Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa
File: zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa (raw, json)
Hash identifier: u1J3O2gLauABSMEFWScFVFWmmHZeOMJKXCdw4nCNcOU=
Subject key identifier: CD:60:7B:66:79:B2:B0:9E:20:8F:3E:96:2D:BC:74:5C:65:67:AC:4E
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0F1A
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa
Signing time: Mon 26 Aug 2024 05:12:45 +0000
ROA not before: Mon 26 Aug 2024 05:12:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18424
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3866 (0xf1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Aug 26 05:12:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD607B6679B2B09E208F3E962DBC745C6567AC4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:26:12:79:74:81:63:51:c3:0b:ab:f5:c8:26:
bf:cb:5f:a4:25:1e:78:b0:4a:a6:04:d8:2c:f1:89:
0a:c9:e0:3d:0b:e3:dd:a9:5d:03:02:ab:fe:81:80:
72:3c:0f:98:0e:4b:39:1d:c2:77:96:fb:df:8e:01:
f1:42:bf:a0:3d:a0:01:67:f9:73:61:0e:db:7e:5d:
c3:2f:46:39:38:d6:aa:a2:91:db:13:b4:4f:35:81:
5e:36:9d:3b:3d:49:54:56:91:1b:0d:a9:0d:08:c5:
9b:d2:7a:64:ed:ac:3e:7b:ad:5e:6f:bf:5c:f8:bb:
05:0b:33:59:ab:d0:af:40:f5:1e:b4:d7:5e:fa:c9:
3a:0f:ba:b4:0b:a1:6e:77:75:06:b2:b6:a6:13:3f:
6f:7c:04:a8:13:b5:20:e7:a5:12:23:8b:f3:10:bb:
55:87:9b:19:93:e5:a2:7f:4e:75:42:2c:d6:9b:99:
a8:78:84:2b:a1:bb:15:b8:11:be:c4:5d:be:12:bc:
b4:8c:14:da:3d:95:4a:56:0c:6c:b2:3c:4a:9c:12:
48:b3:e5:62:e5:d9:e9:59:4f:87:66:46:bd:82:62:
33:4e:b6:42:34:72:a7:f0:61:85:9f:73:9d:44:49:
eb:72:55:6b:e3:53:f1:c4:a9:59:69:be:76:15:e7:
27:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:60:7B:66:79:B2:B0:9E:20:8F:3E:96:2D:BC:74:5C:65:67:AC:4E
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
38:96:b0:9b:f4:46:46:3d:22:04:4e:ee:49:95:67:69:8e:ef:
1a:a6:90:f7:46:32:41:5a:b4:07:59:27:16:19:47:e8:2c:53:
d3:bd:10:77:e1:d2:bc:c9:91:93:75:94:7d:2d:63:e8:55:be:
6a:88:f4:03:2a:a1:38:37:70:a4:7e:f8:e6:ce:7a:93:7c:a2:
a7:68:a6:ad:40:c5:0f:3f:61:2b:64:2f:dd:75:55:34:f1:36:
b3:a6:1f:31:74:00:16:45:8f:b5:87:e2:97:24:35:40:a5:d8:
00:7d:3f:4f:64:c1:46:84:e5:04:9b:f4:a7:6c:6f:f3:40:a6:
a5:d1:a9:bc:ff:7f:d6:0b:f9:d2:3c:26:7b:a1:bb:df:fa:25:
f6:e5:06:9c:cb:46:fa:4c:20:5a:db:94:17:3a:e1:b0:f7:13:
5b:6d:57:bf:aa:56:4f:57:eb:7b:ef:81:e6:b1:4a:d0:e0:b2:
18:6b:82:11:74:da:4e:31:05:3a:b1:9b:ef:a6:d1:d2:7b:d6:
ed:09:e9:2b:5b:16:eb:4a:cc:00:f7:2a:68:96:42:c1:90:2c:
97:a6:2e:78:21:25:d8:3c:4a:be:b4:d6:6c:9d:c4:25:69:5d:
a4:e8:25:d0:4c:72:ae:52:1d:87:c2:33:6a:c4:9c:44:d5:ac:
65:49:4d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:57:44 2025 by rpki-client