Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/34JLgZJfFxIvMKqT5ar5QwQibFo.roa
File: 34JLgZJfFxIvMKqT5ar5QwQibFo.roa (raw, json)
Hash identifier: 3dqan6HAhvnYZ1+yjCF5GfQvsNn0w7aksyhLRIZLdFI=
Subject key identifier: DF:82:4B:81:92:5F:17:12:2F:30:AA:93:E5:AA:F9:43:04:22:6C:5A
Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D
Certificate serial: 03
Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/34JLgZJfFxIvMKqT5ar5QwQibFo.roa
Signing time: Thu 15 Jun 2023 01:24:20 +0000
ROA not before: Thu 15 Jun 2023 01:24:20 +0000
ROA not after: Thu 13 Jun 2024 09:33:31 +0000
asID: 18041
IP address blocks: 103.220.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 09:34:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D
Validity
Not Before: Jun 15 01:24:20 2023 GMT
Not After : Jun 13 09:33:31 2024 GMT
Subject: CN=DF824B81925F17122F30AA93E5AAF94304226C5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bf:55:73:3c:53:63:de:d7:71:e8:c1:fa:5f:
c5:ab:0a:17:d8:b3:f4:10:a8:6d:55:70:8a:be:41:
dd:6a:94:a1:4e:91:87:bd:4c:4b:d2:24:e9:38:8e:
bc:67:b0:24:71:bd:3a:3c:4e:9b:fb:6a:2f:f4:60:
af:42:ed:12:7c:7e:5c:2e:50:5d:05:e2:fa:2a:a7:
3d:91:82:de:81:c6:ce:6f:1e:d5:9c:f5:50:52:9f:
be:7c:e9:17:00:9b:68:61:ce:36:04:ae:11:f1:99:
1c:81:8e:cf:82:de:ee:53:fb:d2:1b:09:62:be:3e:
15:d0:2a:15:27:5c:0e:8a:b3:74:47:bb:91:47:44:
d4:4e:4d:35:b5:9e:27:4b:c2:0b:5f:9d:d9:fa:b1:
19:ac:e3:86:45:aa:11:97:fc:21:55:cf:f0:3f:a9:
b9:c7:4b:dc:ed:39:c1:a4:40:8c:01:c6:6c:b0:9b:
63:ab:32:1b:06:ea:84:38:09:7f:36:2b:fb:21:3c:
7c:54:c9:64:92:aa:69:3b:09:e9:f6:fa:fd:54:c5:
e5:91:60:ec:8f:9f:44:33:c0:34:7c:5d:b8:00:35:
ea:9b:9e:28:cc:dc:90:f4:2b:8b:ed:21:21:79:3f:
72:5c:41:bf:5e:a0:7f:2d:83:db:6a:d8:70:98:c8:
4b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:82:4B:81:92:5F:17:12:2F:30:AA:93:E5:AA:F9:43:04:22:6C:5A
X509v3 Authority Key Identifier:
keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/34JLgZJfFxIvMKqT5ar5QwQibFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.220.218.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:f7:ad:b0:f9:62:64:26:a2:99:41:68:c9:41:ba:32:f6:4b:
48:a1:c6:9a:6f:0b:cf:62:44:be:45:ee:c1:55:be:2c:ce:dc:
a3:38:94:72:c7:96:bb:46:c6:9d:05:d1:cf:3b:82:d7:d1:06:
31:ac:84:f1:c9:f3:15:cd:41:b6:97:3e:d4:d5:f4:2a:5e:e4:
d6:81:28:3c:ab:27:76:25:a3:83:bb:77:74:1f:51:f6:8c:f9:
31:01:3a:ea:e2:34:8d:65:27:65:1e:09:dc:92:49:8b:e0:28:
cf:fb:25:27:57:25:44:23:31:cc:fd:ce:52:78:49:3e:a0:58:
48:be:ea:77:bb:69:3c:51:8b:2a:b5:c0:7b:38:7d:53:83:4d:
ed:23:4b:64:27:df:88:c0:0d:a3:d8:0d:57:f3:db:6f:f8:00:
66:b4:14:fc:46:0c:70:d3:dd:fc:6d:8d:04:85:64:fb:7f:d1:
c1:c4:83:36:20:c1:a5:e4:7f:fd:4a:ee:ec:56:32:64:12:ef:
11:cd:e4:72:eb:66:0e:33:57:f5:50:6b:8e:97:62:18:d0:96:
11:7a:52:72:0a:62:7a:75:24:8c:14:f6:fd:05:35:0e:fb:2c:
7f:eb:31:fc:74:5f:7d:ab:6a:3d:0b:e7:37:2f:8f:c6:16:c8:
a9:56:1c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org