Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa
File: jyr_n-M2eH8b7LuNQkKGYjumagk.roa (raw, json)
Hash identifier: Vq0EdlRXHqVgmaeJEpiCccFCaKiCYmprHKGWwg7VzEU=
Subject key identifier: 8F:2A:FF:9F:E3:36:78:7F:1B:EC:BB:8D:42:42:86:62:3B:A6:6A:09
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DDE
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa
Signing time: Mon 26 Aug 2024 05:27:14 +0000
ROA not before: Mon 26 Aug 2024 05:27:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 140.129.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3550 (0xdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8F2AFF9FE336787F1BECBB8D424286623BA66A09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:87:a6:cd:45:7f:c3:a2:68:3a:90:79:c1:71:
7b:fd:bf:ed:3d:d8:68:94:0e:43:3a:3a:2c:01:19:
58:41:54:24:bf:84:96:48:cb:f1:5c:2e:68:ca:ba:
b6:49:75:df:2d:c1:c0:76:7a:30:c3:5f:8c:d9:89:
d5:a9:36:5f:1f:f3:87:97:a8:57:7b:f6:df:ef:3f:
28:cb:9b:2e:c0:3a:cd:04:86:9c:ff:f0:b1:91:40:
30:bb:51:e0:57:88:94:01:b0:fb:56:d4:ee:76:d4:
6f:86:23:66:7f:7c:c1:47:2e:b8:9f:96:bd:67:10:
d5:8b:b9:99:8f:17:a0:31:c5:46:0d:e0:2a:bc:cb:
c5:d7:30:48:88:56:b2:cf:ff:cb:45:ae:d8:21:49:
5b:e4:30:be:bd:cf:9c:d5:e8:9c:87:e8:bf:92:5a:
d2:d6:70:2f:a5:7d:53:6e:aa:c0:ea:65:55:d6:3e:
7a:57:c6:c9:ff:8a:02:ee:23:bf:33:a4:d3:e4:2c:
c5:84:e4:61:e5:99:fc:e6:bf:92:bb:6b:a7:f9:44:
62:29:a8:37:84:28:e9:94:20:b9:2d:2a:91:14:5a:
43:d1:f8:37:f9:46:07:88:13:81:06:be:f4:95:4c:
03:6c:8a:6a:99:68:b1:23:95:b3:ab:6b:41:7d:c5:
0d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2A:FF:9F:E3:36:78:7F:1B:EC:BB:8D:42:42:86:62:3B:A6:6A:09
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.56.0/21
Signature Algorithm: sha256WithRSAEncryption
80:5c:0f:1c:b8:91:75:ad:6a:db:0f:dc:93:28:16:a3:2a:9f:
32:7c:a1:64:4c:3a:09:bd:4c:67:82:8c:9e:a9:d3:8c:52:7e:
8a:6e:1c:1a:85:2f:f5:ab:e0:62:26:f4:6d:36:ec:29:d1:0f:
d6:e7:6a:58:a4:df:3d:4d:3f:23:cd:13:5f:78:ed:94:2c:3d:
0a:6a:e4:8f:a6:b1:18:11:3e:53:02:4d:a1:e1:7c:6c:19:aa:
69:c9:69:74:8c:60:94:d1:2b:1a:70:8f:f3:c3:07:8d:cd:0e:
4a:4f:e0:ef:a3:e0:fa:ac:3c:59:51:84:21:17:d7:5a:38:1f:
81:ab:5c:bd:e5:42:99:52:c7:9b:b0:12:55:22:a1:54:c0:a8:
72:49:15:8c:7d:57:db:1b:13:4e:f5:45:75:1d:16:5b:0d:3f:
95:46:b9:4f:f8:97:4b:b6:b7:9b:0c:48:85:42:bc:3d:c0:d7:
b6:f4:fb:51:93:b5:50:4c:3c:7c:da:ce:c9:18:2d:bb:13:2a:
e7:8c:b8:99:ff:78:02:b4:60:54:ae:82:cc:f7:85:73:3a:53:
a3:a8:d5:5b:b9:de:29:9d:2f:ed:89:cb:d4:77:81:b7:20:dc:
ec:86:28:50:5a:e8:88:19:33:eb:56:10:8a:66:dc:e1:b5:fd:
9c:37:59:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:06:24 2025 by rpki-client