Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa
File: aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa (raw, json)
Hash identifier: YxK/MP1oRNWo8Bjwlr3P4X3835+AZt6YfWzR9b8qxv8=
Subject key identifier: 68:B3:9E:43:E1:78:12:91:7C:26:B7:C7:E6:91:EC:8C:E3:75:6D:41
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06DC
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa
Signing time: Mon 26 Aug 2024 05:18:33 +0000
ROA not before: Mon 26 Aug 2024 05:18:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1756 (0x6dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=68B39E43E17812917C26B7C7E691EC8CE3756D41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c0:f3:a8:f5:15:01:ee:fd:16:f4:39:bf:3e:
c0:d7:2c:58:15:e3:7c:c4:a7:68:10:33:96:08:fe:
8d:c2:98:ee:79:22:33:ae:58:a2:e4:2f:ee:09:39:
17:ae:e2:8e:c4:07:97:14:36:5e:03:3b:1d:7f:fc:
7d:52:07:b0:fd:e2:80:98:34:e4:e8:1d:f0:16:bc:
cd:09:46:34:e9:cc:d4:62:65:16:55:85:51:7b:b6:
61:de:8d:95:e8:56:1f:0b:3f:86:2f:0a:cc:82:5a:
4f:9e:44:ce:aa:29:98:a1:b9:73:2d:45:bc:bd:3c:
98:d0:6f:79:fe:ff:48:21:a4:f6:3b:5e:b3:db:e6:
26:14:e8:b0:56:e9:0c:7e:06:37:5a:f5:4e:1d:2d:
4c:90:37:fc:65:cb:b9:2e:70:c9:3e:f1:7e:fb:2c:
8b:38:02:b4:25:ff:79:ae:a3:a9:ad:c0:32:ed:8b:
25:19:a7:56:00:f8:6f:8a:12:f1:a0:6a:06:62:4b:
89:ab:dc:9c:73:5e:4f:4f:4d:e6:00:60:91:85:4f:
3a:ed:59:b8:d7:22:0d:3c:29:a2:b9:e9:52:35:17:
37:48:c5:1a:03:7d:ba:b6:68:d8:23:94:60:8f:a6:
f9:98:a3:28:f1:71:3a:04:a8:6f:01:1f:8b:f1:73:
8a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B3:9E:43:E1:78:12:91:7C:26:B7:C7:E6:91:EC:8C:E3:75:6D:41
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
55:55:f5:ab:e5:90:c2:4c:2d:2f:1a:a4:d7:bf:9c:ef:92:af:
d1:48:7e:49:3a:c6:01:de:20:f4:55:07:82:e4:96:5c:04:e2:
dd:63:46:0c:c4:a2:d7:03:56:37:79:42:9e:f5:2e:c4:cb:d0:
1e:c4:1f:90:78:01:0b:2c:a4:34:81:02:43:9e:4d:33:21:b8:
82:cb:04:14:8f:1d:0d:90:91:64:4a:18:3b:d5:7a:f0:89:cb:
8c:33:42:13:be:85:51:12:ca:2c:e2:de:7d:b4:17:28:a6:47:
31:36:b5:31:02:a9:dd:3c:01:c8:1e:9d:db:90:a1:0b:6b:db:
a0:21:d7:9b:05:69:20:8d:ff:23:79:0b:93:82:65:30:b1:ed:
bf:bd:d0:da:c5:0b:80:db:15:c1:41:90:69:c3:ea:d7:1a:22:
da:58:a1:f7:61:44:fc:01:ba:6f:c2:8d:aa:15:1a:e8:a0:71:
b3:f6:0d:27:9e:25:db:ef:fb:9e:ea:22:cd:5d:e0:d5:84:05:
23:a8:c8:6f:00:80:c9:31:d5:9e:e2:60:ed:2d:74:9b:24:af:
23:40:cc:e2:62:5b:2d:7e:81:06:91:2d:ea:7e:9e:c1:c4:fd:
50:ee:c7:b4:38:ee:1a:9f:da:20:fd:43:49:60:a5:99:f9:04:
fe:e5:0b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:39 2025 by rpki-client