Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/jt7kyPGRnAFpm3e2Q7T8AK3oFcA.roa
File: jt7kyPGRnAFpm3e2Q7T8AK3oFcA.roa (raw, json)
Hash identifier: INyUsuftpjkWaYgboBl4+WFIhFPl7ep1N6P/BiWH3rk=
Subject key identifier: 8E:DE:E4:C8:F1:91:9C:01:69:9B:77:B6:43:B4:FC:00:AD:E8:15:C0
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 05
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/jt7kyPGRnAFpm3e2Q7T8AK3oFcA.roa
Signing time: Thu 04 Jan 2024 08:02:09 +0000
ROA not before: Thu 04 Jan 2024 08:02:09 +0000
ROA not after: Wed 25 Dec 2024 15:30:21 +0000
asID: 151188
IP address blocks: 36.50.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 17:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Jan 4 08:02:09 2024 GMT
Not After : Dec 25 15:30:21 2024 GMT
Subject: CN=8EDEE4C8F1919C01699B77B643B4FC00ADE815C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:99:de:37:45:8d:2c:95:1b:ae:70:02:fe:7e:
45:88:2b:1f:f5:4e:22:c0:61:3f:a4:47:64:14:35:
77:d6:b5:7b:2b:bf:d8:30:f9:96:9c:57:db:b1:29:
a7:ec:a2:ce:09:f0:44:89:7d:53:8b:5d:1f:21:e5:
2f:aa:39:7f:e9:ff:28:50:2b:68:c8:ee:54:62:ba:
d2:45:b2:7b:86:2a:49:45:3d:0a:3f:3b:5f:54:dc:
d9:04:0b:25:fd:47:7d:ea:2b:b2:de:e6:05:09:0e:
af:94:04:6a:13:70:f6:0e:f6:ef:f5:b8:43:17:92:
23:44:9e:64:e0:1c:4f:67:fc:89:1f:16:c6:4a:00:
75:2e:e9:36:32:c0:3f:50:1c:f2:9a:27:13:aa:6a:
2f:e9:fc:95:40:54:79:28:d2:dc:c1:3e:dc:a6:fc:
46:b0:35:d8:62:2f:bd:c4:d3:3f:43:d8:2a:53:11:
96:b2:fa:97:b1:b3:72:43:c8:8b:4d:ec:30:74:d0:
6f:fc:f7:5f:d3:ff:6d:94:3d:76:af:98:10:9c:65:
0c:ec:e1:d3:7a:23:d3:21:43:52:32:b3:8c:a2:11:
8c:71:12:e7:4a:48:1e:35:2f:30:99:35:5a:ab:2a:
5b:2a:34:f1:1b:97:17:5b:09:5e:07:a0:31:85:2e:
6d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:DE:E4:C8:F1:91:9C:01:69:9B:77:B6:43:B4:FC:00:AD:E8:15:C0
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/jt7kyPGRnAFpm3e2Q7T8AK3oFcA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.249.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:b1:6e:01:48:a3:a0:b9:09:8e:2d:2b:fe:dd:ae:c0:6b:0e:
6b:8a:f4:c2:3a:17:c2:1b:96:a6:ba:9e:3f:f6:57:4a:23:96:
57:fc:7b:1f:53:ac:26:98:6a:85:67:e9:1b:f1:1f:dd:e3:65:
10:65:c4:3f:c2:49:cf:b8:bb:a6:04:36:75:34:6e:7b:a4:6d:
c1:ec:0f:07:31:64:3b:5c:b1:04:4b:43:dc:ec:d2:f3:07:c7:
02:35:f3:48:c2:d0:4d:44:7f:af:b3:f4:fb:2e:3d:db:28:5f:
9d:90:fd:e0:90:ad:4a:56:d8:c8:fa:65:a1:c4:56:a7:5e:e9:
a1:d2:ce:f5:54:65:61:79:5e:93:57:2b:a5:1d:36:99:53:81:
54:3d:c8:57:fd:69:64:1e:af:e8:e4:cd:e0:8c:e3:92:11:f4:
8f:fe:da:61:42:d3:db:4e:56:fb:c7:f6:63:5a:ff:e9:be:5a:
a3:ce:d1:67:de:b7:69:c9:d0:b7:52:5e:49:74:3c:d5:d7:d4:
14:1b:3d:5d:54:b3:36:de:be:a2:5b:80:5c:35:c7:42:ca:2e:
91:cb:de:35:de:27:97:e8:6a:8b:a4:2f:60:c9:56:b6:07:eb:
c2:2b:6a:b6:db:a0:a2:f8:98:26:11:d8:2e:b7:0f:38:c8:d4:
ed:54:a8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 21:28:28 2024 by rpki-client on console-ams.rpki-client.org