Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BOOKS/JFKJUXk32P5kjyqG4uZeGqBWBaE.roa
File: JFKJUXk32P5kjyqG4uZeGqBWBaE.roa (raw, json)
Hash identifier: 3+shK8a7NcixrNfjdD2ncDOx2amLYTT74Ul05MyVK4Q=
Subject key identifier: 24:52:89:51:79:37:D8:FE:64:8F:2A:86:E2:E6:5E:1A:A0:56:05:A1
Certificate issuer: /CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA
Certificate serial: 10EF
Authority key identifier: 1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/JFKJUXk32P5kjyqG4uZeGqBWBaE.roa
Signing time: Mon 26 Aug 2024 05:09:54 +0000
ROA not before: Mon 26 Aug 2024 05:09:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 103.125.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:56:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4335 (0x10ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA
Validity
Not Before: Aug 26 05:09:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=245289517937D8FE648F2A86E2E65E1AA05605A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2f:fd:a2:f3:c1:9c:61:19:9f:59:20:8d:bc:
05:98:84:66:f6:aa:9d:8c:3d:08:2f:87:b2:c1:02:
99:e2:98:ec:97:42:78:c5:c0:a9:40:0c:23:86:ee:
10:6a:72:23:00:7d:8e:fc:c1:b9:ab:c6:d5:4a:cf:
11:8f:4c:8b:16:8a:55:05:1e:be:5e:f7:dd:f8:51:
b6:ee:09:b8:09:7a:2c:3f:ab:13:2f:5f:cb:37:ba:
18:98:d4:41:6c:1b:bf:1b:1c:28:2f:9e:6c:a9:07:
a1:5d:ed:d9:2f:db:71:bb:28:3e:fd:8b:6b:25:ea:
99:5a:8f:2a:f3:a6:b2:21:b1:b4:84:e7:0d:a7:d8:
76:a3:16:28:25:26:66:5b:3f:9e:e5:0f:bc:48:8f:
21:05:50:5a:83:54:32:b0:8d:ee:b2:dc:67:2f:23:
c5:9a:e7:b0:b3:66:29:88:d0:62:d1:e4:4f:66:d5:
4f:94:ad:7a:b2:fe:21:37:b0:de:6e:b3:3b:16:f7:
a9:67:c3:c0:2c:68:1e:b1:ac:d7:99:da:05:9d:34:
a2:aa:6b:95:00:bd:a0:68:8c:82:e3:eb:cb:34:8e:
c5:e8:b4:d4:4f:06:a3:59:0d:97:f5:7a:bf:df:40:
ad:5a:c3:21:fe:de:f6:47:2d:a3:d5:89:13:0d:52:
82:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:52:89:51:79:37:D8:FE:64:8F:2A:86:E2:E6:5E:1A:A0:56:05:A1
X509v3 Authority Key Identifier:
keyid:1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Gq3rTUXXlB2bU-9MLMYblgJHb8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/JFKJUXk32P5kjyqG4uZeGqBWBaE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.228.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:0b:52:2e:14:b1:70:59:f4:35:8d:28:53:22:84:7e:19:df:
b5:0e:9c:2f:ee:22:06:06:20:67:01:94:1e:e7:0d:55:93:de:
e6:b0:4c:28:e8:09:ec:9e:6c:ef:74:db:f0:73:ec:f3:d2:1b:
2a:d8:97:2b:dd:9b:d3:57:36:1d:5d:f4:50:9e:b4:7c:bb:eb:
55:b1:a9:15:1b:4a:7e:87:75:ea:f3:76:ea:dd:a5:1c:64:d1:
4a:ae:27:2e:69:4f:47:3f:1e:83:7c:4f:e9:c4:8b:e8:b9:28:
2e:ab:0b:8a:20:cf:c1:9d:ef:2b:d3:43:7a:5e:21:1b:8d:23:
5f:3d:85:c2:bb:12:de:b0:f0:ef:ae:61:3a:4e:ba:a5:7f:4d:
f8:8e:8a:a8:70:35:08:02:d7:90:c2:e1:1c:0b:38:1d:02:e1:
82:92:1f:f1:fc:ca:b3:44:89:15:5e:35:cb:db:b5:16:54:e8:
2c:57:86:d5:e4:f8:61:45:bb:f5:55:b3:0d:63:76:42:2d:2b:
09:a7:a6:39:63:ff:a1:04:5f:44:fe:48:51:d4:b6:08:97:c0:
c3:6e:c0:6c:7a:a3:48:01:53:c6:96:0f:61:9b:0c:50:2d:be:
c1:41:4e:b4:4c:d5:ec:73:3e:18:af:1b:02:eb:94:8c:a6:50:
bd:f7:e1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:17 2025 by rpki-client