Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/xd19j2jSg4Dpc7xuQ9o8vMiQbyE.roa
File: xd19j2jSg4Dpc7xuQ9o8vMiQbyE.roa (raw, json)
Hash identifier: /1B87o7Tm30O6+XItq6OyutupigRy3CljLHopI8k+CE=
Subject key identifier: C5:DD:7D:8F:68:D2:83:80:E9:73:BC:6E:43:DA:3C:BC:C8:90:6F:21
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0E0B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xd19j2jSg4Dpc7xuQ9o8vMiQbyE.roa
Signing time: Mon 26 Aug 2024 05:24:59 +0000
ROA not before: Mon 26 Aug 2024 05:24:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Aug 26 05:24:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5DD7D8F68D28380E973BC6E43DA3CBCC8906F21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:55:23:97:32:71:00:99:25:67:44:aa:2f:df:
ab:d9:d5:ec:f0:cd:55:44:ba:b9:0b:11:96:5b:51:
2d:54:ac:05:00:f3:f6:3c:dd:3b:85:67:ad:3f:d9:
f1:ec:c4:f6:05:fe:4d:19:44:3a:a4:5e:38:7b:c3:
26:40:0e:79:11:7e:64:31:ca:2f:9b:9f:9d:b7:99:
28:42:56:35:1e:21:b6:6f:4d:4a:05:54:c4:ab:b5:
8e:30:80:60:cc:6d:4f:c1:09:e4:1a:f6:18:ac:5d:
48:4b:49:8c:f2:b0:84:78:c3:05:b7:93:1e:a9:e1:
69:43:ae:d7:96:6a:a4:cb:8e:26:4a:42:f3:22:39:
a1:c5:a0:e5:0a:47:aa:c0:b6:6b:f3:2d:87:e6:0e:
94:93:08:97:16:f7:76:f1:e9:97:09:ac:d1:b0:a5:
87:72:a0:2a:4d:53:82:eb:3d:a4:fa:4a:92:2a:ea:
80:0c:80:8d:66:d4:7e:de:7f:37:c9:cf:ef:bc:2b:
57:aa:ab:07:dd:91:44:9e:56:51:58:df:80:61:e5:
56:39:18:11:08:7f:16:d4:ab:cd:c8:70:79:58:fe:
b0:a1:2d:10:d2:1d:4a:a8:b8:0f:4b:2c:65:5f:24:
44:dd:0a:63:ff:01:91:56:49:41:90:37:1b:19:f2:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DD:7D:8F:68:D2:83:80:E9:73:BC:6E:43:DA:3C:BC:C8:90:6F:21
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xd19j2jSg4Dpc7xuQ9o8vMiQbyE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:95:2d:a5:9c:b9:78:d5:fa:be:7c:1c:59:a3:00:50:e3:b8:
48:91:df:f3:ae:d2:0b:83:c5:27:cc:5f:31:0b:91:24:41:7b:
90:bc:0a:28:b6:8d:d0:12:e0:8b:1c:bf:f3:07:96:2f:dc:dc:
cb:9f:8f:a2:65:f9:8b:63:35:87:21:d6:89:69:09:d9:64:ee:
5f:72:3b:33:c8:c4:46:c7:f1:71:71:26:b4:c2:70:70:57:74:
e5:a6:45:dd:47:84:e7:47:18:d5:ee:9e:6a:82:be:23:90:64:
10:c4:75:61:c9:02:2e:74:72:d3:cb:15:95:33:19:71:8b:59:
f2:f8:b8:39:c8:5f:e2:11:7e:2a:59:fd:d4:67:ef:1c:85:17:
e8:a0:73:68:ea:62:9b:ef:5e:8d:34:65:4d:2a:23:20:3c:9a:
5c:0b:26:f6:25:06:78:3c:53:37:fa:d6:78:a4:20:9b:48:42:
27:7c:7f:35:9f:d3:1a:75:13:b5:c6:66:a2:2f:3f:3a:3d:b7:
ef:76:16:7a:ad:ec:38:50:c4:4e:75:b9:5c:eb:e1:95:47:d1:
23:44:b6:bf:ef:7c:da:13:48:e8:93:c2:97:c7:07:11:6a:f1:
5e:ea:7f:cc:41:ab:d9:09:8a:5a:f6:57:4a:c9:f5:35:d1:58:
41:8e:58:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:42 2025 by rpki-client