Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/t1BoR_7z7a6ryJcnqBRnjJjjRm0.roa
File: t1BoR_7z7a6ryJcnqBRnjJjjRm0.roa (raw, json)
Hash identifier: BaYVvMdl/rGLbBxRfx7yg8omN/hJLt1qFTNkxyAfaCw=
Subject key identifier: B7:50:68:47:FE:F3:ED:AE:AB:C8:97:27:A8:14:67:8C:98:E3:46:6D
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0DBA
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/t1BoR_7z7a6ryJcnqBRnjJjjRm0.roa
Signing time: Fri 18 Apr 2025 02:32:52 +0000
ROA not before: Fri 18 Apr 2025 02:32:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 101.3.192.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Apr 2025 06:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3514 (0xdba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Apr 18 02:32:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B7506847FEF3EDAEABC89727A814678C98E3466D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bb:08:9c:3d:65:7d:94:cc:4f:25:77:4c:dd:
e7:33:13:c1:97:28:7d:a5:1f:40:01:b4:a2:5d:e5:
97:e9:3f:ef:c4:c5:48:30:02:45:9c:74:91:b0:db:
a0:1e:4a:7b:48:1c:e0:70:3b:35:61:3b:5d:94:d5:
28:a9:d8:7d:b6:86:92:5e:7d:39:21:58:7a:f7:7b:
ce:4a:75:70:87:06:8c:51:37:3f:ae:f2:21:60:75:
b2:19:b5:c3:0f:c5:e1:dc:11:f8:f7:76:9d:07:32:
81:40:8c:4e:17:99:f0:57:65:90:1c:26:e6:0a:a6:
64:95:a1:6a:e8:44:54:26:e6:09:89:2a:eb:d1:34:
6e:59:ea:96:8a:c4:ce:27:72:52:5d:ab:ce:6a:43:
11:08:a3:00:0a:27:02:2a:43:01:98:4a:8b:bd:c1:
1e:40:16:b0:74:bf:44:e0:ab:34:c1:44:88:2b:2f:
19:b7:cd:dd:5b:52:64:38:d0:1e:71:f8:0c:12:02:
04:24:f9:ba:ab:f2:9f:b3:b3:35:19:db:94:f5:06:
17:a4:0c:17:58:37:a8:d3:64:04:dd:4e:e0:44:7a:
c8:a2:88:78:10:a5:83:a7:8e:51:e6:0b:f0:80:4b:
3c:96:29:b6:17:84:f3:bd:28:e0:98:6b:ea:7d:b8:
f4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:50:68:47:FE:F3:ED:AE:AB:C8:97:27:A8:14:67:8C:98:E3:46:6D
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/t1BoR_7z7a6ryJcnqBRnjJjjRm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.192.0/22
Signature Algorithm: sha256WithRSAEncryption
79:85:91:09:26:3f:bf:cb:8e:e9:5c:31:9b:d8:18:87:03:e4:
08:0f:d9:a3:1c:a5:ee:24:a6:45:78:4f:6f:dd:f8:eb:74:b8:
78:68:64:b8:10:32:0f:a9:b9:d3:02:03:70:e0:bc:dc:3b:05:
3e:d2:63:92:22:2c:06:89:7e:55:c2:0c:33:3e:ec:f9:12:21:
ff:05:f6:82:c1:98:f3:00:88:6e:34:43:6d:c9:56:08:a1:63:
d5:bf:03:3e:48:f0:56:3a:50:f0:ac:54:75:80:3a:d9:da:93:
6c:c2:ae:71:33:44:42:42:09:29:f2:39:b8:54:03:f7:bb:9a:
68:7f:4c:d7:d6:11:5b:27:65:5f:5c:47:58:3c:6c:e6:78:1d:
be:31:b2:17:80:ae:f3:31:05:b0:bb:3a:23:87:b7:56:68:41:
81:ec:15:66:43:45:50:a3:49:02:98:d6:af:a8:b0:d1:72:f4:
39:45:d6:da:9b:5a:d6:62:d1:b5:a5:e4:f9:cc:e8:e9:6e:6f:
1b:72:af:86:0c:95:ff:ce:d0:e8:13:80:97:d6:e4:9d:df:ab:
2f:dc:eb:11:28:e8:17:3b:7e:96:67:87:61:fe:17:63:79:01:
16:0b:58:6a:60:ca:88:8e:57:c4:67:d5:6b:67:22:23:9a:72:
a6:2b:f1:3b
-----BEGIN CERTIFICATE-----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Generated at Thu Apr 24 09:06:35 2025 by rpki-client on console.sobornost.net