Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/EtoVl_EII4jlc4FItU0qUx2fBAU.roa
File: EtoVl_EII4jlc4FItU0qUx2fBAU.roa (raw, json)
Hash identifier: 1LgLw2UYi+n5wMjjN4bw1VenkJJgxHld/6d+zHezbKU=
Subject key identifier: 12:DA:15:97:F1:08:23:88:E5:73:81:48:B5:4D:2A:53:1D:9F:04:05
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: D5
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EtoVl_EII4jlc4FItU0qUx2fBAU.roa
Signing time: Wed 27 Nov 2024 05:13:42 +0000
ROA not before: Wed 27 Nov 2024 05:13:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 157.20.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213 (0xd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Nov 27 05:13:42 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=12DA1597F1082388E5738148B54D2A531D9F0405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:34:93:b4:52:b7:da:87:be:d7:e2:9d:49:
5a:36:5a:be:2c:6f:95:96:84:1e:88:b5:c9:40:55:
8a:12:f8:1e:92:4c:b4:c0:ef:17:93:fa:51:a5:80:
a9:f2:fa:ff:d1:29:c3:d7:50:31:67:26:eb:3d:06:
57:99:33:44:8a:d9:77:37:d7:45:3a:4b:8e:b4:ad:
99:c9:65:9b:22:f7:fc:6d:61:1f:dd:60:a0:a2:d7:
d1:71:30:2a:12:2c:85:7c:30:ad:b6:41:43:02:1c:
14:fc:f4:af:43:31:bc:48:04:ef:a1:fc:f7:c2:e2:
bb:70:ea:ed:ba:4a:70:6d:c7:d3:c3:ea:b4:26:0b:
b7:8b:aa:09:59:ea:a5:bc:11:f4:51:f0:6d:47:df:
aa:90:d8:e8:38:e2:8c:02:64:ca:13:98:42:8b:05:
55:70:ea:97:ef:67:77:6e:df:41:1a:5c:5e:fd:ac:
e4:a4:1c:ec:1c:ae:5c:6b:1f:8a:76:5a:b5:67:b0:
63:40:bb:6e:f5:31:dd:41:f3:e3:ed:62:53:e2:76:
08:2f:8c:fc:79:1d:d6:d1:0e:63:9b:fb:fd:e9:4b:
41:be:6b:b3:d6:f2:e9:49:4f:9b:e7:03:c9:54:1d:
2a:6b:88:e5:59:cf:13:9b:21:c7:71:53:46:e7:27:
e4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DA:15:97:F1:08:23:88:E5:73:81:48:B5:4D:2A:53:1D:9F:04:05
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EtoVl_EII4jlc4FItU0qUx2fBAU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.0/24
Signature Algorithm: sha256WithRSAEncryption
71:47:3d:7a:e2:ab:de:c0:89:91:10:1f:aa:73:b0:a8:1b:2a:
21:17:1f:1e:0d:84:85:b3:24:cd:94:37:21:46:a6:1f:1d:94:
84:9c:a3:06:21:92:90:c7:ac:79:ac:3e:e9:95:c0:aa:e4:4e:
e5:0f:c3:21:f0:56:c9:1a:38:9d:a0:85:a6:f8:a5:b7:9e:01:
04:4d:a0:dd:db:0e:36:c3:70:bf:bc:a9:a7:45:75:b1:b6:fd:
fc:32:55:fe:51:00:d2:d9:38:8a:f1:90:18:97:dc:10:0a:ac:
97:e4:12:47:26:99:f7:4d:a9:69:1f:c8:59:be:f0:2c:25:00:
85:d6:82:61:57:05:04:75:ff:77:6e:a2:7c:16:2b:23:b9:da:
a3:95:3a:7d:83:d4:0d:fc:bd:0a:94:9c:57:d8:ab:2c:c4:e5:
ff:38:b2:2c:5b:e8:89:7f:81:ee:3f:4e:12:e1:fa:cd:e4:7c:
15:50:49:34:ad:80:d7:ab:c9:bc:c1:cf:e1:e5:1e:55:f1:5d:
9e:e0:c8:ae:35:27:87:58:a4:f4:e0:dd:fc:f6:8d:5d:7b:11:
0a:b1:98:8b:8d:3d:48:7c:6b:95:65:c6:38:73:6e:66:2d:16:
f0:bc:77:24:01:36:66:49:25:22:b0:8e:eb:55:02:11:d1:56:
99:e9:b0:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:20:41 2025 by rpki-client