Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa
File: OmdASh_dKW8oRD92SCGLcywyX_8.roa (raw, json)
Hash identifier: VrqA6H/tsLKr3fLXrdIgD+7L6WAozfwbD2DTXprYTzo=
Subject key identifier: 3A:67:40:4A:1F:DD:29:6F:28:44:3F:76:48:21:8B:73:2C:32:5F:FF
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0C5F
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa
Signing time: Mon 26 Aug 2024 05:28:00 +0000
ROA not before: Mon 26 Aug 2024 05:28:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20473
IP address blocks: 103.129.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Aug 26 05:28:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3A67404A1FDD296F28443F7648218B732C325FFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:da:ac:5c:49:33:0f:72:60:69:a4:d8:10:f7:
03:2e:63:cc:99:44:b1:b2:db:21:a1:f7:8d:0b:56:
e2:0d:00:3a:3a:b2:15:04:e8:80:0f:1a:b6:fb:de:
2f:6f:a8:31:41:65:47:63:1b:43:a4:1b:b0:d4:7e:
0e:f7:af:aa:48:91:6a:30:95:7e:ec:75:68:e1:b8:
6a:8c:a9:ab:8c:4e:7c:6e:d4:7b:61:1d:49:c8:bd:
b9:7a:b7:fa:7f:3f:9a:10:5b:01:bd:77:bb:7a:d8:
75:67:4d:6f:9f:52:c8:bf:38:9b:a6:e1:2e:2a:37:
f6:cf:85:53:50:bc:e9:0a:b0:fb:4d:b6:f9:b0:a3:
97:e0:38:e5:3c:10:93:71:62:c6:67:f3:6f:ea:79:
ea:8e:44:08:9f:c9:54:37:73:11:4c:15:f6:d0:ce:
8e:fc:00:d4:1e:c9:ae:d6:78:0e:2f:59:14:d4:a3:
55:fe:71:d9:8d:e1:88:ff:c0:90:68:af:57:71:8a:
97:11:05:56:3d:94:af:f5:f6:09:16:f3:3c:ef:5a:
a0:4f:29:1b:f5:89:f4:ca:e0:6e:24:74:69:9c:6e:
b4:9b:a1:5d:9b:a0:94:fd:77:ed:5a:9b:ea:75:ff:
fb:40:56:df:96:67:36:b0:c7:19:a9:4d:c4:a2:41:
83:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:67:40:4A:1F:DD:29:6F:28:44:3F:76:48:21:8B:73:2C:32:5F:FF
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.147.0/24
Signature Algorithm: sha256WithRSAEncryption
26:b6:92:88:58:03:8b:ef:18:0f:a4:6e:fe:b3:0f:48:4b:23:
f7:39:29:c7:c4:9f:ad:1f:70:b2:51:ff:6e:77:22:d4:6f:a6:
40:f4:c4:77:91:22:48:61:98:3d:98:2d:17:7b:01:52:ae:59:
3d:6d:a0:d0:f8:70:18:23:20:f3:b4:f3:59:25:17:a2:b9:60:
63:0f:46:96:be:36:75:f7:df:b3:dc:48:41:ab:97:94:7c:68:
ac:c2:32:97:69:a2:3a:32:0f:65:b9:ee:51:7a:28:32:95:f5:
05:82:dc:a0:fe:45:ca:ee:42:44:3b:37:5e:7e:3c:69:24:8f:
06:d8:fd:f0:5f:a8:a7:a8:e7:58:fc:e5:56:4f:71:75:8c:07:
03:9a:b9:47:b7:92:f4:bc:08:21:1e:b0:2c:e4:c8:23:7c:43:
67:63:de:19:82:8d:de:9a:6c:d7:c1:97:cb:cf:9b:8e:77:35:
72:a6:4a:e2:ed:f5:2b:6a:20:b6:09:b3:de:e6:e4:20:b7:4e:
19:cc:2f:26:94:d5:14:ac:33:97:4a:e8:03:79:7a:cd:ef:76:
6c:98:3a:cb:d2:a6:b6:18:53:75:c3:c6:26:8a:93:4f:ef:26:
3b:66:88:3c:b1:27:75:6e:94:c6:7b:f3:9b:10:19:d1:83:e1:
ef:92:cc:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:36:25 2025 by rpki-client