Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa
File: ALqyEQ3zqojb963glLpyhIY5mTc.roa (raw, json)
Hash identifier: VUpLDHGHvmjgYNE8So/QMKQKJ2EJuOJ9FIWetnuuVmc=
Subject key identifier: 00:BA:B2:11:0D:F3:AA:88:DB:F7:AD:E0:94:BA:72:84:86:39:99:37
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 32C9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa
Signing time: Mon 26 Aug 2024 05:32:01 +0000
ROA not before: Mon 26 Aug 2024 05:32:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 106.1.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:54:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13001 (0x32c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:32:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=00BAB2110DF3AA88DBF7ADE094BA728486399937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:a4:08:b1:fe:fb:ec:93:ae:8f:44:cb:10:
12:30:5f:dc:07:4a:69:c4:d9:94:58:c5:38:4c:88:
47:9b:2f:3a:07:1e:ac:0f:e9:eb:6c:0c:4d:7b:47:
c1:41:d9:3a:94:44:c1:ce:41:91:5f:f0:7f:79:a4:
4b:90:eb:c0:6d:de:b6:e8:ab:01:26:60:4d:09:93:
ae:6d:f6:60:9d:53:29:29:f7:3e:2e:3a:5f:79:50:
4a:be:45:44:7c:2c:14:2c:86:f1:e2:15:05:d2:47:
5c:e4:e8:e6:56:96:b2:02:10:fa:d6:78:21:c6:58:
56:0b:cf:e5:8f:a6:fe:dd:32:f8:0e:09:ee:92:be:
d4:59:47:5a:73:4a:0b:f5:bc:bb:14:33:55:ea:8d:
b0:75:66:e8:d7:78:90:16:76:db:d2:cf:21:48:e1:
96:bf:8c:e0:c3:ab:8d:0f:7d:8b:9b:e3:a4:d2:3c:
96:8c:f9:a8:3d:9c:7a:7b:2c:7a:90:99:48:db:0a:
71:50:3a:47:13:1f:df:a5:f3:79:9e:57:32:64:99:
3d:4b:e5:00:38:1a:9c:f9:62:82:9c:52:a1:96:f9:
dd:ea:fa:38:4f:88:38:b4:fb:43:0e:5a:0c:61:e1:
cf:72:e8:20:40:30:cd:52:59:ef:7e:65:f6:5c:d2:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BA:B2:11:0D:F3:AA:88:DB:F7:AD:E0:94:BA:72:84:86:39:99:37
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.128.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ae:6a:b6:81:5b:7c:11:5a:21:86:8b:de:7a:38:4f:35:c5:
aa:e4:b6:1b:cb:6f:ae:16:b7:58:e3:08:e6:de:85:ce:2c:b0:
38:b7:35:e8:e1:5f:dc:90:48:c4:20:61:d8:0b:8b:b7:31:1b:
3b:a6:76:96:0d:76:7c:3a:97:eb:fd:58:0a:64:5b:09:06:83:
e9:7c:a5:03:44:d4:0e:f7:05:d9:2d:ca:57:3e:e7:b9:87:05:
b3:1c:18:a3:c9:cf:c5:f3:23:4a:43:38:c7:a3:b9:9e:c3:68:
ed:2f:8e:32:6e:0b:9d:7d:88:80:63:24:a2:5e:3c:e6:08:1c:
c8:4b:e0:e7:48:78:fa:a4:54:e5:9b:5c:96:2a:fd:69:1a:8f:
d1:aa:75:51:4f:8f:f3:a5:c9:75:a7:24:57:a6:a6:1f:f6:b2:
10:40:47:d5:3f:3b:ed:42:2a:b3:75:5a:3e:ca:45:13:be:d4:
9d:79:45:1b:aa:30:4e:c7:16:40:3c:a3:ea:b5:45:52:e8:3a:
97:ff:2a:00:c2:64:31:28:1c:4f:c5:06:4a:b9:66:2f:01:30:
5c:4a:67:c3:1b:64:69:32:5f:6a:9f:b9:17:d4:44:64:cf:dc:
4b:ba:be:32:71:f0:94:c8:21:74:a2:cb:28:9e:ee:14:18:d2:
8c:bf:ed:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:39 2025 by rpki-client