Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/SAasLbgGJkUkYWsyYQ7gMX_ko7s.roa
File: SAasLbgGJkUkYWsyYQ7gMX_ko7s.roa (raw, json)
Hash identifier: UllKP7AGv2kidev5LJWeF4l5hXqZHFOwAeVJg7U/xGI=
Subject key identifier: 48:06:AC:2D:B8:06:26:45:24:61:6B:32:61:0E:E0:31:7F:E4:A3:BB
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 03
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/SAasLbgGJkUkYWsyYQ7gMX_ko7s.roa
Signing time: Thu 04 Jan 2024 07:59:54 +0000
ROA not before: Thu 04 Jan 2024 07:59:54 +0000
ROA not after: Wed 25 Dec 2024 15:30:21 +0000
asID: 205329
IP address blocks: 36.50.248.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 17:59:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Jan 4 07:59:54 2024 GMT
Not After : Dec 25 15:30:21 2024 GMT
Subject: CN=4806AC2DB806264524616B32610EE0317FE4A3BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:c3:dc:4f:db:45:cb:42:e2:a5:fc:77:18:
38:aa:23:97:fc:6d:92:29:95:14:4e:42:6e:67:44:
8c:5f:bc:1e:11:3c:ed:49:8f:4a:21:39:90:2f:41:
0a:df:d8:33:44:18:8b:d0:3b:f6:e6:e3:92:bf:5c:
8c:c1:bb:48:ad:a1:8f:80:12:a2:41:ef:3f:70:28:
e0:7b:bc:50:60:07:7b:db:12:90:b5:c3:a0:f3:fd:
21:52:a6:95:61:68:37:1b:2b:6d:e3:e2:61:b5:5f:
1e:97:e6:d9:03:4b:ad:1a:bb:07:3c:de:58:62:b7:
99:41:de:58:6c:ac:6e:92:fe:21:af:9c:45:67:7f:
15:b0:c4:6e:9b:31:89:aa:7e:47:dc:8e:78:4f:de:
8e:ae:7c:1f:22:14:5c:b2:a6:87:a3:b1:36:c6:6a:
51:de:7d:cc:8b:f0:fc:a5:49:8c:77:b7:29:51:25:
a7:6b:f7:ae:0a:50:43:c9:4d:04:59:63:f0:84:4f:
00:a4:7e:13:64:9b:51:a6:0f:f3:5c:5e:67:88:d4:
8a:4f:7a:a2:51:e5:e7:b9:07:54:66:3c:35:a5:e5:
74:af:cc:68:ec:61:0e:19:a6:c7:6f:81:63:aa:44:
2c:f0:ee:15:8a:3e:9f:95:be:ba:0b:12:90:00:5f:
35:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:06:AC:2D:B8:06:26:45:24:61:6B:32:61:0E:E0:31:7F:E4:A3:BB
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/SAasLbgGJkUkYWsyYQ7gMX_ko7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.248.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:80:2f:64:43:e3:84:2c:63:72:b1:91:4d:6a:3d:50:29:f8:
2a:58:b6:4b:90:d1:fb:26:00:c3:83:82:fa:84:aa:7a:9d:c5:
a8:3c:bf:87:5e:cb:37:5d:12:d7:3b:8e:3f:b1:19:ee:cc:0d:
ae:43:24:7a:c3:95:0d:10:37:98:fd:7e:6e:d6:40:fd:cd:55:
7a:d0:2b:36:1b:13:1e:ba:59:34:9c:1f:69:06:f3:b5:09:ed:
be:de:ee:41:d7:81:0a:f1:e9:9f:b9:d9:f5:da:57:09:7f:2c:
c4:b0:7e:23:a3:67:d8:f5:fd:2b:1b:63:32:1a:59:9a:0c:05:
c1:0f:35:d9:49:3a:f0:2c:33:91:ec:0e:b4:85:3d:cd:df:38:
00:e9:5c:d7:43:4d:95:58:45:82:87:54:c6:f5:29:00:02:db:
1d:a9:ac:7f:48:24:93:8e:e0:ed:31:e6:2c:ca:ec:0f:f4:6a:
c7:33:bf:e2:ea:0a:8c:c2:15:9d:6f:3c:dd:25:f2:1e:63:30:
14:ee:12:47:77:3e:87:5c:7f:10:48:9a:7e:45:05:68:d2:d3:
79:cd:af:90:cf:68:e1:6d:f5:e9:be:39:74:5c:30:c8:4f:47:
03:cf:a3:89:ee:c7:82:70:37:96:57:ae:23:8d:04:5c:ab:de:
ef:41:16:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 21:28:28 2024 by rpki-client on console-ams.rpki-client.org