Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/6Yss1EDvSlS9EZjD0uCAv-NXN4Y.roa
File: 6Yss1EDvSlS9EZjD0uCAv-NXN4Y.roa (raw, json)
Hash identifier: qg/hHokxpeOGpwxoBRZwBs9WKIzpcmUkr6DbaKRYoUk=
Subject key identifier: E9:8B:2C:D4:40:EF:4A:54:BD:11:98:C3:D2:E0:80:BF:E3:57:37:86
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E2A
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6Yss1EDvSlS9EZjD0uCAv-NXN4Y.roa
Signing time: Mon 26 Aug 2024 05:25:06 +0000
ROA not before: Mon 26 Aug 2024 05:25:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3626 (0xe2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E98B2CD440EF4A54BD1198C3D2E080BFE3573786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3f:e9:05:4d:df:04:ae:75:10:b5:95:55:fb:
24:42:85:03:7e:3d:fc:c6:05:a9:a5:64:7f:bc:6c:
ec:e4:31:26:54:37:a1:92:50:a6:36:dd:3e:07:e9:
1d:1b:8d:ac:6a:43:6a:fd:bf:95:81:ab:b6:2f:d1:
24:dd:24:bc:ba:9a:2d:03:52:b8:49:02:d4:f1:9e:
ac:41:38:aa:9a:99:5c:72:2d:05:48:68:e5:aa:c0:
5e:3a:b9:6f:72:d6:41:ac:38:37:c6:03:76:32:7a:
9e:04:1a:0d:01:42:e5:4c:49:6e:4c:a0:2d:b1:63:
fa:6f:26:fb:2f:a0:ce:e9:a0:68:c4:7d:ff:75:9b:
05:86:38:39:12:ba:34:5d:cd:2d:2b:be:8c:3e:72:
94:c9:04:3d:39:a2:e0:29:3b:62:ba:7e:6e:ff:5c:
90:b7:fd:5a:01:68:a5:f2:2f:5f:4d:d3:f8:00:09:
1c:9f:0c:da:78:0e:2c:8d:b3:ef:d6:04:1e:3e:68:
b3:82:f0:fe:07:9c:ee:ee:a1:3b:75:33:76:f6:7e:
a2:70:fb:05:28:ce:67:05:da:57:f1:7f:b2:ff:f1:
c0:2b:41:d2:b7:11:e8:de:dd:54:fe:26:b0:e1:dc:
98:da:e0:44:c5:ce:e6:f3:2a:f2:89:32:04:0f:6a:
09:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8B:2C:D4:40:EF:4A:54:BD:11:98:C3:D2:E0:80:BF:E3:57:37:86
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6Yss1EDvSlS9EZjD0uCAv-NXN4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:40:77:b7:d2:47:28:ba:f5:62:56:e6:e5:04:4c:7a:6c:3b:
9a:99:7a:a8:a9:77:4d:e1:de:e4:ea:9e:0c:a9:dc:0b:51:a4:
23:d6:41:b6:68:4e:1d:0c:68:16:e1:e0:b8:db:c5:0e:43:65:
23:4b:74:ce:6a:3d:a4:7b:63:09:72:09:48:e4:ac:1d:dd:aa:
d1:f3:c4:13:cf:2a:00:7e:93:ee:37:bf:c2:35:ee:4d:25:20:
a0:5d:a3:9a:97:45:70:45:ad:77:76:68:cb:83:d4:04:88:63:
39:c9:55:fe:06:9b:4f:e2:3f:0b:c9:6f:60:0e:40:c6:27:d6:
71:b6:8d:34:67:49:50:38:3a:91:d8:9f:1a:c5:1b:4f:17:ad:
0a:65:fe:83:ba:46:05:c8:49:82:a9:9b:96:23:62:25:01:bd:
07:b2:0a:b1:6d:dc:44:ee:95:f2:f6:7b:64:91:b0:db:52:e8:
3b:f3:6a:ea:2c:26:7e:3c:2f:52:2e:56:e1:73:73:e8:53:9b:
97:4c:20:ec:d7:ad:52:33:84:83:69:e2:c0:77:0d:ed:fd:15:
3d:99:6f:1b:fc:a8:a1:38:57:5e:38:3d:33:b2:49:28:95:6c:
f9:ac:92:4e:4d:ec:7c:9b:93:8e:50:09:dd:9a:b3:d8:7b:3c:
38:76:81:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:09 2025 by rpki-client