Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/14evEXr8CP2XDkBDznK1CR7a518.roa
File: 14evEXr8CP2XDkBDznK1CR7a518.roa (raw, json)
Hash identifier: 8j12e7b2VGCUjePe0HQuBNiXmWVAAaaVakOyjImgFWA=
Subject key identifier: D7:87:AF:11:7A:FC:08:FD:97:0E:40:43:CE:72:B5:09:1E:DA:E7:5F
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0C21
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/14evEXr8CP2XDkBDznK1CR7a518.roa
Signing time: Mon 26 Aug 2024 05:09:36 +0000
ROA not before: Mon 26 Aug 2024 05:09:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 103.122.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 09 Dec 2024 03:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Aug 26 05:09:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D787AF117AFC08FD970E4043CE72B5091EDAE75F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:17:b7:80:4a:60:a6:e9:5c:74:6a:85:40:4d:
ee:1d:84:94:56:5e:fb:bc:c7:e0:38:0e:8a:68:f5:
54:ce:bd:aa:e0:b5:01:10:4b:e1:de:f4:39:ed:71:
4c:b5:77:d6:b3:49:44:c8:20:57:e0:0f:d2:43:e5:
00:01:f0:3b:ee:10:22:00:e4:2d:d2:58:16:31:6a:
9d:01:fe:e3:de:43:0b:bb:f1:91:1a:51:3e:22:95:
bb:38:d4:02:c3:c1:e8:d8:fc:2f:5b:2e:c8:f6:b7:
a5:d0:5a:35:18:22:de:90:2e:94:cd:eb:10:a2:91:
b1:dc:3a:7c:d9:01:4c:64:55:77:dc:db:a3:0a:d7:
a0:7f:10:8c:5c:9d:0a:1b:29:2b:a3:3a:07:67:3a:
4e:c6:fa:a0:d2:76:ab:00:45:31:8b:40:7b:6d:69:
9d:38:76:a7:9d:d8:61:2b:9c:b0:9e:97:bc:6f:84:
d1:ef:08:a0:1c:bf:e7:7f:46:70:06:c1:8a:d6:0e:
76:01:e5:43:af:4a:20:45:5b:65:4f:dd:6f:e3:f9:
12:0c:b6:31:a5:9e:2f:71:69:f5:f1:0b:99:96:95:
53:2d:05:ef:ee:fd:71:84:e9:13:4c:78:45:73:31:
3f:04:df:86:ed:21:53:40:a3:dd:fc:dd:aa:55:31:
0d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:87:AF:11:7A:FC:08:FD:97:0E:40:43:CE:72:B5:09:1E:DA:E7:5F
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/14evEXr8CP2XDkBDznK1CR7a518.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.16.0/22
Signature Algorithm: sha256WithRSAEncryption
11:e1:f0:99:b5:3b:18:08:d0:6b:93:fa:c1:8e:59:0f:23:b6:
9f:bb:f2:e0:5b:66:af:c7:e8:3a:fe:10:52:ea:53:f7:72:3f:
48:be:9f:b9:ab:d4:67:9a:94:84:e5:5c:ab:e5:bc:b8:6c:5f:
74:88:3f:10:a0:bf:ce:b9:11:9d:f1:2f:92:45:f0:c3:1a:1f:
fe:f2:34:a5:b9:6d:c6:4b:f5:7e:a1:4e:4f:51:be:9f:58:d3:
b3:dc:00:e6:16:f0:a3:60:d3:ca:4b:7f:f4:80:b8:70:f2:28:
f5:82:74:32:3c:e9:ac:64:ee:31:e3:0a:9b:1d:59:23:8e:65:
05:a8:ae:55:71:a5:c9:89:05:52:4e:20:ac:f2:1f:b6:d3:16:
55:1f:fc:f1:c1:77:e1:6b:d7:96:76:d1:f4:d6:02:3d:13:d4:
e9:55:10:51:99:9c:ac:9f:b3:89:ab:e3:92:de:50:c5:f1:28:
25:52:00:02:e3:17:ac:f9:44:fa:d3:72:be:8d:43:9f:d8:50:
11:af:da:52:38:f5:7e:fe:f1:a2:75:f4:6e:34:45:3c:cb:6d:
fa:a1:b6:9b:5e:15:f5:4a:aa:a7:ff:8b:ec:b5:26:8c:0b:49:
fc:de:93:d8:03:f9:e0:24:2e:2e:fb:fc:7a:a4:e8:9a:73:c5:
51:0b:23:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:40:49 2025 by rpki-client