Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VNYzzmBtsrOw6g9zt_mtiMcri0Y.roa
File: VNYzzmBtsrOw6g9zt_mtiMcri0Y.roa (raw, json)
Hash identifier: PhvXSjGzN2Rb0fN5iM0nIkIRGobn7Z6zBzvwsaLSJ10=
Subject key identifier: 54:D6:33:CE:60:6D:B2:B3:B0:EA:0F:73:B7:F9:AD:88:C7:2B:8B:46
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CD8
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VNYzzmBtsrOw6g9zt_mtiMcri0Y.roa
Signing time: Mon 26 Aug 2024 05:27:36 +0000
ROA not before: Mon 26 Aug 2024 05:27:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131596
IP address blocks: 59.102.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3288 (0xcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=54D633CE606DB2B3B0EA0F73B7F9AD88C72B8B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:94:ed:00:95:c5:a8:6f:40:7d:73:44:05:93:
5f:b7:74:7e:e7:20:04:35:e1:f2:56:c4:1f:32:17:
77:2f:ae:88:82:2e:66:5b:c5:83:51:8e:8e:60:80:
9f:ac:c0:b7:73:90:e0:38:f0:1b:a8:f3:23:79:4b:
e4:cf:ad:f3:1b:a6:cb:f3:38:82:2e:96:32:61:90:
36:b3:63:a4:f8:43:cc:a0:c0:8c:de:b2:2d:b1:1a:
6a:05:68:13:7b:4b:fb:03:76:0c:fb:7c:b6:83:b9:
5e:42:d8:cb:08:63:c1:95:3f:a2:07:de:18:bc:3c:
e9:2b:36:ef:97:49:89:eb:d9:4a:cc:92:a5:04:e8:
fc:38:8c:f5:71:b2:85:f6:15:71:e1:90:70:f5:cc:
67:c3:ff:66:ae:58:d9:a1:77:52:a2:77:6b:24:76:
0d:e9:27:bb:17:ec:fd:fa:61:fc:13:fa:be:f1:58:
a9:e0:17:fb:d0:f9:75:f6:21:90:10:94:ae:5c:fa:
db:19:38:7d:cb:6f:bd:5c:12:1c:48:0d:ca:fa:6b:
30:05:13:3f:07:0e:f7:0f:ae:e9:e8:4c:21:c7:20:
30:fb:11:68:af:22:fd:42:17:c1:0b:cc:6b:6a:a1:
90:1f:15:bf:95:61:9d:9b:72:fe:42:7a:15:97:d4:
bf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D6:33:CE:60:6D:B2:B3:B0:EA:0F:73:B7:F9:AD:88:C7:2B:8B:46
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VNYzzmBtsrOw6g9zt_mtiMcri0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/22
Signature Algorithm: sha256WithRSAEncryption
62:9f:ad:db:31:e1:c2:6c:18:c3:3a:80:5c:cf:e1:3d:d0:f2:
69:c0:47:d7:78:d7:e1:10:47:af:dd:93:1b:78:f8:3b:b3:fa:
d6:a9:12:f5:7c:b5:30:a6:4e:5a:63:c1:a4:38:ed:95:8f:1f:
ee:c1:68:a6:d6:c6:eb:2f:94:79:ba:53:16:df:ba:cd:10:03:
fe:1d:0d:54:31:1d:9a:d3:02:f5:94:af:f1:fe:a8:2b:0e:65:
0d:ff:93:f4:d8:87:91:ec:2c:15:dd:44:b3:4a:f1:c7:f7:36:
96:bb:74:ee:b3:a1:33:0f:a6:bc:ed:f3:c6:ca:4a:eb:b4:c7:
db:53:fe:76:2c:17:6d:98:76:1d:b2:1f:f0:99:af:6e:cb:99:
7c:5a:f2:05:20:b1:48:38:cf:6c:20:0d:e8:43:f8:b0:32:23:
65:e2:68:36:f7:bc:5f:06:78:b3:54:b3:c4:96:5f:1b:de:ec:
11:12:32:97:59:a5:f4:91:16:c2:4e:92:70:c6:c8:84:f9:0a:
fb:24:1c:38:b4:d6:4a:bf:d7:c4:96:0a:a6:c1:33:79:3e:ea:
03:0f:1d:34:76:db:b5:07:17:f9:a0:f3:25:cf:cc:b9:f2:f2:
20:82:62:85:52:9f:4d:4c:4c:a9:19:68:63:c3:ef:9e:c5:50:
2d:d9:10:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:59 2025 by rpki-client