Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvB4l-wb20ILmCzIU35jyAwQKX0.roa
File: BvB4l-wb20ILmCzIU35jyAwQKX0.roa (raw, json)
Hash identifier: bTt+nHXPtH/HJbWNCuUUtnS/k12TUJk+hytElzlmP+g=
Subject key identifier: 06:F0:78:97:EC:1B:DB:42:0B:98:2C:C8:53:7E:63:C8:0C:10:29:7D
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: 0197
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvB4l-wb20ILmCzIU35jyAwQKX0.roa
Signing time: Mon 26 Aug 2024 05:20:11 +0000
ROA not before: Mon 26 Aug 2024 05:20:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131659
IP address blocks: 103.67.160.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407 (0x197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: Aug 26 05:20:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06F07897EC1BDB420B982CC8537E63C80C10297D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:43:19:d3:b9:80:67:fd:a6:d5:5e:f4:f6:
bf:c8:e1:97:2c:4a:df:d4:08:e4:af:b0:22:93:70:
5b:b1:c9:a3:44:5a:53:86:29:aa:7d:df:a0:51:12:
b0:b3:cd:36:3c:b8:10:08:94:b4:87:33:0b:56:d6:
46:3b:8a:dc:6a:d6:ed:49:33:93:7f:83:a7:c4:ad:
36:bc:e7:8e:6c:d4:31:cc:97:96:ec:ce:a2:99:aa:
f2:b3:0f:cc:b3:42:8a:27:41:e6:84:02:ea:a6:25:
c8:22:6d:51:39:d6:67:e1:17:f1:08:a1:22:6a:e2:
2d:23:3e:f6:b1:2b:58:99:30:bb:c2:47:32:56:e5:
9f:b1:27:bd:0e:19:55:a8:66:0b:1b:b2:df:c5:71:
6c:f1:c2:ec:13:0d:a5:6a:9b:6a:0d:e9:75:57:f4:
fd:19:16:78:fa:f4:30:f2:7c:e2:56:43:bd:16:59:
04:85:40:dc:2d:76:a4:9c:83:30:42:22:87:86:e0:
73:4d:10:68:da:90:64:09:2f:db:b0:e5:81:6f:a3:
63:52:87:ec:99:0f:0c:7d:0d:f7:0a:83:ee:e4:7d:
26:ee:f3:18:8c:ba:b0:4a:0a:91:a8:3f:fc:00:da:
90:c8:ed:3e:33:80:e5:69:10:fa:02:97:b0:06:ce:
57:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F0:78:97:EC:1B:DB:42:0B:98:2C:C8:53:7E:63:C8:0C:10:29:7D
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvB4l-wb20ILmCzIU35jyAwQKX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.160.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:0a:7a:6a:11:00:62:7d:6b:77:04:84:e7:6e:51:71:62:61:
73:9b:84:43:25:69:3a:90:66:b6:82:62:d7:b4:16:1b:34:e4:
b6:82:30:24:93:f8:8e:66:c2:5a:57:00:8d:a3:cb:e9:4d:b8:
04:73:cf:eb:7b:a5:e5:fc:84:ad:62:25:7c:a0:e7:52:e1:5a:
83:72:fc:56:3c:43:d6:d4:2f:ce:04:a1:11:e8:c6:30:0b:f5:
53:6f:fe:99:b0:b4:04:1e:50:cb:1b:72:5e:58:5d:77:ac:80:
6a:de:8f:16:32:5b:34:d3:a3:51:0a:d6:8f:de:f5:ba:ba:8f:
4a:9d:ba:da:a2:0e:3d:7e:55:7d:d3:14:6e:7d:65:f3:e3:fb:
01:5f:08:d7:d4:7e:9f:fa:bc:c2:1d:c6:d9:1c:a7:67:01:71:
7c:cc:83:d3:ed:89:e2:e0:bb:02:84:76:3e:1f:1a:0c:61:1c:
e4:73:8c:49:fb:94:b0:99:b1:eb:d5:af:75:05:01:ff:d6:24:
00:37:44:04:d2:88:fd:88:21:d9:d2:18:8b:c9:6f:22:d8:eb:
a5:55:f3:e9:e2:e4:c2:c5:c5:9c:27:3f:25:4d:34:2b:d4:ec:
d1:cc:30:87:ce:96:55:1e:e3:22:3e:28:bd:a4:26:42:cb:e4:
0c:df:36:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:52:26 2025 by rpki-client