Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa
File: gH56vKHO_yffKgsPFSdFTVuOCCg.roa (raw, json)
Hash identifier: cDRz1UOtrUIahkHjdyPnKRWSEBLK7aFRMdCVOtCKxJA=
Subject key identifier: 80:7E:7A:BC:A1:CE:FF:27:DF:2A:0B:0F:15:27:45:4D:5B:8E:08:28
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DDC
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa
Signing time: Mon 26 Aug 2024 05:27:13 +0000
ROA not before: Mon 26 Aug 2024 05:27:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38845
IP address blocks: 140.136.0.0/16 maxlen: 18
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3548 (0xddc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=807E7ABCA1CEFF27DF2A0B0F1527454D5B8E0828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ee:19:0e:b2:f7:2c:76:3d:73:86:50:bd:75:
5b:6f:27:52:b3:32:78:89:59:ff:b2:58:0f:d6:8e:
59:ff:a6:73:e9:cc:59:ff:f9:be:1f:b9:38:61:bc:
aa:48:9c:c2:64:7e:2b:dc:b8:7b:90:1b:ce:6a:7a:
26:9f:a3:14:e8:c0:9c:ba:b4:2d:3e:e2:8c:9c:0d:
71:23:39:5d:45:83:6b:8b:24:ee:0c:e8:05:83:48:
53:6a:ee:c8:48:3c:69:1c:01:04:c8:ec:af:bb:23:
f3:f8:5a:50:32:5c:be:0a:1b:0e:69:a0:97:07:b4:
b9:c9:a8:97:a7:6b:2d:dc:ef:22:7c:12:6c:f8:21:
81:c1:a1:ff:d2:04:22:49:e0:cc:bc:a9:e9:35:bc:
1e:1c:80:c1:50:e4:50:82:fc:a5:94:57:00:65:46:
25:fb:f5:f2:20:40:0b:8e:8a:bc:25:83:50:cd:0b:
ac:9e:0a:f7:a8:34:58:89:98:aa:57:99:25:02:0a:
78:bb:85:bf:f2:1c:68:35:d2:d0:6f:55:60:be:c6:
4d:ca:09:e0:46:cb:b5:aa:31:2b:f9:8a:e6:3f:e6:
15:56:ca:c1:e6:b8:b7:f1:b9:ac:29:b1:cf:06:49:
8d:81:9a:a4:c4:52:8d:6b:3c:7c:56:58:61:28:76:
e6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:7A:BC:A1:CE:FF:27:DF:2A:0B:0F:15:27:45:4D:5B:8E:08:28
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:67:ee:90:23:82:8c:cb:ef:01:e4:9a:dd:60:a2:c6:c1:65:
c5:90:a3:87:de:e9:8f:21:33:24:f8:75:6f:74:af:86:a5:8b:
d2:61:15:7c:82:64:ec:46:a4:53:47:da:92:93:88:2f:4b:c3:
9d:5a:b0:26:74:5f:bd:2c:5e:5e:a5:7d:02:20:ea:44:26:09:
da:a3:3b:67:8e:c9:92:dc:6e:7a:71:4d:33:da:68:b9:bb:e2:
d1:d7:2a:d5:90:27:32:d0:8b:52:f1:2f:5d:6d:0c:da:a8:08:
ee:b7:02:39:83:29:c1:29:84:98:12:c0:bc:12:67:fd:7d:86:
1e:32:f9:70:bb:a6:a4:7a:e4:f5:9a:fb:72:84:cd:2e:f3:71:
19:d0:b9:22:64:de:c7:7e:76:70:07:b2:ba:20:5e:ef:00:c9:
51:c1:fc:c8:1c:29:b0:63:ed:b8:c3:2c:dc:9f:df:e3:d5:d4:
c4:f3:73:76:84:d0:61:7f:0d:d9:ae:20:9f:ef:10:8b:f0:b6:
6c:1b:83:1d:30:ef:1a:e8:fd:74:03:94:ed:76:18:d3:02:67:
b3:a6:a8:66:9b:27:1a:f5:48:aa:bc:fa:ad:1a:f5:1e:34:86:
ed:5c:fb:2a:79:c6:ff:3a:89:c5:89:2d:d4:7b:a3:4d:4b:be:
aa:75:7e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:07 2025 by rpki-client