:EE:1B
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:26:e4:c8:a0:88:60:4e:88:54:3c:a2:31:15:73:dc:a0:f5:
b9:c1:b7:0a:c6:66:8c:c9:fe:f7:00:0b:41:87:42:a0:c2:2c:
50:df:53:9f:cb:1f:ed:63:24:95:88:95:7e:e3:00:cd:0d:ee:
8e:55:cb:13:39:6a:94:d7:fd:47:d4:93:6e:57:ca:f0:0a:79:
37:00:20:9b:b6:72:5a:45:64:8f:32:a1:67:5f:ed:c8:09:d5:
e4:54:6d:18:f5:c1:51:4e:87:48:a2:38:44:d2:7a:74:70:7c:
8e:9e:cc:64:43:e4:a3:bd:6d:43:2d:96:72:00:5b:61:8b:a6:
61:10:11:8e:46:99:98:42:ec:37:8d:0f:a7:e7:9e:bf:c9:fd:
f9:26:08:74:98:c2:c7:24:f9:78:71:b3:43:6b:7c:49:4d:f7:
b6:ff:7c:68:2a:e0:5f:1f:55:a2:65:6c:3a:f4:f3:12:8f:e6:
0f:10:45:2e:d8:f0:a3:60:6a:56:20:3d:c0:43:f0:6f:a6:76:
df:e6:cd:3b:3d:64:85:c8:7d:3a:5a:e2:2e:af:c7:1f:9a:3f:
0d:ff:ca:67:e0:c5:ed:0c:97:3a:f5:17:12:54:37:6f:8d:50:
fb:f1:f3:69:42:73:f4:09:a2:08:c2:66:4a:f7:9c:58:ea:46:
72:dc:da:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:40:07 2025 by rpki-client