Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/W4uIff_V75yX4xGITNXd3NzVRcI.roa
File: W4uIff_V75yX4xGITNXd3NzVRcI.roa (raw, json)
Hash identifier: YHYzVtruLaKjr9tiuGTsOfe7crc+wNdV0+NKZbVnePc=
Subject key identifier: 5B:8B:88:7D:FF:D5:EF:9C:97:E3:11:88:4C:D5:DD:DC:DC:D5:45:C2
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0671
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/W4uIff_V75yX4xGITNXd3NzVRcI.roa
Signing time: Mon 26 Aug 2024 05:18:39 +0000
ROA not before: Mon 26 Aug 2024 05:18:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.98.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1649 (0x671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Aug 26 05:18:39 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5B8B887DFFD5EF9C97E311884CD5DDDCDCD545C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:04:d6:3f:c1:02:56:72:df:30:cd:63:74:4a:
7b:aa:6d:49:82:ac:94:d9:0f:4f:d8:d1:83:e9:dc:
07:3a:cb:49:b4:db:25:bf:fc:3b:b1:b5:10:68:c4:
77:db:b6:ed:f1:51:bb:13:08:23:e1:44:eb:69:cd:
b4:52:55:c7:00:df:9a:e9:99:48:70:c4:f2:92:ed:
9d:a5:3d:11:30:d8:26:ee:bc:8d:95:9f:b9:25:5e:
95:41:49:3a:4a:78:66:f0:c7:da:fe:96:b4:0a:11:
32:44:e0:78:34:72:49:a8:34:27:3e:50:99:34:65:
76:00:e6:98:8e:05:f6:f8:3e:9a:dd:17:b5:db:b7:
79:bd:ba:cf:08:2d:20:f8:bd:da:a2:c5:22:44:67:
6a:c7:9a:be:97:f3:30:15:1d:57:a5:5a:90:e2:97:
89:d7:0c:51:0a:a0:9a:0e:29:e6:b7:4d:74:53:9c:
84:c2:00:17:b8:b7:ed:7d:1f:03:5e:27:19:b0:a1:
f8:95:1f:39:f6:68:95:da:c2:9c:13:a6:dc:9b:1e:
09:10:b9:d3:48:6c:5d:9a:4b:c3:da:60:49:73:2c:
da:b9:bc:43:f7:c8:6a:f8:8f:68:e7:2b:32:65:bf:
66:a0:f1:38:3a:59:28:e1:d3:42:ad:be:64:7e:67:
90:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:8B:88:7D:FF:D5:EF:9C:97:E3:11:88:4C:D5:DD:DC:DC:D5:45:C2
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/W4uIff_V75yX4xGITNXd3NzVRcI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.73.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:61:22:6a:0b:16:c9:aa:31:34:97:dd:56:ce:c1:5b:8d:0e:
4d:d2:85:89:00:6b:c6:be:97:23:15:eb:3a:9b:b6:6f:94:07:
ec:be:10:59:7f:ab:db:0e:8e:05:1c:cc:5f:03:24:0c:31:41:
9e:7b:0a:6c:33:8f:9d:9c:b1:94:0c:4f:bf:e7:4f:17:de:61:
d6:dd:f1:39:2a:3a:c6:b2:ed:7c:dd:43:88:7d:84:1a:b3:96:
24:1f:44:e8:ed:52:ea:9d:82:9d:39:ec:db:3b:e3:95:95:56:
fa:79:b1:7f:3a:7a:3f:6a:c6:fe:09:31:b4:e6:f0:08:d5:17:
3c:56:2e:9d:84:98:68:a1:92:12:4b:59:91:b6:31:a5:f9:70:
03:30:73:60:e8:b8:b5:ca:ef:4b:0a:09:00:69:21:9d:a5:c1:
cc:97:cd:22:5c:15:80:da:58:0e:d9:e5:d3:91:7a:64:4c:31:
63:ea:fa:75:cf:90:ed:54:1a:50:2e:49:bf:14:dd:1c:b0:66:
6c:ba:d3:4a:cc:e7:49:36:cc:33:bb:9c:1d:46:fe:2f:73:08:
40:4d:07:58:17:07:d4:d4:9e:83:e0:ee:a8:41:e7:a2:d8:51:
d9:44:fe:88:ce:ac:ff:75:53:06:46:d0:8f:bd:0a:bc:a8:46:
73:b7:d6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:04 2025 by rpki-client