Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/uKzMW3_BPKZbrmdp8Y86i2R-Lkg.roa
File: uKzMW3_BPKZbrmdp8Y86i2R-Lkg.roa (raw, json)
Hash identifier: FUcx70AGd/fmLrlairmqxU3V/netZbm3XHJIjrDgP6M=
Subject key identifier: B8:AC:CC:5B:7F:C1:3C:A6:5B:AE:67:69:F1:8F:3A:8B:64:7E:2E:48
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E10
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uKzMW3_BPKZbrmdp8Y86i2R-Lkg.roa
Signing time: Mon 26 Aug 2024 05:25:00 +0000
ROA not before: Mon 26 Aug 2024 05:25:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 124.150.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3600 (0xe10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:25:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B8ACCC5B7FC13CA65BAE6769F18F3A8B647E2E48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:92:db:f4:0e:6c:6a:e7:ac:32:39:20:16:
12:0f:cf:b5:34:e7:9d:d1:24:54:7c:29:8b:e5:3b:
bc:05:02:96:ac:29:37:8e:2f:34:6a:43:20:eb:3d:
f6:46:57:1f:17:94:48:8e:d9:5b:b3:ff:cf:e0:46:
6c:34:5f:8f:94:cc:a8:e5:24:f2:2f:45:28:f8:b3:
bf:23:07:88:b5:7b:29:05:15:c0:1f:15:da:76:54:
29:c6:2b:54:ac:2e:35:e4:71:f3:19:9d:6c:e1:5d:
f4:0b:b8:da:ee:8a:26:da:c3:d9:2a:16:21:a7:c8:
4f:b1:8c:92:ed:7a:03:89:65:c3:32:d3:7e:d2:ea:
7c:fa:d0:39:66:3c:d3:82:c6:0e:5a:de:98:6f:7a:
4e:7e:23:b5:e6:4e:69:b1:76:41:cc:d8:af:24:5b:
bd:c6:8d:ca:3f:63:d2:87:c8:b1:43:19:be:4d:11:
43:4f:40:43:9c:df:79:30:2c:03:be:08:b1:02:11:
2f:58:ab:e9:62:b4:04:c3:ef:d7:52:a3:29:7a:73:
63:68:69:f3:76:06:2d:0d:21:b7:cc:d2:0f:41:43:
e4:9d:c0:5b:6d:b6:81:1f:5e:a8:96:81:3f:83:8d:
c5:ea:8d:dd:66:e7:c0:0b:b9:96:af:c6:11:06:d8:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AC:CC:5B:7F:C1:3C:A6:5B:AE:67:69:F1:8F:3A:8B:64:7E:2E:48
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uKzMW3_BPKZbrmdp8Y86i2R-Lkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.135.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ec:a5:c1:95:14:86:41:ba:c8:ed:11:df:d3:90:bb:f4:ea:
81:8c:b2:0d:a4:78:cf:e2:a9:39:92:45:34:b7:0a:3f:22:a4:
aa:ed:61:da:86:6c:bb:a9:c0:c3:4b:7d:e5:49:0a:53:65:cb:
f4:0c:d9:b0:dc:e1:d3:df:e4:b7:50:0d:c2:5b:1c:27:60:11:
a5:51:5d:c6:94:21:a1:43:82:a0:74:ad:d2:f7:88:c0:a8:eb:
2b:ee:28:6e:75:38:2c:d6:80:e2:a8:d2:5a:a7:73:fe:47:0c:
0a:f5:89:ec:27:00:3d:d3:3b:d2:99:f2:12:df:3e:1a:be:57:
a0:f0:e3:b7:1c:39:54:8a:2e:34:3d:23:81:b0:aa:9a:2b:4f:
2d:3b:9e:2a:54:ee:d4:52:17:b3:f3:fc:bc:88:99:61:20:c5:
3e:ec:69:6b:12:20:b6:a5:0c:83:e8:d5:91:1a:8a:49:c2:e9:
bf:07:03:80:55:72:e6:ec:2f:8d:a7:b6:31:39:3e:f1:51:1f:
0c:b8:e6:b2:97:d9:f6:6a:5b:85:ed:74:91:49:6c:ed:c0:0e:
e9:fd:48:56:7e:2d:72:2b:f3:f5:ef:46:01:12:d3:b2:01:df:
25:b0:cc:96:ae:07:5a:67:83:86:19:ac:9d:b9:2a:0a:07:41:
3e:bc:7e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:40 2025 by rpki-client