Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/tYrrgyARSsRRS241s4hAWUZGhkw.roa
File: tYrrgyARSsRRS241s4hAWUZGhkw.roa (raw, json)
Hash identifier: dzHir6pKfYTGhn+YGVsC9sv0kI3kiocxivrnPvvLfrA=
Subject key identifier: B5:8A:EB:83:20:11:4A:C4:51:4B:6E:35:B3:88:40:59:46:46:86:4C
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0CBC
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/tYrrgyARSsRRS241s4hAWUZGhkw.roa
Signing time: Mon 26 Aug 2024 05:25:54 +0000
ROA not before: Mon 26 Aug 2024 05:25:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 103.133.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 04:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3260 (0xcbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Aug 26 05:25:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B58AEB8320114AC4514B6E35B38840594646864C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:72:98:14:13:9a:a6:39:8d:05:24:f3:3f:2e:
09:ac:ff:d8:d7:98:68:0c:94:7a:a3:60:56:4b:50:
0d:ab:87:32:75:3b:7d:e7:6c:21:a2:0c:81:da:22:
aa:11:b0:96:b3:0d:45:19:79:17:a1:c3:19:d6:41:
33:d6:eb:e2:cf:07:10:ae:45:60:88:bd:dd:41:9c:
a7:1b:99:c8:b7:46:c5:5d:e7:84:6a:1b:47:02:08:
6e:a4:23:73:df:38:7b:4e:00:d2:2e:ba:14:1b:11:
0e:04:11:a3:b7:c9:11:b8:26:f1:9d:ea:ff:f1:21:
04:55:c1:33:1f:b9:28:29:dc:50:de:84:3f:fb:00:
4d:bd:b1:ff:44:06:f0:29:5d:0b:70:1c:b3:01:e8:
6e:26:ca:2d:b5:61:a3:f4:4c:c4:50:1f:b7:08:91:
ab:2c:e8:e1:d4:b0:ab:5e:33:fb:9e:af:80:13:fc:
7a:8f:c2:7b:1f:04:ab:a5:4a:c7:b5:a5:bd:99:60:
bc:62:ea:78:18:f1:40:70:1e:b8:c3:6d:aa:46:1f:
86:39:d3:fa:6f:14:cc:53:fc:26:8d:55:30:7d:92:
42:c6:80:fd:7a:cc:11:7b:65:32:8e:b3:79:51:a6:
fb:6e:77:c9:13:6e:ff:0a:6c:cc:b4:a5:bd:0a:e6:
ff:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8A:EB:83:20:11:4A:C4:51:4B:6E:35:B3:88:40:59:46:46:86:4C
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/tYrrgyARSsRRS241s4hAWUZGhkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.152.0/24
Signature Algorithm: sha256WithRSAEncryption
43:39:3f:df:96:d8:c4:d0:5a:40:e5:bf:2c:1c:ed:91:30:70:
14:2e:5f:9c:5f:b3:48:42:04:20:ed:11:39:ad:c0:04:57:25:
db:ad:07:d6:b8:d9:c3:9e:de:79:35:8e:b6:d4:7d:49:e0:00:
b0:36:05:14:3a:93:e1:3c:2f:6c:06:03:25:da:8e:1a:56:4e:
49:74:fd:f2:00:f2:69:5a:f2:a2:5f:38:63:10:45:92:d5:11:
d5:8e:30:b4:f5:c4:32:67:65:e3:a5:97:53:ea:ba:80:c1:9b:
42:2c:6a:c5:e9:92:ea:05:b6:06:8d:f9:65:46:97:96:09:6e:
0c:48:e7:92:6c:d1:a4:d8:14:38:6e:52:f9:59:51:6c:69:20:
ad:8b:28:90:d1:42:11:9d:e2:fb:5f:0c:65:1b:db:2b:90:69:
7b:73:b5:1f:e1:85:64:db:80:4f:8e:52:36:49:b6:fa:43:92:
6c:d7:ed:89:36:ed:50:61:6b:a9:72:ac:46:26:e4:09:0f:f3:
00:69:7e:c9:e4:4e:9b:d1:54:c1:1c:0a:8a:29:c5:76:34:fe:
28:00:64:2e:92:8b:08:83:12:c5:89:ae:80:58:90:2c:3b:40:
7f:86:ac:e5:9b:3c:b6:8a:c2:aa:8e:b9:5e:cf:3a:4b:cb:20:
5c:53:0c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 06:12:37 2024 by rpki-client on console-ams.rpki-client.org