Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/RgI7Gi6pACARYChrky1eck40b1M.roa
File: RgI7Gi6pACARYChrky1eck40b1M.roa (raw, json)
Hash identifier: l10UlBVrlTh2w58UoMk40242ZHVg0+bmZMWayY5kjyo=
Subject key identifier: 46:02:3B:1A:2E:A9:00:20:11:60:28:6B:93:2D:5E:72:4E:34:6F:53
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 067B
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/RgI7Gi6pACARYChrky1eck40b1M.roa
Signing time: Mon 26 Aug 2024 05:18:40 +0000
ROA not before: Mon 26 Aug 2024 05:18:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.98.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1659 (0x67b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Aug 26 05:18:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=46023B1A2EA900201160286B932D5E724E346F53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4e:b5:60:e9:6a:08:9a:a9:19:12:7a:64:25:
d3:f0:c9:05:0b:d9:80:19:55:0d:a6:57:29:f1:f3:
5e:4c:56:d0:24:1e:37:80:8b:d4:c6:23:10:1a:ec:
c8:39:ba:f5:fc:fc:38:7d:fd:a7:82:af:2d:12:4f:
34:a7:80:6e:a0:31:1d:64:e2:b1:62:16:92:03:b4:
e9:4f:f3:d0:43:ee:9d:08:ef:2c:b3:20:6f:fa:73:
52:ba:aa:91:1b:6a:b2:5c:ea:09:36:31:ac:35:90:
40:40:8a:59:c6:21:c6:28:73:97:0b:18:98:70:2c:
b2:03:36:45:71:89:92:53:90:a7:73:07:08:1e:2e:
c9:c7:cb:56:77:3d:07:47:4e:75:03:22:11:64:df:
1a:8f:d4:24:45:9a:38:f2:8a:d3:34:63:1f:82:6a:
a1:3d:93:11:c6:89:4b:d1:cd:2c:b5:39:be:9a:6b:
3e:2d:c0:98:fd:1b:ec:64:f0:86:24:f0:7d:f4:0b:
0e:8f:93:a3:7a:52:2c:60:66:9c:b4:a6:5a:2b:db:
03:37:c6:ae:f7:90:b6:0b:55:e2:40:3c:5b:76:f7:
c6:34:50:0c:3d:91:86:27:2e:43:b3:91:4a:39:cd:
02:2c:15:34:01:9b:d0:34:03:ff:4f:34:32:99:86:
29:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:02:3B:1A:2E:A9:00:20:11:60:28:6B:93:2D:5E:72:4E:34:6F:53
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/RgI7Gi6pACARYChrky1eck40b1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a2:13:65:6c:62:11:73:a6:7c:e8:9b:5e:57:8d:6e:4c:d5:
aa:f7:6e:d8:4d:b1:a4:df:8f:68:c0:48:e4:9b:84:47:e4:b4:
d0:1a:0e:d5:13:45:cf:1b:e9:7b:a0:36:bf:e0:ea:72:f8:07:
ca:b0:f1:f2:d8:2a:13:29:10:8c:7c:2a:0c:85:74:66:ca:9f:
c5:07:47:68:6d:17:77:d5:84:2d:9c:b1:97:46:86:e0:0a:3b:
91:d4:55:28:17:9a:07:57:61:b6:8d:94:f2:44:41:2e:a6:f1:
cc:ce:95:53:02:d1:02:55:c6:eb:c7:59:af:e0:4a:ad:39:05:
a6:31:bf:58:9f:28:a9:f0:e2:4f:72:31:b2:40:bd:61:34:da:
3f:e0:ff:9f:6d:41:94:0e:87:45:37:8f:61:a1:aa:ff:10:71:
10:de:6d:9f:7d:03:b8:d2:21:85:22:e0:51:a6:ab:d6:e0:8a:
92:57:1c:d4:5d:56:e3:fa:48:57:ad:cd:03:f9:e4:1c:59:b2:
8e:ad:e3:8d:33:b1:d2:07:42:b1:92:a3:ee:36:f7:b1:6c:41:
46:8a:87:f8:20:20:4a:49:da:dc:c0:1f:c3:be:af:21:88:a0:
66:c1:8a:dc:b1:5b:2c:c3:91:cd:e5:bf:19:a7:e1:b4:00:aa:
d9:08:a3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:42 2025 by rpki-client