Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/IOEpU6JFpEn6Qqi2OQcAmfXK_XE.roa
File: IOEpU6JFpEn6Qqi2OQcAmfXK_XE.roa (raw, json)
Hash identifier: wpd7QbBNMbPzB3mjebafbNfOTRdAYyCXTsZApZQ2lAs=
Subject key identifier: 20:E1:29:53:A2:45:A4:49:FA:42:A8:B6:39:07:00:99:F5:CA:FD:71
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 0984
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/IOEpU6JFpEn6Qqi2OQcAmfXK_XE.roa
Signing time: Mon 26 Aug 2024 05:18:43 +0000
ROA not before: Mon 26 Aug 2024 05:18:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131666
IP address blocks: 103.144.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2436 (0x984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Aug 26 05:18:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=20E12953A245A449FA42A8B639070099F5CAFD71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:42:8a:bd:1b:a1:52:46:17:fb:2b:1e:71:eb:
15:8b:52:b6:ec:65:ce:6b:47:20:85:b6:5f:af:dc:
05:f8:41:ed:78:7d:c7:1d:54:99:3e:eb:50:f0:b8:
31:1b:f0:97:d4:dd:8b:4e:19:04:04:6c:4f:70:05:
b5:82:20:05:8f:13:08:3b:75:7e:29:8a:60:83:1c:
d3:62:51:74:44:f0:49:69:ec:78:91:4a:9a:44:06:
bb:fc:d0:fa:ff:53:f7:fe:3e:2e:6a:25:dc:61:99:
cc:39:ef:d8:7e:65:1c:21:f4:99:30:03:02:14:46:
0e:da:75:d2:34:88:c6:ba:ce:5d:39:e1:d2:e2:24:
3b:a8:27:14:7e:22:3d:cb:6f:b3:64:3e:a4:56:af:
de:0f:f1:be:41:b1:62:86:6c:45:d2:e4:a1:28:64:
15:02:5a:c1:d9:08:33:5b:87:9e:32:9a:ba:4e:35:
4c:43:ed:51:c8:01:5b:83:ad:52:05:e0:8f:d3:45:
68:f7:28:cf:08:75:b0:b8:a1:04:6f:60:57:0f:71:
b9:6f:45:f1:24:e8:3f:8e:11:1f:71:97:d1:bd:1b:
3e:5b:ea:fe:16:3c:df:25:e0:9e:dc:28:69:fa:2b:
5a:cc:17:2d:58:78:19:fa:f9:42:95:65:b8:02:a4:
41:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E1:29:53:A2:45:A4:49:FA:42:A8:B6:39:07:00:99:F5:CA:FD:71
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/IOEpU6JFpEn6Qqi2OQcAmfXK_XE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.34.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b7:fc:76:62:a9:86:5d:2a:21:3f:dc:e2:47:ec:66:3a:74:
4f:5d:fb:d9:5b:c7:e1:64:ca:98:48:ca:38:21:89:93:9f:db:
62:1e:18:55:ea:b3:bd:29:4d:c4:2d:01:be:5b:17:f7:70:b8:
85:e6:77:e9:69:8c:ce:88:1d:bb:46:c9:0c:5a:71:bb:2e:e2:
34:12:17:b0:9f:6e:29:b9:10:3e:dd:40:80:72:4c:16:41:6f:
68:e3:c2:27:f4:28:1b:18:1e:e6:d3:77:9f:b1:fd:2a:cc:64:
fd:95:7c:88:1d:69:17:87:de:af:10:0c:02:60:15:7f:8a:d3:
c7:c7:dc:73:79:35:ae:c8:19:48:cc:43:1b:81:55:81:ab:f3:
97:80:f1:9a:bd:a6:04:f2:06:75:f9:bc:a5:50:5b:32:59:32:
3c:f7:9b:95:96:b0:05:3d:6b:83:75:59:7c:96:c1:56:75:d7:
5b:e5:25:76:5a:23:f1:b2:b9:4b:ae:5d:c5:37:c9:84:3b:cc:
50:dc:b6:34:9d:e1:f3:f4:38:85:e6:30:3a:b3:f8:45:5a:d0:
48:85:ae:4a:5c:22:d7:d0:11:e4:3e:6b:35:59:ff:4e:e4:a6:
85:36:45:61:77:22:18:24:c2:5c:56:7c:68:6d:52:a5:02:5d:
0f:92:d7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:16 2025 by rpki-client