Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1aMUolWyTRNoo_RgeWlVhbuVN-U.roa
File: 1aMUolWyTRNoo_RgeWlVhbuVN-U.roa (raw, json)
Hash identifier: lEvD0eJTbGVejCzkQCPR72VUpUAchnpZRut9c/DPxFg=
Subject key identifier: D5:A3:14:A2:55:B2:4D:13:68:A3:F4:60:79:69:55:85:BB:95:37:E5
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12D5
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1aMUolWyTRNoo_RgeWlVhbuVN-U.roa
Signing time: Mon 26 Aug 2024 05:32:36 +0000
ROA not before: Mon 26 Aug 2024 05:32:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4821 (0x12d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D5A314A255B24D1368A3F46079695585BB9537E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:0a:b7:89:30:30:36:32:4d:d3:6d:bf:02:
89:96:10:9e:21:a0:a5:f0:1f:96:7d:56:ac:44:3c:
0e:80:d3:27:b4:e3:68:9d:ad:87:18:63:6e:ff:89:
5b:43:78:92:51:4e:ef:a0:54:6d:b1:de:30:b6:53:
30:d0:78:36:bc:26:3c:93:a4:41:28:f2:cc:4d:f7:
83:a6:ce:9d:d7:0e:74:d4:06:c6:8f:1f:b8:3c:f7:
ab:c1:dd:62:b0:99:56:fe:7b:84:56:b9:6b:7e:85:
8c:9c:f0:97:e4:1e:c4:bd:26:fa:98:2b:6d:5d:48:
67:5f:50:70:06:1a:b2:30:f2:3f:e5:3f:df:e0:ed:
d4:54:f6:99:ed:29:ce:db:59:5f:2a:03:7a:4f:22:
8c:28:91:ab:b9:ae:60:07:dc:8e:95:77:c9:2e:72:
07:d3:b6:c1:d3:86:a6:c6:2e:8d:b1:97:4d:b6:00:
d1:70:e8:5d:96:bb:74:5d:38:59:58:c0:91:a7:c4:
bf:01:34:c3:c2:47:05:68:f6:96:7d:e2:7a:2a:c7:
00:24:9e:a3:1d:f1:88:f5:46:9b:e7:8e:14:30:b6:
c3:07:1b:24:49:22:6b:cd:63:74:15:70:aa:8c:53:
2f:ba:dd:14:a9:ae:80:a8:15:ef:7b:e3:ba:19:92:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A3:14:A2:55:B2:4D:13:68:A3:F4:60:79:69:55:85:BB:95:37:E5
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1aMUolWyTRNoo_RgeWlVhbuVN-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
90:8b:ed:13:17:a9:4c:39:95:63:eb:24:87:56:9e:a0:02:4b:
21:89:2c:66:a4:ed:2b:ea:95:5c:6c:2d:b9:f9:f4:b1:8f:a3:
df:ac:02:e3:ba:6a:c3:f8:65:31:d4:48:51:55:cf:ce:30:f3:
23:0f:8f:9b:87:cd:35:df:73:0f:44:a3:a4:33:a9:60:61:34:
ed:26:7c:4f:6a:ca:73:4f:ff:fc:c8:70:23:17:76:a5:24:be:
23:a8:16:e0:36:b0:3e:5a:13:30:4d:f1:66:20:94:43:07:c1:
f7:45:c8:bd:ce:ab:5f:2d:b0:9a:a3:c2:fb:b6:4f:c4:5f:16:
f0:ed:82:ff:f9:85:59:f5:96:9f:e3:27:ce:04:ed:3b:ba:21:
b8:af:05:79:7e:b4:b5:76:09:79:a5:d0:82:91:bf:52:c5:2b:
b2:16:fc:b9:d7:03:5e:a9:ad:0b:1b:66:98:6b:4b:2a:fb:75:
d7:b8:1d:d6:20:84:24:f8:52:8c:46:3c:bc:1f:6a:ab:6f:d3:
be:83:f0:1b:a0:a3:8b:89:2a:73:2d:76:c6:9a:ff:d3:0f:7d:
8e:0a:6f:1b:c5:22:c2:65:34:4c:4f:05:b5:00:21:1f:2d:cb:
b6:d9:52:e9:46:b5:6d:2c:94:82:45:ec:1b:c4:d0:46:2c:0a:
40:77:62:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:22:32 2025 by rpki-client