Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/cV7AM15cty9Obbl6hiIVb1v8s8g.roa
File: cV7AM15cty9Obbl6hiIVb1v8s8g.roa (raw, json)
Hash identifier: 9yL/ek+TsctmVB/vLFosNEWAzPdNmdk1B0lM+kF8Ixc=
Subject key identifier: 71:5E:C0:33:5E:5C:B7:2F:4E:6D:B9:7A:86:22:15:6F:5B:FC:B3:C8
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0CA5
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/cV7AM15cty9Obbl6hiIVb1v8s8g.roa
Signing time: Mon 26 Aug 2024 05:26:55 +0000
ROA not before: Mon 26 Aug 2024 05:26:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 101.3.160.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3237 (0xca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Aug 26 05:26:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=715EC0335E5CB72F4E6DB97A8622156F5BFCB3C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8b:d6:2e:6a:a6:a7:26:ac:51:f7:ea:04:40:
44:aa:a2:8e:d9:9d:eb:a8:88:92:62:83:81:66:dd:
e3:c8:71:8d:58:ba:b2:d1:20:9f:8d:fd:36:26:eb:
d8:78:ca:80:04:33:e3:e7:23:cb:ec:66:50:59:09:
f7:17:04:b1:39:dc:e5:e4:ef:97:af:e4:bb:e9:95:
84:5b:08:1a:b3:72:5c:2f:22:9c:a3:d1:a3:c8:6a:
e2:40:4a:bd:a3:a3:4e:6b:53:8e:96:e1:ba:aa:04:
53:2c:51:42:b6:1e:8e:72:52:0b:f8:b1:13:f7:15:
16:0f:6d:eb:46:6e:d6:58:6f:c3:9b:5f:bb:88:5e:
18:73:a5:bb:40:6a:51:a7:af:32:87:9a:f3:f0:5a:
99:d8:21:54:d8:bc:0c:ee:8a:64:82:fe:4d:8c:6c:
e2:68:99:8f:a2:24:db:d8:0f:5e:77:59:37:8f:f3:
53:52:1c:fd:22:99:70:23:a5:62:b3:f0:71:1c:7a:
e4:c7:36:76:f7:06:3b:f4:53:f9:3b:10:34:e2:ba:
ac:14:29:33:8b:0e:9e:a6:6c:1a:40:f8:12:d1:c1:
d4:b2:d3:7a:d8:46:e6:f8:8d:17:bb:df:93:e7:3e:
2f:96:3e:d4:ca:76:85:d8:09:a3:53:01:95:3b:2f:
48:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5E:C0:33:5E:5C:B7:2F:4E:6D:B9:7A:86:22:15:6F:5B:FC:B3:C8
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/cV7AM15cty9Obbl6hiIVb1v8s8g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.160.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:9e:b1:0f:a5:32:d4:15:92:96:e6:c3:40:60:25:d3:3b:06:
2c:8c:4a:d5:6d:4b:48:b3:b0:71:4a:b1:a2:9d:b8:98:ca:55:
4a:bc:c9:be:3f:22:c1:4b:e8:a6:b1:ea:ac:e8:c4:3a:a8:03:
f7:b5:a9:8d:d6:86:45:e6:06:91:88:dd:36:02:5e:d7:8d:5c:
7e:40:cf:04:f5:56:67:4b:0a:d1:44:e0:c1:28:2b:d8:f3:ef:
4a:de:8d:e2:c7:d0:19:c4:c6:62:24:56:86:f5:0a:94:d1:6c:
24:06:72:4a:cf:65:ff:9d:04:19:bf:52:2b:b8:a4:6b:77:15:
01:ac:c1:86:c4:4e:0d:76:96:ee:8f:45:a8:79:cb:a4:65:f3:
1a:97:5f:fa:9f:94:a5:47:5c:4b:9f:6b:ec:19:72:f5:97:fe:
f5:ba:1c:b5:03:75:f0:e7:82:3f:77:94:ee:dd:3c:74:03:c8:
68:42:17:27:17:2a:4c:96:60:9c:04:0b:c8:06:db:ee:ac:5c:
f5:07:de:8d:4a:b1:37:7f:ab:0d:a0:a3:3d:b1:15:43:1c:96:
01:a8:a6:9c:07:39:3d:b5:1c:70:4c:2c:19:f9:e4:b9:c6:da:
83:e2:21:97:fb:37:97:40:03:e2:a2:97:8a:50:a8:4f:e3:93:
33:0b:51:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:14 2025 by rpki-client