Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/xZq8xx0jAuUR8w8deeFZ-x8x9_A.roa
File: xZq8xx0jAuUR8w8deeFZ-x8x9_A.roa (raw, json)
Hash identifier: DBSVN/mjxpxQpTEdwD+Vddc1edb62PPF7S08CpzkqE4=
Subject key identifier: C5:9A:BC:C7:1D:23:02:E5:11:F3:0F:1D:79:E1:59:FB:1F:31:F7:F0
Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Certificate serial: 0C44
Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/xZq8xx0jAuUR8w8deeFZ-x8x9_A.roa
Signing time: Mon 26 Aug 2024 05:19:23 +0000
ROA not before: Mon 26 Aug 2024 05:19:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131619
IP address blocks: 103.116.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3140 (0xc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Validity
Not Before: Aug 26 05:19:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C59ABCC71D2302E511F30F1D79E159FB1F31F7F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:06:53:c5:77:ff:93:c5:d9:7f:8f:64:4b:59:
89:16:79:c2:f5:9b:d8:5f:20:02:ce:90:34:0e:08:
be:be:69:62:72:10:b0:fb:1a:dc:39:fa:17:fc:30:
f7:d7:37:c0:a2:cc:43:26:1c:ad:42:c8:e2:e0:72:
e5:ed:20:a2:37:03:f3:1f:94:bd:43:cf:ef:13:65:
59:55:b6:c2:2b:df:4b:8e:df:fd:ff:65:1b:80:e6:
e9:30:86:35:2c:4a:d3:bc:23:3e:30:96:e5:03:73:
1c:38:44:8f:7e:30:a1:e6:8f:9c:e7:26:80:47:13:
30:05:6c:ff:a7:f0:f2:58:db:69:c3:62:ce:7c:de:
8a:ab:64:16:10:2f:b2:35:b9:ea:74:7e:37:36:af:
89:15:ba:7e:22:d0:7d:68:77:fe:30:bd:e8:eb:70:
27:ed:11:f7:0b:2b:65:01:ac:62:3d:68:45:5c:a6:
72:db:d6:2f:9a:e0:3e:df:64:ee:b8:03:5f:f6:cf:
a9:25:3c:46:e9:ab:c3:82:5e:ac:64:51:3e:94:9d:
b8:2c:ff:06:b2:05:9f:c7:72:52:69:b8:06:c6:be:
33:98:75:2c:f3:7c:47:60:90:e1:62:da:bb:cb:cc:
7a:6c:ef:f3:33:41:ac:c1:cb:b4:a7:f3:01:ba:40:
d4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9A:BC:C7:1D:23:02:E5:11:F3:0F:1D:79:E1:59:FB:1F:31:F7:F0
X509v3 Authority Key Identifier:
keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/xZq8xx0jAuUR8w8deeFZ-x8x9_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.96.0/24
Signature Algorithm: sha256WithRSAEncryption
80:f7:cf:9d:d0:45:af:f2:f5:7e:95:52:e5:b1:de:b6:61:0b:
53:79:f5:cb:ba:99:8d:c1:75:a7:2f:3e:f0:a5:1d:8f:97:b6:
c6:70:39:9c:65:24:3f:85:39:85:d2:19:0c:76:67:a7:11:f4:
33:8e:b6:7a:bd:4c:de:6d:44:3c:f5:20:43:2b:3a:1d:7f:a8:
5e:70:89:1c:0a:b7:cf:d0:69:48:6e:a3:17:39:4a:1a:3a:bc:
bd:81:69:94:4b:89:82:39:63:1b:70:7e:bd:88:6d:e0:60:2d:
a3:f0:a1:cc:31:c3:23:f4:25:e1:41:31:12:7a:79:f8:d7:6b:
0c:7a:98:70:f7:25:97:77:71:6d:51:81:c2:15:7d:bb:98:bc:
23:00:cb:e7:5a:59:b8:fe:87:d3:32:23:8b:7c:df:1c:4f:50:
0a:ef:c4:ed:e8:0e:39:27:e7:e7:d7:a7:67:f5:a4:10:56:96:
95:0b:f0:ab:c5:8d:d7:59:7a:f7:34:62:c9:30:8f:5a:5d:c6:
5c:ba:6d:46:ec:84:7e:48:d3:34:ce:ea:c5:84:cb:9e:fd:2b:
30:6c:a2:a5:a7:f6:35:7e:05:af:36:73:5b:14:ef:67:6e:5a:
f7:9b:a1:92:ac:54:6f:3b:7d:8d:20:7b:49:eb:58:a0:05:e4:
ca:ed:2f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:53 2025 by rpki-client