Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/Tz4lMQpnsE4hKzLxx5vLCMKeDR0.roa
File: Tz4lMQpnsE4hKzLxx5vLCMKeDR0.roa (raw, json)
Hash identifier: uKaT4TzgugL3ii7eDGbD+Se2PD82RFs9TNUPfKMdMTU=
Subject key identifier: 4F:3E:25:31:0A:67:B0:4E:21:2B:32:F1:C7:9B:CB:08:C2:9E:0D:1D
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 1296
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/Tz4lMQpnsE4hKzLxx5vLCMKeDR0.roa
Signing time: Mon 26 Aug 2024 05:13:48 +0000
ROA not before: Mon 26 Aug 2024 05:13:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131606
IP address blocks: 103.124.40.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4758 (0x1296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Aug 26 05:13:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4F3E25310A67B04E212B32F1C79BCB08C29E0D1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7b:ac:dd:d8:69:38:21:d0:39:83:93:cc:89:
dd:c0:4d:51:42:e8:d1:31:76:44:28:4f:ab:bf:dd:
59:27:9e:30:f9:81:8f:e3:08:82:18:1a:d3:66:de:
72:ad:97:0e:a4:6c:f5:59:f6:0a:b0:47:b4:54:ff:
c7:34:4d:af:81:07:7a:c8:8c:31:36:7f:86:27:f4:
73:7f:93:cf:fb:71:8d:18:a0:75:0e:12:44:49:1d:
6e:b9:12:b8:83:d2:20:b6:37:25:73:f8:5e:c8:54:
7f:e9:ae:61:81:85:7a:69:3b:22:c8:e4:27:c1:7b:
81:04:41:ca:19:67:26:27:c7:26:f7:6f:12:f3:3b:
a2:de:74:dd:5d:1c:67:f8:5c:d4:19:00:f6:8b:36:
f1:2f:22:c1:92:47:aa:ea:44:ce:60:2d:89:77:91:
d9:28:bc:84:f2:f4:ff:f4:58:41:5f:58:7f:da:af:
1d:82:50:8c:30:4b:f3:6d:f3:f4:b6:a8:f4:cf:88:
da:7b:f4:9a:6e:b1:4e:6a:4a:ae:59:2b:f4:93:7d:
0c:8e:f5:5f:fb:69:ef:7a:bd:78:d4:28:b9:dc:07:
ed:14:ac:a6:d5:f5:27:e9:ed:e0:e7:a9:da:cc:2d:
75:ea:6a:20:1e:d6:3c:7b:fe:2b:1e:35:9d:d4:86:
50:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:3E:25:31:0A:67:B0:4E:21:2B:32:F1:C7:9B:CB:08:C2:9E:0D:1D
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/Tz4lMQpnsE4hKzLxx5vLCMKeDR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.40.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:fd:88:fe:7e:88:b9:48:ab:ad:43:12:bf:fc:e4:2d:11:f0:
ca:d1:33:f3:de:64:0c:0e:a5:cc:c6:21:09:48:e1:01:5e:b5:
3f:2d:4c:33:af:c6:99:89:9c:17:c3:30:46:ed:3c:be:c3:10:
11:93:84:ce:e0:af:ea:11:2e:cc:f1:4e:ca:bb:a9:fc:3c:a9:
b8:50:5e:6d:2f:c6:d3:b6:06:ae:0e:99:d5:60:39:a9:d7:92:
f7:67:40:9d:ca:54:a4:cd:cf:82:01:c6:94:f2:a0:7c:93:44:
b5:37:08:8f:6e:04:a8:56:2c:21:58:7f:56:aa:2e:e4:a5:c1:
fa:ee:3c:20:0c:27:f6:25:61:12:75:94:e8:be:96:c4:26:17:
58:ba:dc:b3:5c:db:70:e2:7b:f2:dd:47:11:15:d3:ac:cc:30:
e7:94:c8:4f:3b:20:ec:b0:40:0c:cc:d4:63:6d:7c:c3:8f:42:
0d:89:03:4e:b9:64:ed:80:14:46:0c:a2:e4:a5:79:1b:0c:9d:
88:46:34:34:8f:dc:0c:d5:c4:b5:e0:a8:38:ce:2b:f7:96:4f:
43:ca:17:43:ac:c6:49:f0:2d:1e:f3:b8:d0:42:2f:f9:b5:7e:
3c:26:d9:18:d0:c1:72:c6:5e:1f:81:ee:9f:78:81:00:5e:ed:
3b:0b:34:89
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:40 2025 by rpki-client