Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/jpmFRGmjLHgTeHkymicgT4gVyOE.roa
File: jpmFRGmjLHgTeHkymicgT4gVyOE.roa (raw, json)
Hash identifier: 7dLbv0MreLKZfNFiPHVSUGWvfd5skI1NNoVPrDZ5JdE=
Subject key identifier: 8E:99:85:44:69:A3:2C:78:13:78:79:32:9A:27:20:4F:88:15:C8:E1
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E2B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jpmFRGmjLHgTeHkymicgT4gVyOE.roa
Signing time: Mon 26 Aug 2024 05:25:06 +0000
ROA not before: Mon 26 Aug 2024 05:25:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 13335
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3627 (0xe2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8E99854469A32C78137879329A27204F8815C8E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1f:44:c0:d5:9d:03:7d:91:7b:f7:52:53:03:
ed:e6:cf:d7:30:fb:97:f8:15:2f:13:cf:d0:72:fc:
55:85:aa:78:16:59:66:77:30:13:d1:26:61:45:38:
52:e3:93:0d:5f:5a:1e:50:e7:36:65:a8:a2:7e:94:
1f:31:eb:54:47:3e:50:ca:f7:d1:4c:e1:58:31:b1:
8b:08:69:9f:db:3d:26:fe:64:8c:b6:42:f6:23:76:
22:b8:2f:a8:85:12:13:fa:91:78:5f:d7:14:f3:86:
94:aa:e2:b4:02:63:fb:d0:1b:96:5d:7a:36:b1:38:
07:93:e1:2a:48:ab:ad:1e:c7:fc:e0:ee:03:71:46:
c3:f3:6b:a9:07:cc:61:ae:18:22:a4:e9:4a:19:5f:
07:92:9b:b5:a5:f9:22:7a:3f:01:29:2e:6d:10:62:
cd:bb:12:07:5b:d4:da:b8:07:2e:80:f4:6a:55:ce:
bd:60:d5:e3:81:66:3a:46:92:ab:23:32:f9:57:8f:
a5:63:c3:00:35:18:4c:2f:16:51:1f:4f:f8:6f:03:
8e:de:b2:1d:26:a5:c6:dd:1c:99:71:ea:7a:16:9e:
36:76:68:78:bc:04:7a:bf:56:e9:b7:e3:48:87:2f:
ac:f8:e9:aa:f1:a3:5f:b3:ef:46:7e:f2:7e:49:ee:
c7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:99:85:44:69:A3:2C:78:13:78:79:32:9A:27:20:4F:88:15:C8:E1
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jpmFRGmjLHgTeHkymicgT4gVyOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
99:d9:d7:18:93:47:9e:94:e0:d7:a1:1f:35:22:0b:19:a8:04:
ae:0e:c1:c4:0d:c2:6d:99:db:f6:61:f2:0f:09:2f:10:a8:21:
38:29:a7:15:30:c2:0c:36:e0:89:dd:10:8b:21:80:28:24:f8:
87:35:b9:c9:56:11:1d:87:04:4d:ee:5b:89:3b:ce:9c:31:57:
6b:d6:31:01:bf:18:cd:11:14:59:86:1f:65:02:b6:55:27:3d:
24:5b:f4:03:f8:ff:31:fa:63:df:e3:65:40:74:b8:c8:81:5d:
dd:9b:04:4a:4d:dd:29:39:2e:41:99:be:7c:59:cb:7b:3f:54:
59:25:b4:6c:03:10:85:6a:2a:db:eb:d7:f2:ac:46:c9:1e:69:
ac:eb:70:32:1c:80:e2:23:62:2d:d6:72:8f:ee:97:91:a3:a8:
e9:3e:38:7c:64:5b:f3:42:94:5c:cc:02:66:88:50:5a:f6:8e:
4c:c1:7e:8d:56:5f:d1:33:d3:fb:9c:e8:fd:1d:3d:e0:27:df:
91:4a:21:1a:d2:32:92:cc:df:4b:af:3c:fc:bb:ba:c8:e4:b1:
dc:af:bf:6e:5a:22:98:e9:d1:54:a2:4c:50:83:ad:c0:51:f1:
1b:17:65:66:2f:48:57:ba:73:a5:ea:ae:5c:79:15:7e:73:b2:
19:12:07:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:18 2025 by rpki-client