Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa
File: UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa (raw, json)
Hash identifier: LAwiUXp/l32JjQp9NLJDAev2TqSMW5ixA+fa9gDSxLU=
Subject key identifier: 50:53:99:AA:8E:33:3F:C4:9D:01:05:C8:8B:62:37:27:68:BF:45:EC
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0C78
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa
Signing time: Mon 26 Aug 2024 04:56:19 +0000
ROA not before: Mon 26 Aug 2024 04:56:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Aug 26 04:56:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=505399AA8E333FC49D0105C88B62372768BF45EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:67:ca:1d:1e:d2:58:15:5b:3d:7e:a9:cd:
b7:6d:ed:ca:8e:3e:76:d7:1c:ac:63:09:af:28:d3:
14:7c:00:b7:8f:68:8b:ec:2d:04:a1:99:81:5a:a0:
a9:8f:36:71:c7:63:5a:8f:a1:3e:fd:b5:11:13:31:
a6:74:b9:bf:a7:9d:02:7f:90:07:a7:cc:d3:c5:70:
90:31:56:7a:c2:a4:ac:04:bd:90:6d:40:06:c2:07:
73:07:33:c6:bd:80:89:14:b1:39:a7:07:3a:b8:91:
92:f9:ff:e3:4b:df:ff:a5:83:10:24:f2:fc:d4:99:
54:b9:95:37:95:86:c5:52:45:57:24:40:79:62:75:
fd:44:3f:cf:38:1a:1f:8c:47:47:df:58:44:7e:5f:
e6:28:4e:55:c6:50:5b:bb:8e:8d:f9:f8:0e:85:c0:
39:39:c2:34:52:1f:db:ce:7b:5b:1c:57:26:77:6a:
b1:98:8c:4b:ed:89:c2:b6:6f:b4:f1:6c:99:8c:2f:
1e:ed:25:90:26:cb:a8:b7:91:dc:f7:ac:e3:23:5c:
67:16:78:74:73:71:4c:2e:26:4e:a8:9e:cd:ab:1a:
cd:8f:22:61:41:ff:d4:18:4b:7c:4b:13:41:6d:94:
a9:6f:17:58:c6:3a:6a:1e:78:26:9c:a0:45:8d:ce:
68:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:53:99:AA:8E:33:3F:C4:9D:01:05:C8:8B:62:37:27:68:BF:45:EC
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
95:61:1e:b0:60:e3:0c:5f:0d:5a:4f:6e:2b:11:56:1f:52:ad:
17:5d:52:8e:de:c7:0a:9a:9a:fe:75:ce:2d:ca:ed:e6:7c:f1:
cf:ef:5e:3e:a8:85:f5:f2:a8:64:53:f8:52:cb:78:82:c5:76:
ce:c1:8f:fd:58:7e:1c:5f:e9:27:f7:79:a3:ad:df:6e:74:5c:
7b:44:ba:a3:a5:73:f2:17:3d:bc:70:89:91:ef:0a:b7:84:18:
70:20:e0:0f:c0:b0:d6:38:da:82:8a:86:69:9a:4d:59:22:49:
7a:a8:9f:2b:c5:0e:08:68:73:fd:d0:ae:1a:f3:34:5a:22:e2:
8f:01:77:05:31:30:ed:93:27:39:d1:16:7b:13:d5:16:d6:c7:
97:35:31:c2:93:50:f2:3a:7a:ea:d3:b4:1d:98:b0:8e:05:05:
eb:fb:4f:2d:a9:c0:fc:cb:cf:88:e5:4c:eb:b0:76:c7:ef:e6:
b4:96:a3:d0:29:ff:d0:25:33:c9:f1:64:ca:74:e6:82:76:a9:
44:b3:83:3e:eb:ce:91:4b:6b:ca:3d:7e:e0:31:c2:99:f5:fb:
e9:73:67:96:e1:d9:49:af:63:17:41:b3:6b:c4:3a:ab:38:37:
d5:32:55:e5:ce:92:20:40:e1:62:a2:a6:be:74:6c:ec:1a:89:
1c:6c:e8:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:13:28 2025 by rpki-client