Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/TR2Fsrodaj2ic-9fQ1nuBE8SE1w.roa
File: TR2Fsrodaj2ic-9fQ1nuBE8SE1w.roa (raw, json)
Hash identifier: ty2am2c6PL9OYrFSYcGqn5miIGCoVdpQY56L6mwpL0w=
Subject key identifier: 4D:1D:85:B2:BA:1D:6A:3D:A2:73:EF:5F:43:59:EE:04:4F:12:13:5C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E18
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/TR2Fsrodaj2ic-9fQ1nuBE8SE1w.roa
Signing time: Mon 26 Aug 2024 05:25:02 +0000
ROA not before: Mon 26 Aug 2024 05:25:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3608 (0xe18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:02 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4D1D85B2BA1D6A3DA273EF5F4359EE044F12135C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:be:94:ac:c7:f9:c4:bf:2e:c9:a0:20:10:f4:
1f:f7:e6:ef:6b:8f:55:a9:16:51:d5:62:3e:4d:77:
17:85:99:c0:3e:7c:2e:12:c9:09:e3:fc:61:a1:51:
55:ff:e9:60:21:eb:1f:de:08:de:20:2c:6a:2f:a8:
05:2e:d8:03:48:25:81:e7:7b:52:d8:0c:89:67:94:
53:06:b4:b4:63:b0:c2:19:12:7c:c7:11:c2:39:bf:
23:66:4c:15:68:b3:13:ab:db:ba:cb:65:94:d7:6d:
47:9c:58:c6:88:a3:5a:88:02:f0:2d:5a:8c:96:79:
f5:b7:2f:8c:50:7f:27:11:d9:98:55:dd:02:64:4b:
1b:82:77:7d:1d:15:e6:80:67:ac:5f:2c:8d:5a:98:
60:e4:91:bd:f9:64:48:d6:75:89:e2:96:1c:d9:48:
a9:e0:a3:cf:78:91:d3:d9:42:a0:b4:70:24:be:80:
92:1b:1f:0a:a2:7b:02:2f:73:ec:75:b4:1f:bc:0f:
6b:11:c4:0f:40:80:a6:c0:7e:b4:24:22:21:75:43:
4e:54:6a:6e:26:93:08:a2:4e:63:f7:1f:d9:ba:13:
d4:85:0e:c9:fe:7b:02:dc:d7:cf:78:28:99:24:da:
f7:9a:2f:ba:a7:9f:21:05:5b:b6:65:a1:f7:92:58:
1b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1D:85:B2:BA:1D:6A:3D:A2:73:EF:5F:43:59:EE:04:4F:12:13:5C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/TR2Fsrodaj2ic-9fQ1nuBE8SE1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
16:97:76:2f:06:e2:2a:79:93:45:d1:27:db:12:dc:09:da:16:
9c:54:03:14:69:03:36:f7:8e:89:9d:58:39:8a:8c:8d:b4:4f:
7b:30:7f:40:f3:e2:4f:42:b0:c9:07:35:01:b9:5e:0b:4a:53:
ac:2e:6a:e2:64:ab:55:5e:e8:6e:29:c8:a9:55:92:64:a7:26:
ff:74:11:79:5c:33:71:f3:85:d1:cc:ee:19:d7:2d:32:3b:26:
68:0d:5c:16:0b:c4:72:17:02:6c:57:2c:d6:00:48:34:55:eb:
61:4b:63:f4:ac:da:e1:c3:85:e4:c3:fb:a7:09:72:04:68:c9:
56:77:d1:c8:21:3a:2c:7c:f3:29:ab:c4:20:ed:2a:8a:ae:fe:
fe:d2:f5:81:42:18:d8:dd:8b:a7:07:ba:05:a8:cf:38:a4:b9:
b0:ce:f4:f2:8d:16:c7:5f:af:b8:a4:6d:d6:19:53:08:9c:48:
d8:9f:a9:e6:10:9e:98:1d:83:f0:b2:e8:1d:91:18:86:db:ca:
8b:8d:f5:fc:77:fd:5b:63:92:c2:9a:23:13:a7:96:64:b7:59:
52:90:5d:04:23:6e:ce:50:82:80:92:9b:5f:17:6c:da:56:10:
58:72:15:14:ed:fb:8e:58:8c:be:a9:e3:2f:50:02:ab:de:5e:
91:27:3f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:26 2025 by rpki-client