Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa
File: buy2wyl2RfYBrEknI-wokR0rmRc.roa (raw, json)
Hash identifier: s+LeJyi1JI08Hu0w9Ih0SUFbxpxNKkgwh6GUYTgypPg=
Subject key identifier: 6E:EC:B6:C3:29:76:45:F6:01:AC:49:27:23:EC:28:91:1D:2B:99:17
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 048B
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa
Signing time: Mon 26 Aug 2024 05:34:32 +0000
ROA not before: Mon 26 Aug 2024 05:34:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 17:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1163 (0x48b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Aug 26 05:34:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6EECB6C3297645F601AC492723EC28911D2B9917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:46:90:21:b6:19:67:bb:a0:45:e0:03:a3:cc:
c0:cb:4a:d3:6a:d6:3a:15:a6:02:d2:73:32:f2:4f:
b5:81:d3:a7:86:20:94:90:97:20:de:4a:ec:9f:3c:
6c:c4:92:de:2a:8a:7b:b4:ea:75:8f:0a:33:47:de:
67:50:8b:af:bf:a7:68:2d:ec:77:25:ea:a8:f0:d6:
ad:0c:a1:5a:ed:fd:cf:24:7a:6c:6e:d8:b3:da:b4:
70:d6:81:7b:e8:89:b1:ae:9f:8d:cf:ab:09:2c:e4:
60:06:67:77:43:82:c0:19:2a:16:62:d2:28:eb:6e:
06:e3:1d:03:b1:11:da:3a:96:ca:e2:40:3d:52:77:
57:c9:7b:aa:d3:70:25:c6:de:6d:4e:76:2f:65:b8:
f0:56:6b:43:d5:2c:bf:8c:a5:cd:ac:19:c8:a0:fc:
1d:b4:d0:42:1c:d2:e8:3f:ee:6e:8d:0f:ff:11:29:
d9:94:ab:c5:1a:db:76:0e:89:f5:e8:fc:57:dc:55:
ee:ee:57:cf:78:8c:15:19:5c:b6:24:36:24:d4:f0:
de:e4:1a:ae:11:65:b8:10:1e:bd:12:b6:eb:e6:9e:
5f:08:42:7b:1a:b0:bc:3a:b1:94:f6:3d:cc:17:b7:
29:b1:ac:30:04:d4:59:35:af:74:1a:34:d0:d3:2d:
70:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EC:B6:C3:29:76:45:F6:01:AC:49:27:23:EC:28:91:1D:2B:99:17
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
93:e6:30:e0:ef:33:69:dc:d0:20:35:18:ad:83:61:9c:f3:bd:
55:19:9c:6f:5f:af:73:9a:e7:c3:15:e8:01:a3:82:ff:5c:7e:
8e:0c:55:d8:35:95:7c:42:d1:b7:39:60:b6:4a:72:9f:cf:5a:
2c:04:1e:45:b2:88:7c:6b:ca:d6:0f:fd:aa:10:6a:8d:2e:cd:
0b:ce:44:5b:6a:a0:dd:d3:a4:f3:e0:74:c8:f3:7d:d6:f0:96:
f2:07:34:e2:54:86:27:7b:2d:a8:8c:d3:b3:f6:80:03:24:eb:
67:6a:52:7f:5f:d8:b3:2b:c2:de:6a:3d:f9:81:e8:3e:e1:3d:
33:68:37:1b:b9:cf:6d:e4:3f:a9:ce:f6:5d:14:5f:e2:de:46:
ed:68:13:7e:cd:38:f8:d7:ca:c0:6e:c8:a2:1a:ff:73:bb:b0:
b4:32:d3:cb:28:25:e2:ec:93:07:9f:d1:0f:0a:05:95:02:bc:
6c:3a:7f:36:d2:45:e2:e4:9f:de:f5:e7:29:ba:49:dc:15:bf:
b5:5e:4c:30:f6:06:47:a3:f0:54:fd:a0:3c:6e:88:d6:74:a6:
15:38:30:a1:ad:f3:9c:ed:1f:ef:9c:aa:1b:f8:87:45:6a:1b:
93:07:7b:1d:40:c0:6f:7b:01:b2:51:9d:28:1a:66:2d:d2:49:
f8:83:10:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:53 2025 by rpki-client