Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/kTq1hYYD11J3HUfhlg1IVxxK5DE.roa
File: kTq1hYYD11J3HUfhlg1IVxxK5DE.roa (raw, json)
Hash identifier: pR6ubjiLplnfenaiS+MPmrzJjuIHijRrF1gqmniHCsU=
Subject key identifier: 91:3A:B5:85:86:03:D7:52:77:1D:47:E1:96:0D:48:57:1C:4A:E4:31
Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5
Certificate serial: 035C
Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/kTq1hYYD11J3HUfhlg1IVxxK5DE.roa
Signing time: Mon 26 Aug 2024 05:11:58 +0000
ROA not before: Mon 26 Aug 2024 05:11:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131646
IP address blocks: 103.161.78.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 860 (0x35c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5
Validity
Not Before: Aug 26 05:11:58 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=913AB5858603D752771D47E1960D48571C4AE431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:49:a0:88:8c:80:95:85:1b:2c:a3:f0:4d:
1b:e4:6f:ba:9f:cb:ab:b2:32:07:c5:eb:66:e3:04:
22:c6:87:ff:92:5d:0e:3a:82:c8:94:ca:29:8a:10:
44:7c:86:48:cd:14:b2:0c:0f:b5:a2:f7:bd:e5:cd:
d5:c6:d1:5b:d5:9e:c9:3e:e5:08:36:34:46:dc:5b:
fc:78:1c:f7:08:a1:5c:73:be:e5:c2:c0:f5:fc:92:
bb:47:eb:a6:ea:b6:d3:ed:bb:c4:ce:c6:9c:ce:7d:
9b:59:f9:d5:39:2f:45:0c:94:38:af:75:25:cd:b0:
d8:05:d0:4f:a3:0f:39:8b:a2:fe:cf:25:58:54:06:
23:09:10:a7:0e:25:03:87:20:a2:81:b8:1e:cf:a9:
ad:5c:ed:70:ea:d2:ed:e4:60:a0:73:c1:27:3b:d1:
7e:4d:51:04:32:c1:aa:f4:cc:ce:55:5e:56:ec:ce:
e4:a4:ae:ef:b7:85:9c:70:c1:50:d5:d1:21:73:22:
f5:8f:46:56:bf:73:3a:4d:67:ba:e6:36:2a:be:b7:
4f:25:6e:0f:87:05:8d:93:fb:61:13:08:ae:81:6d:
97:83:0b:a2:74:3a:c8:7d:a1:ac:98:6d:86:ee:f5:
c3:54:c6:69:54:20:6f:60:9d:b7:eb:e2:a0:54:88:
b3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3A:B5:85:86:03:D7:52:77:1D:47:E1:96:0D:48:57:1C:4A:E4:31
X509v3 Authority Key Identifier:
keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/kTq1hYYD11J3HUfhlg1IVxxK5DE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.78.0/23
Signature Algorithm: sha256WithRSAEncryption
49:3f:f3:b3:ea:fa:6c:be:10:7e:31:ad:ce:5e:a4:28:9a:bc:
0f:98:b9:4f:86:7a:ba:44:d1:58:b9:ce:1f:73:09:07:f4:d9:
d2:3f:c2:a5:0b:0f:ee:05:68:23:d3:70:3c:13:0b:16:a1:e7:
98:83:8e:a2:76:41:4d:36:7b:e7:3e:e7:f5:9b:74:c9:7c:af:
cd:2e:47:42:ab:c6:1a:f0:dd:67:61:cc:49:3d:36:10:ed:06:
f2:1b:b4:91:91:4a:56:92:fc:c8:06:df:c5:c2:d2:9f:e8:12:
15:d0:f7:6f:c9:37:36:d3:59:8b:89:4e:97:88:81:45:5a:5b:
78:d2:65:fc:9d:9d:7d:ee:91:40:55:5f:87:fb:28:82:56:c0:
d4:41:f2:39:9a:bd:c2:e9:09:ed:b7:40:7d:9d:10:f7:58:26:
cd:90:0a:b8:68:7c:09:97:78:e9:c1:0d:c5:0b:95:7f:43:6b:
5c:e9:46:7c:1a:91:f7:70:57:29:2e:e4:48:bc:81:69:77:42:
ec:46:d7:e1:18:3b:96:41:eb:3f:9e:dc:66:51:c0:b1:ab:70:
22:71:18:43:f5:80:b7:b1:69:4e:ba:1b:bc:5d:fb:39:09:7e:
03:e9:a5:67:5a:26:44:a9:dc:74:3f:3f:62:6d:81:3f:9a:45:
4a:71:fc:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:15 2025 by rpki-client