Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/q94x2FnEGeoYONcMCcnjlYemhaY.roa
File: q94x2FnEGeoYONcMCcnjlYemhaY.roa (raw, json)
Hash identifier: ujlMzUry/bgMdj7ZvI19yk2uPhCd0KJp3P0C8g7bT1o=
Subject key identifier: AB:DE:31:D8:59:C4:19:EA:18:38:D7:0C:09:C9:E3:95:87:A6:85:A6
Certificate issuer: /CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Certificate serial: 0C1F
Authority key identifier: 84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/q94x2FnEGeoYONcMCcnjlYemhaY.roa
Signing time: Mon 26 Aug 2024 05:24:01 +0000
ROA not before: Mon 26 Aug 2024 05:24:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 103.117.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3103 (0xc1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Validity
Not Before: Aug 26 05:24:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ABDE31D859C419EA1838D70C09C9E39587A685A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b0:cb:96:96:ca:c3:01:94:df:c7:31:1c:d6:
93:26:79:b5:6e:5c:ce:d5:4f:0e:d7:c4:85:3d:d1:
89:b1:c8:51:29:1d:9b:65:fb:42:18:7a:8e:69:79:
93:8b:83:c7:c7:c6:68:30:f3:56:e0:dd:7a:58:b5:
d9:de:72:e5:49:d6:76:af:9d:24:b4:a4:c6:7b:e9:
e0:51:c1:55:18:18:d0:6a:59:19:8d:b6:db:dc:06:
25:3e:af:22:94:96:81:9b:cb:fe:d3:ba:37:02:75:
20:e1:74:ba:dd:ec:76:c5:09:8e:d6:5c:f2:aa:1f:
e6:6b:56:54:b3:2f:da:36:cd:4c:46:47:7c:e1:80:
80:8d:61:4d:a8:5f:83:b4:e2:2a:92:75:e9:a2:6a:
14:21:ec:75:a4:ad:30:6f:68:62:5c:c9:c2:8b:ba:
8c:09:39:00:5b:18:49:08:07:cc:8b:08:e7:cf:34:
46:e6:e2:64:db:e2:de:2e:67:13:b2:50:26:ed:f2:
9a:0d:b2:62:74:1c:f7:2a:09:05:41:7f:9b:a6:18:
82:3c:70:1b:df:26:62:73:75:ba:98:fb:90:80:49:
6b:95:9f:7b:57:92:16:7d:63:bd:8b:c5:03:ed:fc:
f0:c8:c6:6a:27:62:a7:5a:24:8a:cd:77:14:1d:3c:
58:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DE:31:D8:59:C4:19:EA:18:38:D7:0C:09:C9:E3:95:87:A6:85:A6
X509v3 Authority Key Identifier:
keyid:84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/hHe0uf5ymSXZEsZtALaB3aEKKgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/q94x2FnEGeoYONcMCcnjlYemhaY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.224.0/22
Signature Algorithm: sha256WithRSAEncryption
51:56:7a:da:a6:d3:f9:e2:37:bf:dd:e2:f1:b8:1c:84:48:04:
e5:dd:be:fb:40:e0:62:22:7d:4c:dd:1e:52:6f:41:bf:7e:da:
a6:c1:32:f6:5c:8d:78:07:84:94:f1:6c:52:ee:e4:90:1b:42:
9d:29:c1:7f:d6:73:aa:86:10:31:e3:c6:8c:59:bc:b3:80:2a:
61:07:0f:a8:ad:a5:d8:af:c6:f6:35:89:8b:51:dc:90:8d:d7:
59:87:88:1f:97:81:b1:90:f0:25:81:a9:f6:d9:f9:ea:f9:8c:
e8:63:30:c0:76:2d:b9:7e:b8:1d:9e:69:4d:32:e1:21:93:e1:
7f:f4:35:54:78:02:eb:b5:7c:42:03:53:60:5e:73:d2:98:92:
36:53:2a:11:71:d1:a4:42:4d:e7:3f:b8:e1:5a:09:9c:5e:5b:
5a:73:f9:85:e1:cd:98:6f:5d:57:ba:40:42:e7:d2:58:ef:7e:
e0:89:45:a3:13:3f:a6:92:48:54:2b:8b:0d:31:70:21:fe:bf:
bc:a3:bb:7b:ab:2f:78:66:0a:2a:9b:be:b3:bb:68:80:32:3a:
95:a0:6f:6e:be:79:3a:b1:d8:6f:13:5e:87:c6:bb:10:85:27:
de:e9:2b:2b:9d:ce:aa:a1:03:ad:8d:8f:4d:cf:45:fc:25:f5:
6d:ed:f3:dc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:30 2025 by rpki-client