Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/104IT/LJPqn4L50X4mvdogS09DZQueFYY.roa
File: LJPqn4L50X4mvdogS09DZQueFYY.roa (raw, json)
Hash identifier: wn41a/ntjuZbbrd7QrTjQ45F5jdqi9iWczNMQ/kaNf4=
Subject key identifier: 2C:93:EA:9F:82:F9:D1:7E:26:BD:DA:20:4B:4F:43:65:0B:9E:15:86
Certificate issuer: /CN=D797D20CC7952CD68B3955AA36C401B1B34E2733
Certificate serial: 0C02
Authority key identifier: D7:97:D2:0C:C7:95:2C:D6:8B:39:55:AA:36:C4:01:B1:B3:4E:27:33
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/15fSDMeVLNaLOVWqNsQBsbNOJzM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/104IT/LJPqn4L50X4mvdogS09DZQueFYY.roa
Signing time: Mon 09 Dec 2024 07:39:24 +0000
ROA not before: Mon 09 Dec 2024 07:39:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18410
IP address blocks: 202.8.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3074 (0xc02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D797D20CC7952CD68B3955AA36C401B1B34E2733
Validity
Not Before: Dec 9 07:39:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2C93EA9F82F9D17E26BDDA204B4F43650B9E1586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:57:f1:05:c0:7e:26:68:14:12:13:bd:f8:d4:
1a:95:9c:bc:00:93:a4:c7:00:ac:03:3f:24:1e:b3:
cc:af:cc:be:3e:44:9d:44:70:8d:59:a7:31:e8:4a:
2e:01:c1:89:24:57:06:ae:da:df:eb:4d:c1:c3:6a:
98:60:b5:58:f6:76:eb:1f:7e:bd:62:21:a1:c8:9b:
5e:94:e9:00:5a:8f:cc:4f:51:61:f7:8e:14:1a:a2:
12:32:3f:8a:be:21:88:3b:30:b2:d0:54:86:28:3e:
0c:ab:80:48:b7:bb:02:d8:3e:86:0d:55:ec:f7:eb:
6a:a5:8f:29:7d:c0:5b:7b:23:a2:a1:e3:3d:ef:58:
ff:67:8b:8c:44:7e:0a:65:9b:e8:81:b8:8b:b3:a1:
cc:46:19:4e:3f:b4:02:01:14:0f:3f:f6:d0:24:01:
4e:b6:a8:f8:c6:2e:8e:62:c2:37:79:75:a6:43:90:
3e:33:a8:6f:08:04:36:5b:9d:61:0a:cc:ae:05:f0:
86:0e:49:e9:89:21:c7:ca:9e:15:6a:89:30:86:94:
e6:6e:7a:a7:d6:41:40:bc:cc:94:d5:e2:3f:13:62:
14:0e:89:7d:85:13:19:63:16:7e:9f:ed:dd:39:87:
79:25:82:48:9c:10:62:88:48:ff:bd:d9:de:83:02:
37:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:93:EA:9F:82:F9:D1:7E:26:BD:DA:20:4B:4F:43:65:0B:9E:15:86
X509v3 Authority Key Identifier:
keyid:D7:97:D2:0C:C7:95:2C:D6:8B:39:55:AA:36:C4:01:B1:B3:4E:27:33
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/104IT/15fSDMeVLNaLOVWqNsQBsbNOJzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/15fSDMeVLNaLOVWqNsQBsbNOJzM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/104IT/LJPqn4L50X4mvdogS09DZQueFYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.8.14.0/23
Signature Algorithm: sha256WithRSAEncryption
73:1e:70:97:a5:46:a0:33:b4:29:78:fb:33:78:5d:e8:f3:05:
c0:17:4a:09:a2:1f:a3:f2:70:39:c5:1d:19:77:25:01:5e:80:
2b:e5:49:57:f4:42:3b:ee:a0:1e:34:fc:ca:25:2d:b9:00:a0:
6a:6e:be:3f:21:4b:4a:88:3e:70:d9:0e:00:7f:47:06:24:04:
ac:f4:53:c6:a2:4b:be:6d:17:32:1a:78:22:e1:c7:f5:fb:c8:
a7:1b:da:39:6f:f2:be:6e:4d:d5:3d:60:11:5b:dc:1d:7c:3b:
50:ef:f4:c6:d0:22:b1:16:30:4d:5c:2d:e6:a2:be:d6:b5:a3:
aa:ae:96:62:77:07:03:40:36:6e:ea:8a:ce:03:40:9c:5d:30:
b5:cf:1c:fd:3d:18:fb:66:46:ee:e9:a6:73:1b:bd:df:ee:ac:
79:4f:ce:2f:34:0e:d2:03:e6:54:5c:a2:12:a7:1b:1a:ca:c0:
9e:00:b2:5c:5e:52:54:be:57:96:4b:10:be:dd:69:1c:db:6c:
6e:77:21:dd:71:38:aa:e6:e6:31:a6:b0:17:62:4a:a6:07:b7:
b8:64:7c:ba:d9:5a:5b:92:86:fe:11:43:bc:6c:eb:f1:0e:1e:
98:bb:90:b3:06:14:7c:07:ec:09:9c:5f:00:5f:04:51:4f:ac:
d3:44:e5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 11 03:42:41 2025 by rpki-client on console.sobornost.net