Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/Bqw4gXUdZKWrfPBoPA6OPBg8CvQ.roa
File: Bqw4gXUdZKWrfPBoPA6OPBg8CvQ.roa (raw, json)
Hash identifier: G97E4dnNWuPyEsQHsNYtsXhscYhDRDifpO0uYei9hKg=
Subject key identifier: 06:AC:38:81:75:1D:64:A5:AB:7C:F0:68:3C:0E:8E:3C:18:3C:0A:F4
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 0DAA
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/Bqw4gXUdZKWrfPBoPA6OPBg8CvQ.roa
Signing time: Mon 26 Aug 2024 05:19:57 +0000
ROA not before: Mon 26 Aug 2024 05:19:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131645
IP address blocks: 103.141.82.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3498 (0xdaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Aug 26 05:19:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06AC3881751D64A5AB7CF0683C0E8E3C183C0AF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:1a:4b:2f:4a:6e:c2:13:86:32:dc:5c:57:
76:ad:59:71:01:c8:b1:0b:67:93:21:8e:68:32:db:
84:a7:63:2a:fd:78:0f:4b:84:34:79:e5:b6:7c:e2:
74:9b:4c:4c:09:75:e4:4e:eb:1c:0c:6a:22:79:8e:
ab:6b:e7:8e:00:d0:a7:f2:d0:fc:19:a2:14:86:19:
bb:43:80:7a:2e:0f:b9:e2:dc:cb:c7:ac:df:1f:3e:
95:cc:f6:40:49:66:c9:fd:90:18:34:7d:a3:13:d6:
87:cd:cf:de:90:57:b0:73:58:28:85:48:b4:34:23:
aa:11:fa:5f:99:75:d7:8f:06:04:75:34:1c:f8:6a:
54:70:4d:f7:35:8b:38:1c:11:1c:11:ad:6b:86:75:
ba:0b:b8:5b:92:a7:87:92:cb:da:fa:ff:35:c3:bb:
8d:c8:6b:69:47:20:47:b9:17:87:bb:ef:e4:5b:78:
b7:11:47:90:92:84:eb:d0:3b:28:c2:00:ec:ba:4b:
a8:58:80:9e:7f:60:54:30:84:d0:a6:4d:72:1a:76:
60:01:5f:7e:57:96:28:20:18:26:5a:86:81:81:02:
cf:69:35:c6:ab:e9:0b:f2:7b:87:c7:00:31:72:95:
93:56:e6:9a:4f:d0:26:c0:a2:22:97:a5:25:d1:d8:
4f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AC:38:81:75:1D:64:A5:AB:7C:F0:68:3C:0E:8E:3C:18:3C:0A:F4
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/Bqw4gXUdZKWrfPBoPA6OPBg8CvQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.82.0/23
Signature Algorithm: sha256WithRSAEncryption
74:5a:92:89:e9:cb:58:e7:ea:ae:e9:e9:e6:41:a5:66:fd:8b:
b2:41:3d:10:2d:7a:07:07:a4:79:b5:24:37:50:0a:41:9a:39:
36:b5:fd:26:37:8a:94:b7:10:8d:ae:4c:b0:87:f7:b1:b0:49:
62:99:c3:6b:34:27:21:c1:dc:ee:1c:ac:2e:cb:25:35:46:41:
a8:6e:ea:d5:d5:2e:04:62:08:81:cb:ac:1b:d2:92:3a:8c:ab:
c0:17:e4:dd:97:a0:a2:c2:ce:55:96:34:bc:27:ca:73:e2:8f:
f6:04:8b:e9:14:08:40:25:ec:3c:4f:6e:33:3e:d0:b4:93:de:
ad:0b:d4:ed:60:ac:46:9d:25:90:a1:f0:05:18:b5:1d:dd:bd:
f0:e2:11:c8:ce:3d:e2:96:52:37:0e:11:a9:83:eb:3e:fd:43:
6d:db:7d:03:c6:2c:9a:6c:b1:03:21:5f:2f:62:db:17:32:81:
29:8b:a5:74:05:5f:59:dd:a0:e6:31:ff:6b:11:00:c9:00:07:
11:08:84:df:12:17:69:0d:1e:8e:b9:f6:41:cf:23:5f:4c:35:
15:bc:1c:15:13:d3:e0:a9:d2:0a:27:b5:7f:e2:c7:35:94:8b:
3e:5f:83:3e:73:b5:e6:80:16:ae:46:30:97:9f:a2:57:23:40:
a8:49:04:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:49 2025 by rpki-client