Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/aqHYHhF7KelEZVHRBcVLjg9xEG8.roa
File: aqHYHhF7KelEZVHRBcVLjg9xEG8.roa (raw, json)
Hash identifier: 6kdQIsjnL136Bu/QMQJ3yd+dVsLT93Af1qBLBMb4KuU=
Subject key identifier: 6A:A1:D8:1E:11:7B:29:E9:44:65:51:D1:05:C5:4B:8E:0F:71:10:6F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E26
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/aqHYHhF7KelEZVHRBcVLjg9xEG8.roa
Signing time: Mon 26 Aug 2024 05:25:05 +0000
ROA not before: Mon 26 Aug 2024 05:25:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.56.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3622 (0xe26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6AA1D81E117B29E9446551D105C54B8E0F71106F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8b:70:4d:45:a3:0e:0d:43:d0:e3:8e:12:50:
32:b8:37:81:49:8b:08:30:56:e3:88:99:87:b3:06:
82:30:8c:88:50:a7:27:a6:62:b6:8e:53:8a:17:5c:
ff:7f:c5:65:e4:e6:94:96:1e:d7:72:52:28:b6:ee:
e2:92:de:93:4b:10:38:cc:e8:76:33:b0:c2:7d:1c:
29:05:c5:28:77:fb:41:c7:b3:cd:6b:04:41:f7:1a:
59:1d:2d:1a:a8:63:c3:f4:9f:a3:96:5e:d2:3f:d6:
9e:9b:23:4e:51:5e:a7:a6:0a:8b:e8:93:8d:1f:7a:
0a:38:61:9d:37:46:1c:f9:df:ae:03:76:05:ee:df:
20:08:6e:8b:aa:10:6a:b6:68:cb:b1:19:37:f1:f8:
d6:dd:4e:ff:f9:97:fd:e7:d6:3a:dc:a5:19:65:f9:
0f:59:99:eb:f1:fb:2d:da:c3:cd:99:ca:bd:46:c3:
6e:2e:e4:94:24:07:9e:34:57:2e:58:82:0b:34:a2:
84:84:64:3a:bf:20:86:0f:fe:dd:e8:8f:8e:5e:c3:
af:60:b7:2a:f5:bb:47:c1:0c:0f:1f:ea:3b:f8:a8:
5d:e0:2f:80:ea:3d:49:7b:0e:d9:fe:cc:fb:2c:ec:
af:44:40:bc:57:03:cf:a4:f5:ae:9e:9f:a9:f6:fc:
b5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A1:D8:1E:11:7B:29:E9:44:65:51:D1:05:C5:4B:8E:0F:71:10:6F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/aqHYHhF7KelEZVHRBcVLjg9xEG8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.56.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:80:37:f5:c5:2b:a0:ce:70:63:27:24:b8:19:68:25:af:87:
5d:17:5e:0c:0d:28:db:74:51:c7:9e:49:19:e4:22:a8:be:01:
94:14:98:af:14:da:3f:27:6d:07:f5:b1:38:f3:f3:b0:f9:64:
86:28:77:86:a3:e0:80:f2:1a:c4:c4:8c:e7:51:a7:c8:7d:9d:
22:b6:99:e0:05:33:89:65:14:47:26:58:70:bf:b8:bf:2e:8c:
09:12:c1:d1:39:c8:c5:19:ba:07:51:46:98:d2:82:ec:d6:d3:
26:ab:fc:40:99:d3:62:ba:2b:13:28:67:6f:9b:fc:fa:c7:2b:
d6:a0:c3:20:28:79:b2:e3:d1:b3:b6:43:8c:9a:e1:33:7d:f1:
9f:1a:fb:1e:ab:9b:81:f6:5a:2f:c1:ee:6d:54:b8:1c:3d:c4:
5c:c4:c0:dd:bf:da:4d:09:be:7d:cc:7a:86:f9:24:82:84:04:
60:f9:ac:94:db:6c:c3:fb:b2:46:3a:09:ab:6a:1c:1f:e7:65:
c1:e9:cf:ac:60:52:00:bb:c3:52:02:ea:7b:d0:68:d1:1c:27:
fe:37:a8:68:bf:28:91:37:52:49:fd:5c:0a:bc:e1:1c:8c:25:
07:b6:99:7d:e1:e6:31:bf:9b:91:8e:50:e1:5d:79:43:29:8c:
7d:04:41:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:25 2025 by rpki-client