Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/BxUT3tVTMi43K5yV1vJ8_IEP_tI.roa
File: BxUT3tVTMi43K5yV1vJ8_IEP_tI.roa (raw, json)
Hash identifier: ESpt3Xh7/B/K+X9H/x/5PlCSb62oOQ4WXnS9LYqqrx8=
Subject key identifier: 07:15:13:DE:D5:53:32:2E:37:2B:9C:95:D6:F2:7C:FC:81:0F:FE:D2
Certificate issuer: /CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42
Certificate serial: 0102
Authority key identifier: CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/BxUT3tVTMi43K5yV1vJ8_IEP_tI.roa
Signing time: Mon 23 Sep 2024 05:22:22 +0000
ROA not before: Mon 23 Sep 2024 05:22:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.99.142.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:32:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258 (0x102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42
Validity
Not Before: Sep 23 05:22:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=071513DED553322E372B9C95D6F27CFC810FFED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4b:16:43:19:36:e3:c1:53:92:b7:41:85:f6:
be:d7:9a:a5:63:d9:0d:c4:b3:f9:08:57:67:d6:55:
6f:f7:d1:cd:75:70:e4:03:79:ec:8d:07:3c:63:80:
bb:a4:47:f5:ed:0c:9d:5a:76:c7:f2:45:b9:c4:bc:
bc:57:e6:97:3b:72:2d:27:09:39:d2:ea:60:1e:13:
58:0e:e8:ab:74:a0:67:05:5e:e7:4b:ea:4f:61:7c:
cc:d3:78:d0:48:48:b3:57:b2:d0:2d:4a:54:a4:92:
4c:c9:8e:ed:71:89:af:4a:d0:d0:7e:d2:af:b0:d9:
7f:f8:b4:8c:f1:58:28:83:aa:b2:e2:37:03:2f:cc:
fc:b8:76:ee:79:92:ca:d0:b8:2f:37:53:dc:a5:81:
e5:d0:55:10:76:1c:77:e7:01:78:64:a2:1a:30:e0:
a3:c1:30:1b:6b:24:35:77:bd:d9:ec:5c:8f:48:f7:
2d:6e:fb:a5:50:8f:69:22:04:87:cb:0e:68:de:c0:
92:c3:cd:03:e3:0d:8e:4e:28:c1:25:36:e9:0f:53:
3a:23:85:7c:a5:e6:79:f0:2f:0b:03:ec:fb:82:4b:
2a:00:f5:84:a1:9f:0b:83:cd:33:e8:40:e4:70:80:
30:07:c2:06:c1:e4:d7:86:8b:ba:d2:d2:c4:dc:c3:
9b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:15:13:DE:D5:53:32:2E:37:2B:9C:95:D6:F2:7C:FC:81:0F:FE:D2
X509v3 Authority Key Identifier:
keyid:CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/BxUT3tVTMi43K5yV1vJ8_IEP_tI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.142.0/23
Signature Algorithm: sha256WithRSAEncryption
96:6d:ea:37:33:1a:b5:48:0e:ac:09:c7:d0:6a:ad:72:49:f1:
93:60:4e:40:91:93:d6:9c:18:09:af:e7:99:86:73:ca:7e:9e:
8e:ef:bd:30:f4:cb:96:65:6b:aa:d5:c8:7b:97:5c:dc:4b:34:
64:64:08:0f:05:d4:6a:b7:8e:d3:63:1a:6f:94:60:99:d9:f4:
83:c7:2c:a2:88:d0:b0:1e:95:b0:61:77:6a:9d:57:7b:17:37:
2c:37:03:ba:25:c1:29:01:96:44:ce:2e:e2:c6:8a:3e:d7:24:
a3:6d:36:a5:ce:dd:36:51:01:ce:1c:a9:dc:a5:01:96:a5:0b:
a9:18:ac:17:16:1f:29:d9:26:97:93:41:c4:d9:28:cd:94:8c:
2c:fe:e8:3f:fc:6f:40:d9:92:e3:a9:e5:04:d3:f2:a6:bd:c9:
96:87:78:29:3d:f2:b9:83:36:b7:2f:e0:b0:af:1b:70:ef:4e:
7c:58:ef:d3:fc:ff:aa:4b:b4:8e:9b:15:5c:d7:4e:19:68:6a:
58:ba:fc:e1:b6:71:17:96:2d:54:85:20:c3:27:d3:14:8d:71:
b5:92:4c:ad:06:93:d2:b6:ea:b0:51:8e:2e:05:3f:d4:66:ed:
31:82:f0:b1:d6:da:87:bb:4e:ea:b3:ac:06:ad:57:1e:34:0a:
f5:43:b1:f9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:03 2025 by rpki-client