Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa
File: jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa (raw, json)
Hash identifier: WjwCjlpBqs38MDEoPRiIiTotngnfz8lbr0pUrV7ZyTw=
Subject key identifier: 8D:71:EA:E9:52:53:60:F9:56:82:CC:87:6C:30:86:B3:7C:AC:BC:62
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0C73
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa
Signing time: Mon 26 Aug 2024 04:56:18 +0000
ROA not before: Mon 26 Aug 2024 04:56:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.1.220.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Aug 26 04:56:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8D71EAE9525360F95682CC876C3086B37CACBC62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:a1:f3:70:9a:da:a2:b5:98:bd:7b:f4:17:
2e:1a:b8:66:23:13:15:f7:57:2b:21:31:53:51:ae:
60:12:8c:1f:92:f4:f8:4f:30:bd:b4:2b:1c:1e:ee:
05:75:af:e0:03:3f:a4:a3:7c:4f:21:c5:c8:75:ba:
6a:9f:25:98:34:68:24:e4:5e:1d:ad:ec:74:7e:d6:
fb:b2:d7:bf:bc:e6:40:e7:0f:2b:bd:3a:df:87:2c:
a3:7f:6d:37:8c:44:f8:59:8f:7e:d5:68:59:33:1d:
6f:4b:56:d5:6a:80:77:8e:fb:a1:1b:7c:80:6b:2a:
6c:de:a7:56:0f:b3:9c:4f:ac:7b:21:4f:c8:da:b5:
68:53:e0:45:6f:1b:ac:e1:96:8c:35:9d:c4:a3:05:
95:9a:44:57:61:17:4e:5a:cc:8f:de:46:c7:68:d2:
1a:68:0f:86:6d:61:c3:eb:39:30:23:41:d7:f4:1a:
d4:5e:13:7b:a3:7b:f5:6f:93:de:ce:87:35:e8:5f:
f9:bf:45:3a:b6:ee:e8:b4:b9:b2:b7:35:7e:5a:5b:
78:20:d9:5b:be:24:16:f6:76:b0:47:37:c0:c3:82:
08:d9:f0:91:a6:8f:13:1d:4a:23:18:19:1d:ca:30:
8b:7e:a5:21:2b:24:3e:9d:d9:21:87:36:08:b1:b0:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:71:EA:E9:52:53:60:F9:56:82:CC:87:6C:30:86:B3:7C:AC:BC:62
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.220.0/22
Signature Algorithm: sha256WithRSAEncryption
00:35:87:15:77:d4:1b:2b:91:27:80:07:ef:86:5c:19:52:3c:
65:9f:a0:99:53:70:9a:13:70:a4:4b:04:18:38:9f:24:fc:98:
e1:26:d2:35:ef:5c:ad:ab:7d:d8:ad:61:ce:5f:76:aa:2e:0e:
85:83:1a:21:d7:d7:4d:ca:c8:80:f0:0f:b5:31:10:a7:59:84:
17:7f:77:a1:b4:2a:7a:b5:1b:e4:59:e5:3a:de:81:52:08:b6:
40:93:bf:8a:91:3d:ae:c0:e2:2b:69:39:c2:16:55:d8:f2:63:
c8:2e:f6:30:43:7a:b8:fc:a4:0a:6e:6b:36:b2:c0:35:c3:99:
00:67:e1:0d:6b:34:e4:9d:1d:44:a3:9f:f2:95:25:2a:e3:13:
f0:11:36:0d:b8:2d:99:58:a6:bd:da:e4:40:57:e8:50:8b:f2:
8c:df:55:7a:f6:e4:e6:94:75:83:67:a2:b4:3b:4d:0e:72:bb:
37:26:e9:00:49:dd:7a:dd:4d:3e:af:d3:75:1e:36:74:4b:bf:
19:2f:db:1a:20:b6:f1:4f:3d:15:a8:e7:91:4f:9f:17:02:90:
34:18:6e:50:2b:ac:1f:d4:89:5c:e7:8d:47:6e:3d:d1:7c:70:
c8:e9:5d:89:1b:00:f5:42:c2:91:78:8d:b0:0e:32:cd:f1:64:
bf:74:41:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:13:27 2025 by rpki-client