Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/lpdpIVB-ZwDgiY78mi98PG7w340.roa
File: lpdpIVB-ZwDgiY78mi98PG7w340.roa (raw, json)
Hash identifier: WRAIixSB0d5Jv3Z4TGx5sWDK2HovK2wlWDK1JYyxptc=
Subject key identifier: 96:97:69:21:50:7E:67:00:E0:89:8E:FC:9A:2F:7C:3C:6E:F0:DF:8D
Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Certificate serial: 0210
Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/lpdpIVB-ZwDgiY78mi98PG7w340.roa
Signing time: Fri 25 Oct 2024 02:18:36 +0000
ROA not before: Fri 25 Oct 2024 02:18:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 160.25.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 03:59:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 528 (0x210)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Validity
Not Before: Oct 25 02:18:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=96976921507E6700E0898EFC9A2F7C3C6EF0DF8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:84:60:ab:24:77:fe:b4:56:2c:05:b9:8a:a6:
fa:14:da:17:8a:74:23:ea:e0:ff:00:5d:be:88:50:
b6:7c:7d:a2:8e:3b:cd:db:2e:92:8d:7a:10:5b:82:
26:15:3c:31:9e:f0:35:f1:f4:13:76:df:38:ea:c4:
8d:36:4a:43:6d:d6:77:20:15:e2:3f:c4:b7:e7:07:
d9:76:79:21:12:a1:c2:4f:a0:a2:fb:b9:01:ca:92:
bc:24:c6:07:7f:9a:6b:5c:1c:9c:34:c2:7f:20:fd:
17:d2:25:91:c2:fe:8e:3d:c8:70:32:f4:e2:f4:d6:
da:06:81:7e:f3:c0:a8:90:ec:e2:7a:91:e7:a8:e9:
2c:ac:98:ce:1e:cb:b8:4d:18:82:c9:35:ec:4b:3b:
ec:3f:9e:6f:5e:54:1b:8c:fc:45:da:69:c1:65:d4:
41:ab:74:0c:4f:62:da:a3:5b:ea:90:4f:91:b3:6d:
cd:a1:80:28:5f:bb:5c:28:6f:71:14:8f:75:e3:ed:
87:1c:83:54:45:80:9d:b5:88:b8:64:c4:27:26:da:
39:23:5e:8b:45:51:3c:e9:36:35:81:4b:4a:91:85:
9b:65:d9:3a:ed:bf:98:30:64:e3:9a:28:70:25:9d:
cc:40:54:86:7d:40:40:37:d3:36:01:0b:c6:e3:26:
5f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:69:21:50:7E:67:00:E0:89:8E:FC:9A:2F:7C:3C:6E:F0:DF:8D
X509v3 Authority Key Identifier:
keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/lpdpIVB-ZwDgiY78mi98PG7w340.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.221.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ea:20:9b:90:98:f5:b3:ca:e0:a4:10:66:95:59:ca:6e:40:
91:48:bd:f7:b5:d0:df:12:06:62:33:b3:05:71:dc:bb:e3:71:
5c:5d:2a:3e:de:83:18:42:fa:7d:65:a1:5b:1e:a0:eb:7c:11:
be:a4:bd:d9:89:03:82:f9:f1:47:8a:14:5c:18:0b:81:9b:24:
5b:b6:aa:5a:80:03:13:bc:f8:ca:c9:9c:57:99:6c:57:d5:d3:
8e:0f:06:d9:a9:a1:49:bb:74:b4:f2:1c:a0:17:4f:0d:00:27:
ba:a4:bf:15:aa:e7:b6:4e:51:66:3e:39:3a:dc:4c:de:2f:c0:
ee:f2:b1:02:60:7f:df:42:53:c0:08:75:82:f3:ce:24:a6:a1:
ce:08:ba:9d:14:8a:63:e9:c8:e2:15:e1:1b:e7:2b:d0:46:31:
30:6a:ef:16:d9:1c:f3:12:00:59:0d:35:f7:4b:e9:3c:77:ec:
51:0d:f3:9d:77:74:c1:44:cf:c1:03:fd:f8:84:f2:09:42:11:
f0:64:2c:6f:e2:04:c8:5c:1d:1c:0d:16:e9:aa:62:08:09:02:
cf:30:c6:86:09:60:83:22:98:09:51:fa:26:7a:07:a6:70:60:
66:e1:aa:01:84:d1:e0:39:67:36:02:97:ee:5a:00:85:a0:d5:
dd:ca:8e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:43 2025 by rpki-client