Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUCD/1viNj_iaIAKES5iXQAtdmFlyCmw.roa
File: 1viNj_iaIAKES5iXQAtdmFlyCmw.roa (raw, json)
Hash identifier: yBSZmCIKMchho+aoFAGB4tqZXFXGMJ+KrMhjBYesdIw=
Subject key identifier: D6:F8:8D:8F:F8:9A:20:02:84:4B:98:97:40:0B:5D:98:59:72:0A:6C
Certificate issuer: /CN=35D63F285426D9D57209D42C46B9125B23A78EC1
Certificate serial: EB
Authority key identifier: 35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/1viNj_iaIAKES5iXQAtdmFlyCmw.roa
Signing time: Fri 23 Feb 2024 15:31:34 +0000
ROA not before: Fri 23 Feb 2024 15:31:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.115.108.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 00:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235 (0xeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35D63F285426D9D57209D42C46B9125B23A78EC1
Validity
Not Before: Feb 23 15:31:34 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D6F88D8FF89A2002844B9897400B5D9859720A6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:eb:d2:4d:e6:1f:b4:7e:9e:e4:f9:f3:80:1b:
fd:5d:2d:fa:1f:08:04:aa:b4:cb:5c:23:a9:c8:d5:
cd:6f:7d:86:11:4e:df:45:e7:50:ca:ae:78:0b:be:
0a:61:59:9e:8a:f8:44:f1:1a:74:4a:e8:a8:82:3b:
73:81:80:f5:5b:b0:9e:ca:30:ec:bc:be:62:1f:24:
33:c7:c2:a3:78:e9:fb:9e:e6:71:71:78:e9:b2:17:
1f:dc:64:c9:1b:33:72:f2:db:e5:ba:f6:d4:03:8d:
1f:9a:e5:27:20:ee:f3:b1:bd:c4:e0:24:b3:d5:66:
a7:07:0d:41:f2:76:da:b3:58:af:d5:9f:a7:01:27:
00:fc:13:4d:c6:16:b6:a6:c5:7d:21:0d:a2:27:99:
47:38:1b:75:37:1f:a8:46:06:23:52:f7:8f:fb:c6:
9e:8f:12:72:a5:58:90:8b:50:60:3c:62:80:8c:e0:
cd:73:12:e1:ea:b3:b8:05:14:1d:e5:f1:a6:27:a9:
01:a3:d0:10:c1:5f:fd:a0:69:46:f5:be:ab:b4:d7:
1f:88:39:81:0e:38:2b:a7:09:82:81:84:94:1e:bd:
c6:73:8a:ca:14:c8:cb:0e:c5:39:07:2d:0a:4e:35:
ec:ee:72:2c:20:19:ef:63:44:37:ef:10:e9:bd:52:
8c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F8:8D:8F:F8:9A:20:02:84:4B:98:97:40:0B:5D:98:59:72:0A:6C
X509v3 Authority Key Identifier:
keyid:35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/1viNj_iaIAKES5iXQAtdmFlyCmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.115.108.0/23
Signature Algorithm: sha256WithRSAEncryption
60:4f:90:c7:f4:35:fa:31:84:35:ce:11:2a:d4:cc:9f:c0:b0:
b5:13:b9:5b:50:a2:ca:83:dd:81:e7:bb:f3:32:05:d8:35:29:
2f:83:50:f5:01:60:53:3b:04:4f:f3:e1:84:65:52:06:d8:d5:
ad:c1:c7:c5:ea:e7:9f:da:1e:cb:3f:3a:85:37:6a:76:36:65:
1f:c2:93:37:93:c8:a0:91:3c:7c:60:da:d0:58:3c:93:49:ca:
b2:fc:54:fd:49:77:4b:f9:a1:79:51:3f:f9:9d:36:18:0c:86:
78:3d:f1:b8:66:1d:00:08:5d:5e:d2:ac:ee:61:d8:ed:eb:35:
17:d2:be:46:24:a9:26:4d:8f:97:7e:bd:b1:38:fb:67:16:53:
9e:f9:f6:41:73:ef:c9:3e:d5:36:f5:51:7a:e1:84:0a:79:e6:
01:3b:34:ad:41:b0:18:be:dc:e9:e1:2c:e0:19:06:9b:df:69:
12:a1:33:ba:24:7a:9e:bf:e0:61:52:5c:53:51:a3:95:35:a9:
78:7a:77:a7:93:9d:03:b1:6d:13:26:37:ea:e2:bf:1d:0d:62:
c7:5f:82:0f:cf:79:4e:52:6d:78:41:50:a6:bf:29:75:67:b6:
c3:f5:78:bd:c1:86:21:7c:a5:fe:fe:a1:3c:f1:b0:93:38:f8:
b3:7e:2b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org