Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/XCZ0dsSJ89v8yI6_8ZyqZrPy-qI.roa
File: XCZ0dsSJ89v8yI6_8ZyqZrPy-qI.roa (raw, json)
Hash identifier: kO6feYezkwjh3xUnOt983B1wZRRgfO32coQc77c4Dos=
Subject key identifier: 5C:26:74:76:C4:89:F3:DB:FC:C8:8E:BF:F1:9C:AA:66:B3:F2:FA:A2
Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F
Certificate serial: 0BF7
Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/XCZ0dsSJ89v8yI6_8ZyqZrPy-qI.roa
Signing time: Mon 26 Aug 2024 05:26:24 +0000
ROA not before: Mon 26 Aug 2024 05:26:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7483
IP address blocks: 43.251.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3063 (0xbf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F
Validity
Not Before: Aug 26 05:26:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5C267476C489F3DBFCC88EBFF19CAA66B3F2FAA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:37:0f:17:eb:e3:a0:73:eb:21:1e:04:d3:72:
6f:37:2c:05:5e:06:76:a8:a6:96:39:39:90:9a:6c:
56:31:de:bd:ae:83:15:60:5a:6d:69:44:da:25:de:
db:f5:64:c5:26:81:32:0e:73:bc:d5:87:d5:d8:33:
2d:b7:9a:d5:65:12:1a:6e:e5:7c:05:f3:b9:c0:9f:
f4:2a:e8:bb:35:54:05:53:32:ed:46:f9:9c:69:a3:
c2:9a:75:b0:aa:1f:fb:de:55:33:dd:93:84:7d:4c:
df:23:ad:a3:85:ee:f3:dc:f1:d1:c0:8d:27:e7:e9:
6a:6f:86:3a:ea:75:dc:7f:d9:32:c4:98:45:d2:8a:
db:1d:31:59:2a:03:6a:44:eb:77:1f:6c:f8:96:52:
f4:e7:ac:d3:55:16:06:8d:89:a6:18:c8:7b:f2:74:
69:b1:92:61:46:cb:10:b7:fb:7e:59:2d:4b:c5:d1:
91:d7:97:8b:18:70:06:0c:df:b9:5f:21:90:7f:54:
38:72:d8:f2:00:ca:70:c4:36:b4:ef:21:21:73:c2:
b5:93:ee:1f:f8:38:fd:97:2c:3c:6f:cd:65:2a:b0:
c3:bf:0c:ca:64:73:2c:2c:a8:f0:21:07:73:fc:09:
82:bc:fb:d6:c7:3e:18:9b:31:0b:30:34:21:ed:c9:
c7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:26:74:76:C4:89:F3:DB:FC:C8:8E:BF:F1:9C:AA:66:B3:F2:FA:A2
X509v3 Authority Key Identifier:
keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/XCZ0dsSJ89v8yI6_8ZyqZrPy-qI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.56.0/22
Signature Algorithm: sha256WithRSAEncryption
35:d3:d2:27:e5:26:01:b2:c3:9d:86:06:7d:03:bc:75:fa:22:
3f:8f:9d:2f:c7:e9:bc:cc:fc:f5:1d:fa:6e:fe:f2:ef:25:2a:
44:24:6a:4c:62:fe:4b:1e:39:83:21:91:73:d2:c0:a5:bc:0b:
24:f3:26:6d:fd:59:92:ca:8a:ff:61:87:1c:96:62:9b:b9:9f:
26:26:a7:99:a0:79:60:af:5a:d8:1e:4f:cf:cc:fd:de:78:6d:
54:60:0f:42:d1:28:23:4d:eb:4e:63:2f:a1:1a:66:3c:64:41:
fe:5f:43:f3:bd:82:20:3a:b0:d6:52:b9:e5:0a:2e:bd:e1:41:
f6:2f:17:44:03:55:45:ce:6e:76:f0:aa:b1:73:f6:70:db:ba:
ab:b5:22:ae:d3:5d:3a:2e:4e:e8:7e:be:a3:9d:1f:0d:ad:bd:
c3:8b:8f:1b:53:4b:1d:31:a6:26:c5:31:11:57:56:9d:03:69:
0b:6e:db:25:ad:4b:31:fc:38:12:52:63:70:f7:11:31:d9:46:
70:b1:58:13:77:66:30:de:e0:b0:44:52:42:60:db:2e:d2:4c:
df:1b:a3:bf:2a:c7:9e:1c:80:8d:3c:61:ce:64:c9:39:10:3e:
2f:91:4a:10:62:fc:c9:dc:88:d7:1c:9d:80:a1:3c:e9:8e:65:
d4:d0:53:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:11 2025 by rpki-client