Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/uHT_xQ9BOpXvU3ijakLKzepGlS0.roa
File: uHT_xQ9BOpXvU3ijakLKzepGlS0.roa (raw, json)
Hash identifier: zksl2HT1k+wc7O3E6s+ZfmHekHfSw2nkMy/D9GoPxCs=
Subject key identifier: B8:74:FF:C5:0F:41:3A:95:EF:53:78:A3:6A:42:CA:CD:EA:46:95:2D
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: D1
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/uHT_xQ9BOpXvU3ijakLKzepGlS0.roa
Signing time: Wed 27 Nov 2024 04:56:11 +0000
ROA not before: Wed 27 Nov 2024 04:56:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 157.20.248.2/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 27 Nov 2024 05:13:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209 (0xd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Nov 27 04:56:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B874FFC50F413A95EF5378A36A42CACDEA46952D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:e2:f1:0e:17:37:90:8f:e1:1a:c5:02:2e:
38:4c:79:f4:91:5a:2b:cf:28:4a:98:fe:49:6f:c9:
83:91:47:a3:01:e1:14:46:ad:df:ba:06:34:53:7d:
f2:77:6e:27:de:9b:ed:10:9f:97:58:6b:f5:f8:52:
93:39:fc:4e:fa:f9:70:54:12:a5:a6:5a:21:33:c0:
25:53:5b:5d:4f:35:f3:6c:4e:a6:34:c7:c9:d6:f0:
30:57:8b:a9:c6:73:d3:1e:a7:27:fb:0e:6b:79:bd:
d7:25:16:ee:d9:02:7e:73:3c:e8:45:8d:05:a0:a3:
39:1e:6a:2f:0a:ca:be:aa:95:c5:71:42:50:8a:73:
5b:54:cc:f6:c3:4c:41:4f:da:3d:5e:54:03:3b:dd:
16:32:40:42:ba:0f:e9:d9:4c:82:5c:37:07:46:3a:
1f:e0:39:76:06:f8:c2:e4:c8:a2:ca:8c:57:1d:37:
1c:77:1d:80:5a:3b:02:5b:53:b8:29:cb:2c:65:17:
4d:c8:f6:d5:50:ba:a8:45:f4:de:82:34:16:f4:f0:
ec:80:d5:d4:5a:2a:92:cc:ef:1b:8d:c1:4b:c9:6d:
2d:21:fd:d5:86:ab:9c:34:6f:d4:90:aa:c1:fa:84:
b2:3d:a2:1f:84:d6:92:c6:5f:84:48:24:1e:b2:11:
92:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:74:FF:C5:0F:41:3A:95:EF:53:78:A3:6A:42:CA:CD:EA:46:95:2D
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/uHT_xQ9BOpXvU3ijakLKzepGlS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.2/32
Signature Algorithm: sha256WithRSAEncryption
c5:50:c6:a6:ec:da:ac:8a:f4:c6:28:09:8e:29:84:8c:5b:29:
53:7e:96:2f:5b:ed:20:17:3a:c2:9d:ea:87:bd:17:79:bf:47:
05:fe:86:6d:3c:38:b0:2c:97:c6:39:75:fa:38:a0:99:6b:15:
64:e6:a1:08:9d:33:8f:f4:25:b4:0d:2b:38:03:95:78:22:eb:
ac:8a:e6:c8:50:c5:16:17:ff:0a:41:67:24:6b:7a:60:f8:dd:
eb:32:f2:41:bc:0a:91:fa:b6:7d:65:e9:ab:bb:51:db:38:2b:
98:33:1d:15:7e:46:5a:4b:b1:c5:2c:02:6c:8c:45:22:f3:f2:
2e:a5:e5:b8:e9:cd:75:78:6b:1d:b3:c4:db:69:32:58:1b:53:
af:90:c9:3a:b1:50:fd:79:ff:0d:eb:b5:3e:8b:a2:ec:d8:e1:
13:46:c1:f4:6f:04:74:a1:3a:7b:78:5e:85:0b:5f:50:13:e6:
88:58:c5:38:32:aa:a7:7f:af:3a:fc:86:9f:16:76:25:a3:ee:
83:f0:df:2c:f6:ad:12:5b:03:f5:2c:8e:1d:34:a7:38:39:d4:
1c:de:26:44:84:60:68:b2:37:07:05:b8:76:ce:98:90:59:d1:
ec:f2:2d:b8:21:fc:91:1f:90:66:b0:ad:ac:15:92:0f:41:fc:
cf:e1:cb:fd
-----BEGIN CERTIFICATE-----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Generated at Wed Nov 27 08:35:58 2024 by rpki-client on console.sobornost.net