Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/EidG3oPlwC4ajR5ic4KFlL3Vpwc.roa
File: EidG3oPlwC4ajR5ic4KFlL3Vpwc.roa (raw, json)
Hash identifier: iWCWcMIZmVMTgheY8fM4mAyff8HJ5hvyXGkx8jzbjhM=
Subject key identifier: 12:27:46:DE:83:E5:C0:2E:1A:8D:1E:62:73:82:85:94:BD:D5:A7:07
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 01CA
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EidG3oPlwC4ajR5ic4KFlL3Vpwc.roa
Signing time: Tue 13 May 2025 04:14:36 +0000
ROA not before: Tue 13 May 2025 04:14:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 157.20.248.32/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 26 May 2025 09:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458 (0x1ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: May 13 04:14:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=122746DE83E5C02E1A8D1E6273828594BDD5A707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fa:f2:ee:ed:2a:bd:22:7a:3c:46:d3:a3:1e:
05:42:14:cc:07:2c:4b:b7:e4:0d:86:1e:5b:69:c2:
0d:dc:82:28:a1:6d:2e:ef:26:ce:73:89:08:b0:a8:
3e:41:88:42:3c:0f:8e:22:b9:52:0a:f3:3a:bf:d2:
d8:ef:f6:05:66:f4:c8:cd:24:2d:7f:cc:f5:94:5a:
ef:00:7a:de:18:c9:c1:0a:ac:b3:7c:8b:6c:f8:38:
65:87:1a:0a:92:63:d3:b7:bc:e9:cf:42:88:65:a1:
50:5d:62:e0:71:59:4d:0e:b6:7e:dd:0b:39:5c:52:
05:0a:10:66:1d:e1:22:2f:80:9b:08:87:53:f0:8b:
1e:dd:38:3f:5b:85:57:72:27:a7:60:50:66:53:0d:
6d:56:f8:b9:89:3d:1f:2a:7b:a6:37:06:df:af:60:
0e:f2:bc:1f:ab:44:24:a5:b6:df:da:a5:6d:96:fa:
11:af:06:9b:2c:d6:f8:94:5c:d2:53:23:dd:96:6c:
69:be:08:cb:d3:64:01:2e:66:ad:af:d4:a1:19:88:
3c:f3:22:9a:79:82:cb:32:08:05:6f:5b:48:31:14:
46:57:3b:fa:f0:21:8f:cc:42:69:ce:0e:8b:11:f2:
69:0c:33:40:5f:b2:26:65:a1:0c:d8:92:3c:50:58:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:27:46:DE:83:E5:C0:2E:1A:8D:1E:62:73:82:85:94:BD:D5:A7:07
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EidG3oPlwC4ajR5ic4KFlL3Vpwc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.32/32
Signature Algorithm: sha256WithRSAEncryption
58:e3:e5:f1:d1:4d:39:16:aa:b2:64:11:32:d6:63:56:4a:24:
76:c8:c3:e0:31:49:80:97:36:97:cb:73:7a:63:02:40:12:08:
99:ff:d0:20:70:da:4e:3a:c3:cd:e6:fc:63:d5:83:be:75:d8:
8d:b3:91:79:47:a3:20:e0:84:e9:94:b2:26:87:bc:0d:8f:7f:
ab:3d:c9:5e:e7:4c:2d:b9:57:ff:f8:ff:03:56:fb:c3:32:ee:
f9:99:ff:ae:0d:33:79:48:3e:66:be:42:ff:36:89:b9:68:7a:
ee:4b:84:41:58:9f:16:38:e9:cb:95:8a:48:ba:b6:7c:e9:2e:
3c:59:45:f7:a4:a5:4c:36:6f:1f:4f:bf:9a:8c:ed:71:1e:eb:
71:74:4e:5c:cc:43:de:eb:90:dc:42:d3:2e:7e:15:d6:0e:40:
3d:20:28:da:d6:f2:67:d7:f8:94:ca:e4:57:f4:9a:ab:9e:90:
3a:a7:dd:87:96:82:f1:d4:ae:51:f2:e4:e3:6a:77:00:e2:05:
71:0b:aa:9f:06:c1:91:60:c6:9f:70:52:b5:a4:7f:e1:06:34:
4b:8a:76:ac:83:b8:a6:ea:d5:72:be:2d:1d:75:36:d4:12:36:
1f:89:4d:ad:b3:f6:d5:6a:e0:14:76:07:ac:8e:3e:33:9c:14:
8d:94:d3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:43:41 2025 by rpki-client