Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/Yq-wJy1k8Yy_bAJ6bnfCp6LDbZA.roa
File: Yq-wJy1k8Yy_bAJ6bnfCp6LDbZA.roa (raw, json)
Hash identifier: 9oeNeVjKzDTi+ccmooUSeoBJLSnld902c9AxIjj7ZB4=
Subject key identifier: 62:AF:B0:27:2D:64:F1:8C:BF:6C:02:7A:6E:77:C2:A7:A2:C3:6D:90
Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Certificate serial: 0DAC
Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/Yq-wJy1k8Yy_bAJ6bnfCp6LDbZA.roa
Signing time: Mon 26 Aug 2024 05:19:59 +0000
ROA not before: Mon 26 Aug 2024 05:19:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131645
IP address blocks: 103.141.80.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3500 (0xdac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Validity
Not Before: Aug 26 05:19:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=62AFB0272D64F18CBF6C027A6E77C2A7A2C36D90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5d:4e:7f:e3:1a:d7:e0:3d:b3:00:19:a0:fc:
e2:a1:84:78:fb:40:04:44:14:1c:46:8b:e3:d8:49:
0c:6a:fc:79:24:4f:ad:73:a1:d8:7d:ae:6f:91:4a:
1e:d1:02:6b:f2:5e:48:09:2e:a2:3e:33:d6:25:2d:
56:2a:22:f1:82:36:54:c6:71:4f:f8:0b:2c:a7:fd:
d0:52:e1:86:9d:5c:64:4d:ab:51:c6:21:b4:9f:02:
38:68:27:da:54:93:35:6f:18:00:da:d6:d2:ae:0d:
99:a6:15:b9:ef:33:df:36:c7:13:8a:24:e4:48:96:
ee:9c:b8:cd:9c:f1:fb:fe:f7:49:d0:1a:ee:71:1e:
70:92:cf:5f:da:1c:21:20:9f:02:ad:a8:ae:f8:84:
28:38:90:92:13:fa:46:0e:73:d6:00:82:a9:95:d9:
16:ea:e2:b7:02:bb:31:5d:ef:99:f1:fb:1f:04:8f:
c8:98:13:b7:5a:86:71:b3:73:3d:a8:fd:ba:c3:8a:
59:ff:c6:bb:87:50:7d:3e:26:bc:4a:4b:bb:f9:e5:
37:ee:b3:b6:51:3d:b2:ea:0d:94:29:ef:af:1d:b1:
36:9d:8b:12:5c:83:94:6c:a0:72:df:12:98:0d:bc:
10:58:b1:d2:85:b9:82:86:79:48:2c:57:bd:46:f2:
c4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AF:B0:27:2D:64:F1:8C:BF:6C:02:7A:6E:77:C2:A7:A2:C3:6D:90
X509v3 Authority Key Identifier:
keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/Yq-wJy1k8Yy_bAJ6bnfCp6LDbZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.80.0/23
Signature Algorithm: sha256WithRSAEncryption
33:07:df:93:3f:ca:e4:9e:d1:cf:be:3b:c4:8e:61:01:43:05:
40:73:71:c7:ff:3b:50:0a:17:80:a6:91:55:15:4f:a7:aa:f8:
6a:a0:63:30:60:e7:4c:eb:eb:3d:16:55:52:0b:2e:48:de:8e:
ab:4b:2f:07:61:15:48:a5:c0:5d:88:6c:d2:d7:f7:32:37:ad:
9b:79:98:48:6a:7f:61:41:19:17:cf:8f:94:af:d3:28:3e:8b:
f5:67:3f:2d:0a:7f:6b:53:c1:ce:0f:02:26:c8:0c:c1:ed:e1:
c9:15:85:56:31:ae:db:e9:8d:0e:f6:c2:81:6c:96:aa:0b:7d:
90:2b:db:69:02:9a:29:c3:5c:67:f5:38:17:74:b7:1f:6e:56:
d1:67:36:aa:a2:2e:96:5f:c5:43:cd:53:12:27:22:ef:24:e2:
d0:9f:a5:05:04:ca:3f:f9:e3:e2:07:92:0d:3e:cb:70:6a:c2:
72:7f:a4:65:56:7f:1d:55:d5:61:ef:89:0d:ff:9b:9f:4f:bd:
0f:d9:4d:dc:3f:b8:5d:ac:27:15:71:45:e8:b1:a9:9b:41:76:
b9:5e:0e:63:dc:45:36:aa:3f:07:02:9c:88:3e:de:2b:6a:5f:
be:67:d0:af:bb:21:89:d7:c1:04:79:a5:3c:de:8a:82:93:46:
38:94:1e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:33 2025 by rpki-client