Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qn22_14iHQf5yT4pmqj2w2oPeIs.roa
File: qn22_14iHQf5yT4pmqj2w2oPeIs.roa (raw, json)
Hash identifier: 483Xb2Gw/llU7n3HwBQUhIR3gqahVGkY4Zr7f8lCi38=
Subject key identifier: AA:7D:B6:FF:5E:22:1D:07:F9:C9:3E:29:9A:A8:F6:C3:6A:0F:78:8B
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CDF
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qn22_14iHQf5yT4pmqj2w2oPeIs.roa
Signing time: Mon 26 Aug 2024 05:27:37 +0000
ROA not before: Mon 26 Aug 2024 05:27:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3295 (0xcdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AA7DB6FF5E221D07F9C93E299AA8F6C36A0F788B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:18:cb:71:d8:4f:9f:3f:31:db:24:76:f9:00:
c7:c8:c0:16:cd:22:f3:af:f2:16:d6:36:58:24:3d:
69:81:f6:63:33:c9:81:a9:49:08:9e:9f:33:82:4c:
8e:c1:8c:81:d1:7c:7e:b3:82:d4:40:f1:cb:99:93:
c8:fe:17:1c:49:45:d9:95:87:1d:ee:3f:89:da:27:
ba:bb:e4:23:fd:a1:7a:1b:49:12:a7:5b:9f:13:9b:
8e:9f:98:d6:50:87:0a:c4:69:df:d1:35:d3:34:0b:
5b:de:0e:1a:19:a1:68:2a:e7:fb:5b:a6:c2:72:ab:
28:1b:32:9b:f0:17:fe:49:fa:2b:4f:90:9f:36:cf:
05:47:29:f2:c3:5f:fb:34:d9:fd:f1:05:7f:7a:13:
72:f4:00:b7:33:a8:9a:4a:c1:16:ea:46:c9:ae:03:
f7:33:95:d3:60:65:62:4b:38:b5:1a:d6:95:bb:d3:
fa:57:b3:76:a6:26:53:9c:72:89:49:d6:d4:43:08:
ab:8f:49:9c:81:06:f8:44:46:c2:af:44:87:19:00:
e8:00:89:30:3a:7e:ea:ad:59:25:29:55:90:44:f9:
4a:af:6b:2a:0c:37:66:7e:b6:67:05:51:0b:ad:39:
5e:0b:78:a4:0d:17:3f:cc:92:07:38:b3:80:b7:ef:
b8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:7D:B6:FF:5E:22:1D:07:F9:C9:3E:29:9A:A8:F6:C3:6A:0F:78:8B
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qn22_14iHQf5yT4pmqj2w2oPeIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
4c:eb:40:41:ba:b6:a6:98:8a:07:81:23:2b:69:b3:57:04:53:
5d:fe:00:5c:cc:f5:82:61:8e:e6:45:b7:54:9a:70:3b:f2:95:
12:cf:ca:97:97:f2:1b:4e:28:8a:61:8e:28:f7:62:69:c4:a7:
24:78:4d:02:90:a0:15:85:bf:dc:79:ec:6c:cf:d0:8f:f4:9b:
3e:39:e0:fc:99:47:14:e9:8b:2e:de:8e:2f:52:fb:f1:f0:1a:
18:e2:c8:d5:8d:c0:21:09:67:95:6f:e7:2a:2d:ec:e0:7d:36:
06:c4:fd:a3:90:4c:23:0d:87:ec:06:3e:26:64:10:ca:be:f9:
8f:4f:ba:37:60:eb:28:b5:73:ad:9b:ea:6f:e3:50:12:de:a6:
99:c1:5d:e4:7b:d5:f2:08:a3:15:f8:07:58:5f:fe:6b:1a:b0:
67:e5:72:bd:6c:7a:6a:4f:11:0c:56:cd:cb:a8:92:44:6a:6d:
34:79:1d:76:0e:93:d5:ce:f3:ce:01:63:ae:05:4b:7c:ac:ed:
04:78:14:f1:f8:e5:76:8e:3a:35:b8:2f:30:f8:64:fb:06:57:
91:98:ef:8d:ab:50:d3:23:e9:96:c4:12:76:41:8c:c4:8f:ce:
e8:7d:51:fe:91:cf:de:b3:93:f6:5e:1f:1a:25:32:f2:d0:c4:
86:5d:9a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:51 2025 by rpki-client