Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DV2qoKpeJSUNGzYbWyOmJlWk76A.roa
File: DV2qoKpeJSUNGzYbWyOmJlWk76A.roa (raw, json)
Hash identifier: EOhPp4FGS4TVJUZcwoY9eybO9MvdfLBWJh8e/GyRw80=
Subject key identifier: 0D:5D:AA:A0:AA:5E:25:25:0D:1B:36:1B:5B:23:A6:26:55:A4:EF:A0
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12CA
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DV2qoKpeJSUNGzYbWyOmJlWk76A.roa
Signing time: Mon 26 Aug 2024 05:32:33 +0000
ROA not before: Mon 26 Aug 2024 05:32:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4810 (0x12ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D5DAAA0AA5E25250D1B361B5B23A62655A4EFA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:df:b6:96:ff:45:71:7a:4b:d1:9d:7a:b0:f0:
93:03:d2:c6:a8:be:39:4d:a8:c9:dd:38:5f:7e:c5:
85:2e:eb:4d:7e:15:cb:91:07:b0:57:28:0d:02:a4:
cc:57:61:7a:a9:04:73:90:f3:8c:35:0e:99:08:28:
75:4e:c8:09:1e:be:f0:f0:ac:9b:27:ae:bb:33:f5:
ae:33:a7:1a:63:8b:7c:9e:74:5a:21:cb:f4:2a:7e:
66:5d:f9:67:d3:27:71:6c:92:92:4e:1e:ac:a8:c6:
14:cb:66:d9:b2:f7:94:45:cd:64:e1:ba:9c:ed:e4:
0a:c3:dd:7b:47:a6:70:20:48:24:16:0f:a2:90:07:
db:24:11:11:d7:56:64:cd:a0:97:b0:dd:6e:0a:46:
93:52:2d:9a:b8:22:1d:7a:03:d3:b6:4e:9f:71:45:
34:fe:21:21:f3:08:7d:24:aa:d9:34:65:45:81:8e:
db:32:e6:85:a2:64:e5:19:ca:55:5b:24:77:5b:4a:
eb:fb:5a:5d:c2:fc:03:2c:b5:c5:b8:e5:73:3a:c1:
1e:e0:8b:51:36:d2:b0:ef:24:3e:d9:8f:c5:bd:33:
32:9c:bb:9c:38:a1:56:97:56:a7:55:27:14:48:ef:
2b:b1:77:e5:4a:a5:a7:61:68:55:9b:f1:40:fc:bb:
df:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5D:AA:A0:AA:5E:25:25:0D:1B:36:1B:5B:23:A6:26:55:A4:EF:A0
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DV2qoKpeJSUNGzYbWyOmJlWk76A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:df:ec:09:b7:ba:aa:05:c0:aa:d9:63:e6:20:02:02:26:b7:
c1:7a:56:c2:e5:df:f0:ad:cf:df:71:d4:4e:38:3a:87:2d:2b:
8f:b0:dd:66:2a:fe:c0:88:88:03:04:16:3c:9d:a4:aa:42:fc:
bf:18:9d:32:2e:f4:81:52:eb:4d:d3:aa:2c:17:e0:43:af:58:
d4:71:a6:5f:49:1c:87:9e:70:17:e7:f6:c1:0b:e7:07:de:d2:
63:af:1a:c7:f6:f3:2c:23:3f:59:ae:8c:66:ad:0d:91:17:09:
e9:38:10:70:8a:cf:5b:34:0f:1b:18:13:5b:ec:04:27:ca:75:
cc:15:11:15:e3:cc:d4:f9:ca:dc:7b:38:33:0e:af:d0:00:11:
e6:9c:3b:4b:0c:c1:16:08:45:bc:82:e2:82:6e:08:d9:02:76:
ab:55:d6:6d:b2:58:11:69:f1:fd:73:bd:16:a7:42:3b:4b:8f:
a2:a7:a5:40:41:ff:d5:25:3c:2c:73:44:14:de:04:f0:00:0d:
9b:2e:5a:9d:5b:e2:55:0a:9e:8b:49:69:6b:30:42:a8:87:ec:
91:bb:58:a4:76:92:6c:ac:60:7d:4d:ac:51:0b:a4:36:80:dd:
d7:2f:ef:55:81:c9:b9:62:f9:f3:f9:94:3c:3b:09:45:ba:b3:
ca:e9:5d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:17:31 2025 by rpki-client