Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/8pGcoNJmaAUBirnXWzazDgutQEo.roa
File: 8pGcoNJmaAUBirnXWzazDgutQEo.roa (raw, json)
Hash identifier: S/cm9/6kP74U0ANQxKfHCWn+KxsaMD/Ot+S2doThxSc=
Subject key identifier: F2:91:9C:A0:D2:66:68:05:01:8A:B9:D7:5B:36:B3:0E:0B:AD:40:4A
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: 02BF
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/8pGcoNJmaAUBirnXWzazDgutQEo.roa
Signing time: Mon 26 Aug 2024 05:19:11 +0000
ROA not before: Mon 26 Aug 2024 05:19:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9920
IP address blocks: 103.173.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703 (0x2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Aug 26 05:19:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F2919CA0D2666805018AB9D75B36B30E0BAD404A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:97:e4:ad:5a:0b:39:e3:02:d1:f0:b5:87:5f:
ff:ba:89:88:a1:c8:11:e0:94:c9:4e:cb:94:6f:eb:
1c:a3:b0:4e:51:0d:2e:0b:6a:a2:8b:f7:7b:53:9f:
6a:e2:a7:1a:6f:19:2b:59:b7:93:ab:07:eb:9d:83:
51:09:9c:cd:4d:4b:72:ac:cc:3a:7b:69:1a:91:3f:
2c:96:c4:85:26:6e:ee:bf:dd:97:b1:19:55:4e:19:
ca:12:eb:84:0e:44:f9:4a:a9:80:a9:e6:b7:ea:28:
0f:60:2f:62:7c:ff:e4:91:2f:e1:2e:95:dd:2d:6b:
f6:d4:5d:78:7c:0c:f8:5b:e2:fa:4d:2e:89:a8:92:
61:33:e7:d6:6e:59:a0:9e:25:40:f7:d3:13:6a:75:
4a:29:7f:a9:97:80:db:ac:f4:7d:55:8a:0b:9f:ac:
3c:fb:d7:17:3a:c5:72:fa:9c:2d:73:9b:eb:f9:b0:
fe:19:77:fc:1d:2e:80:14:83:07:cb:1f:84:3f:eb:
ab:61:25:0e:81:37:ce:58:a1:1f:19:ac:8f:63:e0:
27:d4:98:2d:da:6e:59:ff:35:1a:3a:73:82:b1:ef:
cd:e9:57:93:fe:61:b8:58:41:61:b4:8c:90:8b:06:
1b:af:7c:f6:32:f8:06:91:4c:a3:a6:dd:3f:6b:6c:
da:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:91:9C:A0:D2:66:68:05:01:8A:B9:D7:5B:36:B3:0E:0B:AD:40:4A
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/8pGcoNJmaAUBirnXWzazDgutQEo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:83:66:62:9a:93:c3:9e:36:86:7d:b4:2b:3b:ca:ae:1b:fa:
98:3d:01:0e:9a:ae:6f:1b:72:94:dc:36:b8:bf:a2:3a:72:c7:
73:7a:e1:e3:c2:12:f2:75:b7:11:81:5c:21:40:fc:1e:2d:d5:
66:7f:ad:e6:dd:18:89:66:e8:cb:a5:f8:26:a5:29:39:ea:7a:
7e:4e:2d:9b:06:ac:3e:6a:d1:ea:fd:bd:5c:7b:eb:df:14:44:
8b:6f:b8:13:22:21:0d:96:74:bb:c7:f6:17:e5:89:b6:20:a6:
56:e9:67:ec:c9:b8:81:3d:d3:ba:dc:a7:04:dc:18:71:c7:fb:
53:4a:c4:fa:c5:51:47:c6:13:bd:ec:22:c2:56:79:ea:6f:9e:
56:71:ea:29:6e:54:65:c5:29:7d:bf:36:7c:93:ac:1b:6f:03:
a6:d1:f4:8d:2b:a8:1d:24:47:38:3c:fb:0d:cd:8a:f8:d7:a4:
2a:20:20:2b:df:f3:a6:ba:c0:73:33:38:fd:e8:48:30:16:2f:
9e:44:a2:75:31:ef:1b:f2:ce:84:7f:db:05:9c:1d:db:19:7c:
4c:ee:7e:29:0a:fc:07:89:e5:88:3e:99:4c:3c:c6:f8:f7:9d:
65:51:1c:f2:39:67:fd:06:a5:96:65:f7:ed:b8:36:82:f1:f2:
58:92:91:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:01 2025 by rpki-client