Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/KUDeqo4i4tzffgHHzGEAXVIwr3I.roa
File: KUDeqo4i4tzffgHHzGEAXVIwr3I.roa (raw, json)
Hash identifier: I5VenuwnGG2Ig4FXGEGBPebChZZMhDdjFbEgFfV7EY4=
Subject key identifier: 29:40:DE:AA:8E:22:E2:DC:DF:7E:01:C7:CC:61:00:5D:52:30:AF:72
Certificate issuer: /CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Certificate serial: 0B3A
Authority key identifier: 1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/KUDeqo4i4tzffgHHzGEAXVIwr3I.roa
Signing time: Fri 01 Sep 2023 10:21:21 +0000
ROA not before: Fri 01 Sep 2023 10:21:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131603
IP address blocks: 103.42.144.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 01:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2874 (0xb3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Validity
Not Before: Sep 1 10:21:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2940DEAA8E22E2DCDF7E01C7CC61005D5230AF72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:49:ae:c3:0c:4c:f1:c2:f6:c1:c5:72:0d:
e7:54:52:38:10:d3:f0:93:ec:74:c1:8c:5e:89:d3:
34:e6:fd:73:a0:91:9a:ff:12:ed:43:32:97:86:79:
60:17:cd:a8:80:ab:77:31:c6:ed:14:ee:c5:e4:93:
67:73:29:a3:28:e6:d7:24:d7:92:6f:d0:59:95:72:
cb:46:4f:33:6f:b3:ae:3d:d5:65:15:2e:c8:64:11:
6b:0c:18:55:cf:0b:35:ba:78:65:e1:fa:c4:06:68:
3d:b1:2d:75:04:fd:44:f9:00:98:e8:6a:1f:83:4c:
19:a7:e0:2c:42:7a:3e:dc:c1:3b:ce:58:e8:a7:54:
9d:d8:68:79:41:0a:dc:e9:80:20:27:dc:55:98:fd:
d1:59:33:eb:95:e5:d1:59:0f:2a:aa:19:14:27:23:
30:ba:b1:0d:87:47:92:48:dc:8b:e3:e1:64:53:a2:
68:09:dd:70:67:0d:89:25:1e:80:55:25:7c:6f:50:
ac:76:e5:a1:5d:9e:4e:08:5c:69:c6:ad:4f:f0:8b:
66:eb:3a:00:7f:18:8c:a0:35:8d:3e:51:e1:a6:17:
ea:c1:e4:93:28:eb:6f:79:8d:99:be:51:40:88:38:
c8:d1:bc:75:68:a1:88:a9:e9:d2:7d:ea:a5:81:17:
19:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:40:DE:AA:8E:22:E2:DC:DF:7E:01:C7:CC:61:00:5D:52:30:AF:72
X509v3 Authority Key Identifier:
keyid:1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/HLHKcKMySPs9rui_QeLap2p9z9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/KUDeqo4i4tzffgHHzGEAXVIwr3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.144.0/22
Signature Algorithm: sha256WithRSAEncryption
51:05:e6:3e:03:4e:5c:21:84:c7:53:5c:85:b1:bc:db:01:97:
8a:71:00:1a:4e:6a:c6:58:8a:20:a0:22:e4:93:ae:49:b3:54:
7b:aa:41:99:bf:d0:23:fa:f9:59:7a:47:b1:80:52:27:b8:ec:
7d:90:49:c9:ad:f2:c4:7a:d0:6e:50:fe:93:0f:f3:9b:94:67:
7d:b0:fc:56:5a:1a:32:47:b1:f5:8b:b4:85:05:93:69:c2:0d:
f4:a9:c3:f9:1a:a7:35:8e:c2:fb:89:27:d7:05:0d:3f:5a:19:
b1:5b:45:c0:ee:a8:53:7f:ef:39:6b:a1:6e:c6:4b:60:7c:49:
ed:b4:56:74:61:29:fa:2a:98:22:02:6e:1d:a1:bd:96:ce:53:
0b:90:e6:a9:50:5f:29:23:8c:6c:bb:40:4b:26:b2:b3:30:95:
e2:02:04:53:c5:b2:09:10:5a:94:fb:27:41:49:bd:1e:d6:51:
5f:d8:33:2f:32:ee:00:b3:fe:50:33:74:9a:f8:2b:71:7b:50:
b0:6c:19:70:f1:0b:db:d5:c9:07:3d:c2:f9:65:41:ec:65:ce:
b3:5a:6a:de:4a:b4:c6:69:2a:2b:6c:a3:a8:51:d9:e0:7a:6d:
76:d6:f3:c1:8d:ea:f6:20:84:7a:38:66:74:7f:aa:a3:2d:b4:
66:50:74:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 02:59:41 2024 by rpki-client on console-fra.rpki-client.org