Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa
File: a9lzExMa0LuOFg7O6OK6RVP0XUE.roa (raw, json)
Hash identifier: yla1wZkndD6CC7jHp2JihNV6OGwrJH+WPa3WI0jvuLc=
Subject key identifier: 6B:D9:73:13:13:1A:D0:BB:8E:16:0E:CE:E8:E2:BA:45:53:F4:5D:41
Certificate issuer: /CN=93D96B0699BEBA157D50548029BC117929AD20E7
Certificate serial: 015A
Authority key identifier: 93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa
Signing time: Mon 26 Aug 2024 05:12:33 +0000
ROA not before: Mon 26 Aug 2024 05:12:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.118.148.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:21:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346 (0x15a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93D96B0699BEBA157D50548029BC117929AD20E7
Validity
Not Before: Aug 26 05:12:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6BD97313131AD0BB8E160ECEE8E2BA4553F45D41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:14:b2:1e:d2:82:2f:f4:b8:8b:f6:56:82:7d:
46:7c:c9:2a:7c:a3:2b:b1:ad:d6:56:c7:8d:31:80:
67:79:b2:06:e1:16:08:da:ab:10:7d:61:fe:d7:94:
22:9d:90:14:2c:2f:52:ab:d7:07:45:58:ea:1c:26:
20:0f:1e:c3:b6:80:e0:ce:5a:cb:39:d2:92:db:70:
8a:01:ed:08:e1:9f:37:89:2f:c7:04:09:2d:53:89:
e0:7c:6c:dc:b3:ff:f5:d4:66:a9:9a:2e:1b:e3:e9:
8a:a7:65:b3:03:8f:dd:04:27:ef:e9:39:fe:84:96:
0d:09:72:9a:69:79:6d:d4:fe:be:90:ea:5e:86:da:
ba:f9:b2:8a:e1:6e:bc:ca:bd:f3:f7:e2:76:9c:fc:
8a:76:63:16:bb:f2:4a:80:58:dc:b9:95:b5:3b:79:
4f:d5:fa:40:0e:eb:7e:e5:78:a2:10:08:ee:23:79:
db:33:a7:4e:d4:1d:9c:20:14:c7:4d:f8:55:ac:7e:
57:46:51:32:e2:f8:83:c9:8d:72:09:21:74:f6:91:
e0:4d:1c:ee:a7:24:0d:bf:14:c6:60:b0:89:b3:bb:
3e:c4:73:32:18:01:36:1f:7b:36:c9:04:49:b0:94:
dd:40:b7:dc:91:72:1b:23:95:bc:dc:a1:84:87:d0:
b3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D9:73:13:13:1A:D0:BB:8E:16:0E:CE:E8:E2:BA:45:53:F4:5D:41
X509v3 Authority Key Identifier:
keyid:93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.118.148.0/23
Signature Algorithm: sha256WithRSAEncryption
38:57:3e:80:06:0c:c0:98:d7:4f:6f:cd:42:24:fd:2f:c6:7d:
3d:d2:4f:d7:9b:a6:26:cd:f8:4f:e4:43:bb:2d:5b:5b:4a:00:
bb:d5:a3:f0:83:da:d8:83:48:66:87:bf:b2:94:6f:de:9c:03:
09:a3:17:dd:c9:d0:c5:8e:48:c1:72:4c:f8:a5:fe:af:ab:c9:
7c:8b:bf:d3:61:9b:de:42:b0:cf:9b:9a:11:e5:14:da:6c:8b:
c0:b9:76:78:ea:5f:71:2e:db:b0:3e:20:39:25:10:21:a3:73:
99:d3:02:1e:84:31:c9:e8:e1:06:18:a7:dd:13:58:75:4e:1d:
1d:4e:e9:7d:57:7a:9c:56:bf:3f:54:50:1f:17:81:90:57:fd:
d4:bf:6b:45:e0:08:61:2e:3c:63:f8:d8:34:c4:da:dc:8a:ba:
a6:5e:a1:a9:76:a4:94:30:c3:0c:38:3a:da:7f:fa:c5:fe:69:
43:0d:fc:19:6d:e5:78:69:73:22:a5:b4:96:50:4a:5d:47:bb:
9d:d2:9e:82:ab:8a:ef:a3:97:a8:1e:a0:9e:f4:17:e1:c6:c9:
c5:8a:bc:d7:86:24:8f:1b:a0:c2:67:14:38:cd:f8:df:c1:b0:
da:e8:d5:b5:07:f0:f4:94:8f:bd:53:b6:ce:4c:a1:fa:bd:cb:
e4:90:a0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:53:57 2025 by rpki-client