Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Vmf9oiJxkMZ8xUg0C29bpUOWlDY.roa
File: Vmf9oiJxkMZ8xUg0C29bpUOWlDY.roa (raw, json)
Hash identifier: LAfZdEAgmFsGOY61exwIkvJR2mlSfHLppuCbC0Rqx7k=
Subject key identifier: 56:67:FD:A2:22:71:90:C6:7C:C5:48:34:0B:6F:5B:A5:43:96:94:36
Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Certificate serial: 03
Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Vmf9oiJxkMZ8xUg0C29bpUOWlDY.roa
Signing time: Mon 29 Apr 2024 02:05:39 +0000
ROA not before: Mon 29 Apr 2024 02:05:39 +0000
ROA not after: Sat 26 Apr 2025 10:00:55 +0000
asID: 131147
IP address blocks: 157.66.166.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 14:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Validity
Not Before: Apr 29 02:05:39 2024 GMT
Not After : Apr 26 10:00:55 2025 GMT
Subject: CN=5667FDA2227190C67CC548340B6F5BA543969436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d0:9b:0d:4c:c8:e4:70:95:74:66:fd:a4:bc:
95:97:ef:30:07:09:ba:e7:f5:21:76:00:c2:d9:18:
f1:ff:08:a4:ad:09:0a:65:5d:26:ba:0d:e0:9c:45:
4b:08:3c:d7:a4:ba:d7:2c:24:39:5a:2b:75:9e:d3:
f4:8f:df:cd:dd:71:e0:6c:91:33:bb:6c:0f:d5:96:
b1:db:69:a5:66:b1:aa:67:bf:47:e6:99:4f:dc:c1:
c8:b7:fb:8c:20:9d:e3:b4:e2:15:73:ba:aa:aa:1c:
bd:e4:0f:f5:da:99:3f:fb:75:08:a7:ba:1d:88:54:
b4:f8:84:90:10:36:28:c7:8f:fd:e9:ff:4c:f5:80:
63:6e:4b:a7:22:fc:99:9d:4d:47:45:7a:03:04:80:
de:f1:13:9f:ec:ba:cd:fd:d3:41:f9:d0:40:74:43:
6d:e6:ff:91:1e:fe:34:dc:de:5c:a4:8b:00:b1:5b:
36:47:48:dc:51:bb:3f:84:bf:56:96:41:2f:7b:5c:
dd:15:ae:48:be:fd:df:a1:02:ce:2c:65:0e:f5:8b:
cb:1f:f3:5d:05:90:18:d2:b1:3a:6a:59:58:6a:e8:
72:25:2a:6b:24:3b:bd:ef:7e:78:f0:bb:93:b0:b2:
85:4d:19:81:ca:04:c1:78:a1:32:91:41:da:9b:52:
c3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:67:FD:A2:22:71:90:C6:7C:C5:48:34:0B:6F:5B:A5:43:96:94:36
X509v3 Authority Key Identifier:
keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Vmf9oiJxkMZ8xUg0C29bpUOWlDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.166.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:db:fa:61:a6:e5:8f:35:15:31:13:d8:c4:f3:91:46:46:9b:
db:fa:40:8e:72:3f:af:5a:02:ab:28:58:ad:7a:c3:c6:a3:29:
5c:a9:ef:7d:c7:25:70:c8:7a:af:db:d5:bb:1d:30:a7:41:93:
f1:a7:13:51:d5:aa:e2:33:c1:22:29:d0:57:76:cd:42:d5:c2:
58:8e:ba:94:d2:73:7a:e5:20:e1:2e:b2:75:9a:54:cf:1f:14:
25:6c:5b:ce:79:a3:dc:4a:5d:3d:87:43:7d:09:f2:84:57:3d:
05:5d:6a:a7:f2:85:cf:b1:31:a2:ac:1e:6c:50:ec:3f:31:0d:
f1:9a:e7:bf:16:97:08:71:5d:bd:81:30:d9:d7:fe:8d:1d:00:
38:bc:55:13:43:23:5d:b9:36:bd:fd:7a:b4:1a:29:0b:ea:35:
f8:8c:fb:82:b6:5b:c2:41:7c:ee:7e:1f:c0:5c:67:62:7a:cd:
9f:a2:3d:24:6c:5b:9f:90:91:2f:6d:1b:20:40:ff:5b:c2:e5:
ed:a3:ed:85:c4:d3:61:5f:5e:fd:91:e4:b4:cb:3f:dc:77:20:
69:82:87:43:14:4f:5d:77:df:0c:ea:db:52:cc:98:cc:26:2b:
fc:a1:6f:15:2d:67:d3:8f:ce:5d:d3:9f:bb:67:95:3c:a1:dc:
a3:49:5e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:39 2025 by rpki-client