Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa
File: m3T8czL5hfiwqlgv7_uCSawg6Zo.roa (raw, json)
Hash identifier: 9lSVzsjyKnMFhabRTDECrO03QpWpygadi0KwP1Y5amE=
Subject key identifier: 9B:74:FC:73:32:F9:85:F8:B0:AA:58:2F:EF:FB:82:49:AC:20:E9:9A
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CCC
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa
Signing time: Mon 26 Aug 2024 05:26:14 +0000
ROA not before: Mon 26 Aug 2024 05:26:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:12:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3276 (0xccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9B74FC7332F985F8B0AA582FEFFB8249AC20E99A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:db:a7:87:98:37:15:86:6f:cf:af:25:1f:
82:5a:a9:e2:28:0a:a8:c2:6b:1e:a6:e8:e4:f8:22:
6a:58:9b:b0:e4:a2:8d:f4:e2:75:ad:4d:9f:91:af:
d4:0f:c2:4b:ec:84:c3:ae:c2:fd:b4:42:37:e3:02:
48:42:29:51:56:62:03:fa:5b:0b:bd:0d:1d:ba:45:
09:3e:95:57:11:98:24:f2:2d:16:db:4b:fe:28:e1:
6e:23:29:9c:eb:7a:4a:e7:5c:14:6c:9e:63:9e:9f:
59:49:2e:d3:d6:22:89:9a:df:1c:97:26:52:da:c3:
71:e8:7c:d4:80:a4:10:e7:b9:64:74:66:dc:93:b3:
24:cd:3f:53:bf:97:ef:3f:67:82:29:25:98:29:40:
2c:3b:6e:7a:00:dd:9f:e5:fa:89:d0:0b:1c:20:05:
f8:ed:8a:c5:0d:26:87:ca:0a:5c:f8:2c:66:7e:56:
17:e2:8f:18:7a:49:2d:34:81:ea:6c:28:24:a7:0b:
d6:b6:84:85:28:14:c5:3d:e5:07:07:f7:0f:d7:9e:
35:79:43:d2:b6:17:da:3a:1a:38:8e:e4:8f:c0:3f:
c6:73:f6:1f:5e:b7:a2:77:bf:6e:aa:8f:f8:36:3b:
97:f2:01:d9:c9:7c:5a:f9:b6:1e:0c:c5:31:63:4f:
8b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:74:FC:73:32:F9:85:F8:B0:AA:58:2F:EF:FB:82:49:AC:20:E9:9A
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
06:4e:db:06:7c:23:6e:f9:6c:d8:37:8a:03:6a:41:b8:af:41:
30:98:54:74:fd:31:42:ef:50:38:31:0a:96:37:71:40:d9:9a:
32:aa:be:27:70:99:eb:8e:74:02:7f:63:d3:bd:1f:b2:79:e2:
3d:e2:2b:e6:f5:41:b5:61:d5:f1:66:38:c2:26:d1:18:ca:a9:
e4:29:6e:01:bc:cf:ec:87:6d:e5:3a:38:7f:5b:40:45:35:f1:
42:3f:93:47:7c:71:c8:1f:c4:01:52:f9:ee:7d:d4:e4:e3:f5:
73:ed:20:2f:7b:71:b4:46:31:6f:79:b8:bb:0e:98:fb:c2:fe:
f9:37:72:7b:a8:d3:d3:85:f3:b5:15:10:8d:1a:63:24:9a:b3:
ae:3b:13:c4:50:19:95:b5:43:c6:05:23:12:97:be:0c:88:fd:
df:ce:38:7f:85:50:e7:99:47:a3:5e:c9:4c:aa:c9:30:87:68:
dc:04:86:80:8d:57:bc:d7:eb:f3:07:e7:07:72:d7:32:38:fe:
e0:d2:22:02:ae:b3:d5:7d:0b:b2:45:f1:06:4d:33:e8:54:96:
22:f5:06:7a:2c:4c:be:85:d1:cf:44:7b:36:f0:a9:6c:2a:35:
b5:e6:af:d9:eb:70:d0:d5:ab:24:f8:cf:d1:cd:f8:83:47:cf:
6c:f8:26:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:45:43 2025 by rpki-client