Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X77p89oWCka5b1Gj0NHPhlZbz6A.roa
File: X77p89oWCka5b1Gj0NHPhlZbz6A.roa (raw, json)
Hash identifier: sZdkMGUW1yN2uadzLII0Vv9MawoNg2Q2WqTweiw3FWs=
Subject key identifier: 5F:BE:E9:F3:DA:16:0A:46:B9:6F:51:A3:D0:D1:CF:86:56:5B:CF:A0
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12CB
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X77p89oWCka5b1Gj0NHPhlZbz6A.roa
Signing time: Mon 26 Aug 2024 05:32:34 +0000
ROA not before: Mon 26 Aug 2024 05:32:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17718
IP address blocks: 150.242.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4811 (0x12cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5FBEE9F3DA160A46B96F51A3D0D1CF86565BCFA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:1d:b2:9d:ef:2e:43:00:80:83:98:cd:f8:
e2:8c:4b:13:7b:df:a9:66:66:e3:88:0a:39:c5:c4:
8d:a5:ce:29:9e:f0:e2:77:70:e9:c1:82:cf:d6:d6:
0c:1c:6a:aa:0d:4a:6e:69:d4:f6:8c:f2:9b:45:71:
2c:9d:0b:86:bc:a0:6a:ab:fb:f3:92:ed:e8:af:ff:
9f:a7:58:d8:0a:7e:79:13:61:04:eb:fb:8b:35:a6:
07:55:a1:47:bb:12:75:09:17:1a:85:57:94:93:84:
7c:5f:30:ae:d2:39:4b:1b:49:da:bd:35:c7:ec:cc:
11:98:97:d8:29:0d:17:9c:21:10:a6:55:00:cd:e2:
72:0a:96:bf:64:54:fd:4a:b0:dd:f6:6a:96:f1:ff:
f2:24:b3:45:a9:18:d3:20:11:2e:f8:f3:6a:a5:09:
8e:95:5e:c2:85:f0:a9:fb:b4:16:78:2f:0d:ca:3b:
92:21:c6:a6:8a:5f:af:b4:8b:88:85:10:19:57:d2:
9c:b4:f3:0e:4e:8f:3e:41:d0:f8:d4:c0:c7:5e:62:
df:74:52:02:f9:a3:5e:29:06:2c:9e:15:07:47:8f:
68:e1:bf:8c:cf:c6:c5:5c:ae:f0:5a:a5:ef:6f:b3:
66:cc:43:5a:a9:d4:2c:0c:45:ee:3b:58:b2:98:f9:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:E9:F3:DA:16:0A:46:B9:6F:51:A3:D0:D1:CF:86:56:5B:CF:A0
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X77p89oWCka5b1Gj0NHPhlZbz6A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.102.0/24
Signature Algorithm: sha256WithRSAEncryption
88:fe:76:71:cd:10:68:cb:50:04:0b:e5:56:33:36:c7:da:57:
b7:05:b8:2b:7a:ec:2c:98:c0:29:1f:63:fa:41:18:23:aa:a6:
2b:7c:bc:0c:c4:d2:f2:bd:13:bb:e0:83:b6:60:86:6c:c2:a6:
fb:1a:60:4a:1c:88:dc:97:86:c7:38:b0:7e:34:83:57:55:e0:
df:32:5b:5a:be:9e:95:80:4a:31:55:c0:b6:9a:12:dc:71:47:
3d:30:ad:b0:63:fd:8d:e1:de:5c:dd:46:41:a4:e6:90:56:6e:
05:f1:30:3f:2d:53:9d:fb:96:85:e8:9d:6f:bf:cf:1d:d3:13:
40:81:c0:b3:93:66:39:1d:58:d0:13:c9:02:b3:89:74:b1:fd:
b1:e6:ee:18:01:42:6f:18:b7:79:48:98:79:1b:f8:87:f3:d2:
2c:da:30:5f:12:96:c2:99:ea:76:0f:f5:06:a4:13:62:ad:97:
99:98:ff:fa:86:2c:dc:c1:2b:5f:4a:39:fc:93:b1:eb:27:35:
fb:4d:02:f1:ec:ca:79:44:17:5a:5a:0d:58:7d:d8:e7:99:f6:
79:b2:f2:43:6e:16:dd:5d:dc:98:b2:07:22:dc:17:99:c1:24:
f8:af:fb:90:44:6c:51:a4:92:12:07:9c:4a:7b:bb:ee:19:4e:
e7:19:9e:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:27 2025 by rpki-client