Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/ytcQ8EsYmsxnBM8D07rC4g2P2a8.roa
File: ytcQ8EsYmsxnBM8D07rC4g2P2a8.roa (raw, json)
Hash identifier: 9t7mOm5QhA2o5Xqw4hUU8+qUNgJYnY69xwNdjPlGhjk=
Subject key identifier: CA:D7:10:F0:4B:18:9A:CC:67:04:CF:03:D3:BA:C2:E2:0D:8F:D9:AF
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 19
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ytcQ8EsYmsxnBM8D07rC4g2P2a8.roa
Signing time: Sat 30 Mar 2024 18:48:13 +0000
ROA not before: Sat 30 Mar 2024 18:48:13 +0000
ROA not after: Fri 21 Mar 2025 15:30:27 +0000
asID: 16550
IP address blocks: 157.20.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 18:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Mar 30 18:48:13 2024 GMT
Not After : Mar 21 15:30:27 2025 GMT
Subject: CN=CAD710F04B189ACC6704CF03D3BAC2E20D8FD9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:f4:f6:45:a6:f2:41:e2:1d:e7:68:ac:9e:
09:06:cf:35:68:7a:ab:c5:0a:75:e7:03:ad:fc:ac:
cd:e2:43:eb:09:52:a2:8c:7e:96:7d:a2:e6:24:aa:
4b:30:ca:f1:2b:99:3d:55:a5:de:6a:79:f9:c0:43:
00:cc:24:ad:55:73:c7:9a:07:bb:da:52:c1:92:69:
37:e4:f2:0c:6a:a1:99:44:56:a3:a2:e9:07:a4:9b:
09:52:2c:30:cf:42:97:b1:02:7a:19:81:86:76:bb:
dd:2d:fb:0b:3e:46:5a:c0:c6:be:7a:94:0d:44:74:
99:84:de:b3:7f:39:8b:86:6e:35:25:5f:a3:ef:28:
3e:76:8c:35:c2:ee:c8:9d:75:c6:e1:dc:fc:ee:47:
ca:df:06:ee:48:5e:50:62:6e:df:e8:76:16:03:b1:
34:74:66:f6:32:b1:85:9b:44:19:90:92:c5:e9:39:
65:f2:bf:f4:f6:bf:6d:10:be:a8:dd:26:7a:a8:df:
ca:f6:bb:23:3f:e9:96:05:f1:e1:bd:f2:00:9f:f9:
c7:13:b7:e5:03:d4:41:64:fd:e4:22:49:2e:01:a7:
51:59:d0:07:b9:12:03:67:37:b1:2e:14:53:70:23:
26:d3:96:e9:7e:7d:e9:00:72:18:5c:23:f5:d1:43:
fa:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D7:10:F0:4B:18:9A:CC:67:04:CF:03:D3:BA:C2:E2:0D:8F:D9:AF
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ytcQ8EsYmsxnBM8D07rC4g2P2a8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.249.0/24
Signature Algorithm: sha256WithRSAEncryption
77:82:5c:15:c3:23:89:bf:74:47:c6:eb:ae:50:e2:39:ba:de:
22:8d:a7:bd:2c:c3:6e:3f:29:c3:f6:89:0a:26:94:66:1d:c2:
b2:3f:6b:e4:f8:2b:d0:d2:59:1a:08:b9:8a:4a:b1:1c:c0:6d:
e9:50:07:0c:0a:4c:67:bb:b8:57:b2:0b:14:fb:29:b3:fc:25:
9e:65:dd:ce:e5:23:91:ec:58:df:3c:a9:62:cd:f4:f2:99:77:
e3:a2:89:92:48:9d:79:b4:6c:d8:da:4a:fe:e4:24:5a:be:a2:
0b:7f:b9:a8:0b:2e:7b:b7:d2:c1:7b:c1:a3:93:7f:6e:d4:05:
60:84:57:0e:e3:b4:86:f0:43:8d:bd:a4:5e:2f:53:50:ae:24:
56:46:04:b9:3c:e0:f6:b6:ae:b2:58:94:23:34:60:41:69:84:
6d:92:c6:49:be:59:92:f8:94:c7:2a:7d:50:83:35:04:f6:71:
07:44:6f:66:04:4b:20:11:93:bc:8b:e0:f4:b1:3e:96:23:2b:
3e:09:9f:ed:fe:92:ac:80:0f:fd:ec:b0:65:e3:af:fc:4a:93:
c6:ef:78:0a:f3:94:1d:82:47:05:49:84:9b:1d:ee:1e:dc:05:
d2:e8:30:a0:f9:80:c3:04:a2:07:6d:df:64:78:53:83:6a:e8:
d0:bf:01:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 23:57:38 2024 by rpki-client on console.sobornost.net