Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/WWUGBn3AGIO55yLpOCOencdmh0c.roa
File: WWUGBn3AGIO55yLpOCOencdmh0c.roa (raw, json)
Hash identifier: ZsmS6UBS/wqigmEiercYkCfEJqU4VRcmSkG0IYEN/ro=
Subject key identifier: 59:65:06:06:7D:C0:18:83:B9:E7:22:E9:38:23:9E:9D:C7:66:87:47
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E29
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/WWUGBn3AGIO55yLpOCOencdmh0c.roa
Signing time: Mon 26 Aug 2024 05:25:06 +0000
ROA not before: Mon 26 Aug 2024 05:25:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3625 (0xe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=596506067DC01883B9E722E938239E9DC7668747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b2:38:a2:a9:50:86:b8:48:cf:85:8b:c7:9c:
23:d5:31:f2:bb:67:ac:2c:a7:d5:06:4a:68:2c:ca:
a0:fa:10:d9:a2:4f:4b:a5:8b:02:ae:44:c5:ac:b0:
10:15:37:5b:9d:61:c7:1b:c4:08:71:be:dc:ea:91:
e3:cd:10:7b:e8:6e:02:eb:7f:1c:08:6a:33:d1:6e:
2b:8f:7a:6c:cf:97:cd:38:32:8a:32:0d:f2:1e:76:
db:38:74:4c:8b:c9:57:d6:af:37:cf:5f:4c:ed:8e:
56:eb:33:5f:83:98:86:c5:a6:44:ff:49:42:97:e1:
9e:3d:51:f8:3d:08:4f:6c:41:c5:62:d4:b6:99:06:
e1:21:74:9a:b0:c2:0a:00:63:b8:eb:1c:a2:f0:5b:
55:10:bc:84:9a:20:13:b3:71:b4:86:38:a1:52:05:
b8:27:81:c3:42:5e:67:50:d4:29:d7:ac:2f:af:24:
b8:ea:3a:cd:7a:ff:3c:68:b8:9f:b7:4f:a8:bc:a8:
b8:60:86:58:5a:a6:23:79:38:ec:75:8f:0f:cf:09:
fd:c1:c4:62:f8:c7:74:09:3d:cc:2f:7f:46:28:d2:
6c:d5:43:e2:e7:9e:73:e9:d1:47:4a:09:94:d9:cf:
eb:d7:9d:2b:9b:25:6d:8b:e0:3a:b8:a3:e9:67:86:
c9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:65:06:06:7D:C0:18:83:B9:E7:22:E9:38:23:9E:9D:C7:66:87:47
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/WWUGBn3AGIO55yLpOCOencdmh0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.43.0/24
Signature Algorithm: sha256WithRSAEncryption
52:41:9e:1b:9d:35:2b:25:29:f2:59:f0:41:f8:f3:63:67:e9:
51:8a:c9:e5:83:24:44:6f:9f:a6:78:07:36:03:ce:04:0c:1a:
2d:9b:a8:72:11:64:1c:e8:d3:8e:48:be:de:da:b4:05:56:b0:
c5:3f:8b:79:16:72:af:63:6c:f8:29:d0:f4:cb:4e:0b:2f:d5:
b3:4a:c5:09:9a:2b:39:c2:2c:96:0b:0e:f4:e5:b8:b9:58:e7:
96:f9:f2:35:e8:a6:ad:83:da:8b:c9:0b:18:9a:ca:71:b3:76:
33:09:c0:68:9e:51:90:1a:8e:6e:35:de:1d:97:18:d4:e5:66:
6a:d6:23:3d:ef:bf:ac:3e:c0:68:e0:1f:52:45:81:fb:18:d8:
ab:ca:3d:b7:b7:af:ee:54:a7:4a:f1:a6:4e:56:e4:b6:57:d2:
2f:f5:e3:95:a3:e5:2e:82:79:28:f3:12:08:81:9a:87:af:88:
e5:52:53:80:18:d2:86:5c:12:90:d5:5c:b2:48:e1:60:83:29:
19:3c:c0:ec:c5:43:61:6d:49:3f:58:8c:db:d5:82:3a:d6:a3:
1c:97:68:df:98:51:e5:e3:5f:36:eb:5d:46:f0:89:67:fc:5c:
4b:d0:b7:b2:b5:d7:66:78:ed:e9:35:2c:fa:0f:96:d3:54:c7:
d8:08:b9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:57 2025 by rpki-client