Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/JHLJjd3FoBOgLDINQjzzkAAHTgc.roa
File: JHLJjd3FoBOgLDINQjzzkAAHTgc.roa (raw, json)
Hash identifier: j0bPjK7PzLHCKmStIRt1CtCsauJ13nz4pdoqM8u4ils=
Subject key identifier: 24:72:C9:8D:DD:C5:A0:13:A0:2C:32:0D:42:3C:F3:90:00:07:4E:07
Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Certificate serial: 29
Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/JHLJjd3FoBOgLDINQjzzkAAHTgc.roa
Signing time: Mon 03 Jun 2024 17:23:29 +0000
ROA not before: Mon 03 Jun 2024 17:23:29 +0000
ROA not after: Sat 26 Apr 2025 10:00:55 +0000
asID: 150766
IP address blocks: 157.66.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Jan 2025 01:27:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41 (0x29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Validity
Not Before: Jun 3 17:23:29 2024 GMT
Not After : Apr 26 10:00:55 2025 GMT
Subject: CN=2472C98DDDC5A013A02C320D423CF39000074E07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:67:19:79:d2:3f:f7:6f:34:a1:d1:79:84:b7:
31:56:91:09:af:45:f3:02:64:1d:09:13:94:bd:67:
3b:58:1e:15:7b:ab:8f:8b:81:64:7c:51:01:97:5f:
d3:8b:2b:4f:c2:ec:a4:9d:49:18:2b:85:67:29:8f:
c7:61:fd:60:64:93:f9:8f:24:f8:96:bc:44:f3:4d:
45:d8:16:24:ca:fb:43:66:b7:58:48:48:0c:bb:49:
6f:c5:26:89:da:ae:0e:5e:8c:12:78:2b:f1:3e:c2:
3c:56:dd:67:c6:3f:2e:00:11:af:16:55:ab:ba:97:
2a:df:5c:ac:fe:23:34:82:d3:d8:e8:b2:5c:8c:ae:
a9:7e:0d:b9:8f:d0:c2:42:19:c0:b1:0a:b8:98:b7:
27:57:83:94:a3:bc:25:20:08:f9:ea:a7:f6:67:12:
73:c3:4f:d5:cc:4e:df:77:0f:af:48:e6:2e:45:66:
42:c2:f0:07:9c:2b:e0:a1:3d:3b:72:0f:fd:a4:c0:
1a:a7:fa:25:3b:f0:8e:a6:4b:4b:d0:a1:14:83:5b:
e0:92:ae:c4:9c:ee:d2:4b:ec:63:35:f3:14:89:6b:
ea:92:47:dd:88:f7:aa:33:1c:53:fc:58:8e:fd:ad:
8a:7e:2b:50:3d:50:e8:88:49:7f:d2:ab:86:2b:94:
a7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:72:C9:8D:DD:C5:A0:13:A0:2C:32:0D:42:3C:F3:90:00:07:4E:07
X509v3 Authority Key Identifier:
keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/JHLJjd3FoBOgLDINQjzzkAAHTgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:f5:2b:b1:fe:53:16:23:56:03:53:b7:b3:c7:0f:61:9c:68:
1c:5c:0c:53:35:b5:26:4d:17:08:b5:fe:7f:31:c5:a8:e3:b8:
b0:3b:ed:85:bd:98:45:d0:ba:d5:0f:e6:32:59:3c:e0:14:3e:
12:7f:27:a4:aa:a9:9e:9c:42:78:70:bf:6e:c6:d9:42:f0:e6:
a9:d6:39:3a:9f:6c:db:d8:2c:32:40:e0:14:e9:19:86:b9:90:
96:db:b2:59:33:3e:c6:3e:96:ea:12:c9:b5:f3:2a:46:65:30:
ad:c5:2f:31:ba:2e:42:69:42:62:f9:6f:03:b6:3d:a2:c4:e5:
fc:ae:5a:b5:b6:8a:7a:3d:b0:75:09:2e:da:59:d6:2a:13:a4:
64:4b:c1:ba:21:1a:0b:2a:a0:c1:3c:59:ce:f3:df:51:9a:cf:
c8:3d:ae:04:d8:3b:32:7c:4c:d0:79:56:53:ae:cf:4c:6a:5b:
32:7e:49:24:f6:77:90:da:18:c0:34:e2:4d:fe:b6:1f:aa:f2:
11:c4:ce:a8:52:91:0a:a9:c9:65:61:5a:e5:f0:26:00:64:3b:
14:39:f4:2b:81:62:8a:29:80:e8:12:67:0d:c5:eb:3f:ab:6a:
fd:15:65:22:55:50:a3:92:8d:e9:8d:4d:a1:c0:7a:27:55:5a:
be:af:28:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:01 2025 by rpki-client