Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/AZ4gdIiUBuHBBu4Xb1ET7H8l-Lc.roa
File: AZ4gdIiUBuHBBu4Xb1ET7H8l-Lc.roa (raw, json)
Hash identifier: dpu3cshLsSAd+fyLAQ8pdTmf1qbfKdWBz1C0mCJ6Rqg=
Subject key identifier: 01:9E:20:74:88:94:06:E1:C1:06:EE:17:6F:51:13:EC:7F:25:F8:B7
Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D
Certificate serial: 18
Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/AZ4gdIiUBuHBBu4Xb1ET7H8l-Lc.roa
Signing time: Tue 11 Jul 2023 00:53:43 +0000
ROA not before: Tue 11 Jul 2023 00:53:43 +0000
ROA not after: Thu 13 Jun 2024 09:33:31 +0000
asID: 201217
IP address blocks: 103.220.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 09:34:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24 (0x18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D
Validity
Not Before: Jul 11 00:53:43 2023 GMT
Not After : Jun 13 09:33:31 2024 GMT
Subject: CN=019E2074889406E1C106EE176F5113EC7F25F8B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:92:4c:a2:70:f6:8f:c9:ed:10:44:5a:82:07:
ad:38:0c:25:e5:8f:46:f2:87:3a:a9:56:cc:f9:94:
91:85:81:e3:e1:6d:55:ca:de:b3:d4:b6:95:d7:1e:
d1:ef:3a:01:dc:ff:f9:bc:5b:05:1f:ca:2b:7e:e9:
a4:25:ad:62:77:b9:92:1f:c9:4e:03:37:35:96:d4:
29:61:b1:24:d4:d4:b2:ac:c6:3b:e3:09:f8:61:07:
08:37:f8:44:c2:32:d5:b8:bb:3f:eb:20:f8:17:1e:
60:d9:5d:3b:80:67:bd:c3:7b:e8:ea:d0:36:34:3b:
b5:44:71:22:e9:e7:26:09:32:17:73:f1:78:b8:99:
1c:17:72:d8:bf:f5:a7:4c:97:88:91:f7:92:c5:1a:
ad:21:d4:ca:d7:9b:cb:a5:1c:be:ef:86:67:70:01:
cf:7a:8b:8a:7a:d8:29:7e:8b:59:7a:e2:45:73:41:
39:8a:6d:f1:22:a4:ce:c3:f8:65:b1:47:2b:af:85:
b5:f1:ba:06:7c:81:4a:c5:db:05:98:d9:c1:f4:23:
d2:d2:3f:36:04:b9:28:32:e8:c4:fe:1b:8a:b5:7e:
11:ad:dc:45:94:68:d8:4d:c9:42:ae:4d:96:91:04:
d8:a3:ba:fa:a8:60:b2:fc:bc:86:6d:26:c4:45:3e:
d2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9E:20:74:88:94:06:E1:C1:06:EE:17:6F:51:13:EC:7F:25:F8:B7
X509v3 Authority Key Identifier:
keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/AZ4gdIiUBuHBBu4Xb1ET7H8l-Lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.220.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:20:a1:df:b3:ad:dc:b5:c5:ac:c0:8f:72:bd:e3:43:f4:b5:
29:5d:54:bf:1e:42:c2:70:c2:0c:64:5c:12:4f:4c:15:ae:11:
df:cd:e3:1f:b5:89:90:be:7d:58:d2:7b:11:a7:1c:97:fd:4a:
e3:32:85:75:45:10:96:d4:bb:8c:a6:05:20:8b:fb:15:b0:3c:
a4:e1:e2:f8:01:1c:dc:c2:62:28:4e:1e:c6:8c:fd:df:c5:45:
c7:17:e5:4d:e2:79:3f:cc:81:c9:00:b7:bd:15:de:67:d1:b6:
bb:bf:50:f0:60:e7:71:e6:00:26:17:ad:ee:f9:15:9b:12:6d:
0b:a9:0c:13:fd:77:3a:98:fa:31:c5:8e:8a:de:74:d1:f2:09:
6a:33:e7:e3:fa:4a:07:13:1a:35:a4:46:e7:00:cb:f7:2c:16:
58:f8:b1:3f:05:13:10:cf:61:db:2e:17:00:44:a0:a3:fb:69:
5c:79:e3:b1:9e:24:7c:6a:34:db:59:85:ff:59:17:50:af:00:
81:42:e6:f0:20:63:05:2c:66:1f:00:c3:14:f8:7e:8b:d1:07:
2d:2a:9d:0c:11:e5:a7:c2:80:41:53:09:09:a3:28:38:31:d6:
55:a8:61:8a:e3:e2:3a:92:e8:33:16:03:39:f8:06:91:e1:95:
d1:d5:f5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org