Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/KIrh_QXrOl60ep4XMczVAxplge4.roa
File: KIrh_QXrOl60ep4XMczVAxplge4.roa (raw, json)
Hash identifier: Z45m0pcUCoyAe5jqShk+Gtp/GuLBrOz7iv7A2VxDWTA=
Subject key identifier: 28:8A:E1:FD:05:EB:3A:5E:B4:7A:9E:17:31:CC:D5:03:1A:65:81:EE
Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Certificate serial: 0507
Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/KIrh_QXrOl60ep4XMczVAxplge4.roa
Signing time: Mon 26 Aug 2024 05:19:04 +0000
ROA not before: Mon 26 Aug 2024 05:19:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131677
IP address blocks: 103.152.252.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1287 (0x507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Validity
Not Before: Aug 26 05:19:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=288AE1FD05EB3A5EB47A9E1731CCD5031A6581EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c3:a6:8b:01:5a:66:b4:0f:98:b4:f2:aa:b8:
c4:81:58:21:92:c2:a7:23:9a:17:59:d4:4b:08:59:
33:f5:b7:ed:0f:60:eb:2e:49:25:93:16:35:d0:5a:
65:bf:44:f5:f3:10:20:29:82:db:b5:1e:d8:6a:f2:
f4:f8:cd:5f:f8:f1:39:45:c8:4d:ed:43:85:6c:d6:
af:2a:95:c6:3a:05:53:b8:ae:e8:40:78:3e:5d:c1:
87:2d:67:28:46:a2:29:84:c2:86:95:b6:7e:40:66:
de:31:71:7b:f3:c5:ce:83:1a:fd:c7:21:fe:a1:96:
9c:74:6f:bd:94:2d:69:66:04:8a:18:bb:b9:37:6b:
fc:5c:1c:87:77:43:01:fb:94:17:4c:0f:c3:c2:0e:
6d:95:18:37:d4:f8:f3:1a:78:98:ee:cd:93:1a:68:
4a:b2:af:a3:20:f0:70:ea:d1:f8:d2:92:3b:47:ab:
70:01:6a:0a:3e:d9:0d:15:75:f4:21:94:f5:c6:79:
30:eb:2b:4d:e0:11:8a:fc:e2:5e:5b:54:60:06:69:
f9:2f:24:20:40:9e:4d:fd:8f:5d:a0:b0:4a:a2:30:
04:c4:06:19:69:24:ba:59:47:72:49:f5:b9:98:d6:
5e:71:60:35:fc:4c:20:f0:a6:2d:f0:40:d8:d9:fc:
12:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8A:E1:FD:05:EB:3A:5E:B4:7A:9E:17:31:CC:D5:03:1A:65:81:EE
X509v3 Authority Key Identifier:
keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/KIrh_QXrOl60ep4XMczVAxplge4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.252.0/23
Signature Algorithm: sha256WithRSAEncryption
27:48:d2:d8:4e:b7:fc:4d:74:42:32:c4:6b:2e:a8:98:f4:72:
ae:e9:5d:90:98:d2:3a:d7:cc:d3:18:2f:cf:66:4d:90:9e:f4:
08:b5:a1:20:70:53:a6:79:3a:fc:76:2c:f5:73:b3:66:60:e9:
69:2e:f3:9c:71:b8:7b:54:08:17:7b:97:f1:ba:c0:a4:c7:17:
39:e7:be:a1:49:86:87:95:79:b9:5b:1f:f0:2a:65:51:48:5a:
d6:f1:d4:23:92:44:9f:65:fa:a3:a7:ed:50:f1:5e:9c:62:27:
1c:d4:a7:c3:44:b1:a2:fc:1b:d6:bc:fa:ff:62:33:4d:ab:f6:
42:f8:2c:3c:49:a1:30:e2:23:75:c3:40:08:fc:07:35:81:cf:
43:5d:83:a2:96:3b:37:ca:38:1b:49:65:5b:ca:9b:31:ef:e9:
02:d5:19:88:91:b5:8a:10:e2:19:67:c8:3e:67:a8:f1:ea:ed:
37:a5:74:f7:b7:05:ea:fe:b2:1d:f1:43:34:82:c8:49:c8:42:
3d:48:ed:b8:63:f5:ff:ae:e8:03:b4:da:6e:a2:ee:a9:78:38:
eb:d8:31:b5:b2:e3:2b:9d:b8:74:f6:7f:88:7f:06:01:f8:d0:
52:57:ab:5b:3a:b7:f7:e9:fc:05:20:a7:b9:fe:88:04:9b:33:
1b:01:4b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:02 2025 by rpki-client