Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/aY0uAGTNcMAgr4cTfIlxu17WnzA.roa
File: aY0uAGTNcMAgr4cTfIlxu17WnzA.roa (raw, json)
Hash identifier: QWT0BFGGTHb+5pmLo/ZzvmNu33UgEvNUN+wXfYaddo0=
Subject key identifier: 69:8D:2E:00:64:CD:70:C0:20:AF:87:13:7C:89:71:BB:5E:D6:9F:30
Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990
Certificate serial: 0107
Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/aY0uAGTNcMAgr4cTfIlxu17WnzA.roa
Signing time: Sat 07 Dec 2024 13:59:21 +0000
ROA not before: Sat 07 Dec 2024 13:59:21 +0000
ROA not after: Tue 14 Oct 2025 15:30:32 +0000
asID: 18040
IP address blocks: 160.191.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:05:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990
Validity
Not Before: Dec 7 13:59:21 2024 GMT
Not After : Oct 14 15:30:32 2025 GMT
Subject: CN=698D2E0064CD70C020AF87137C8971BB5ED69F30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:d1:0e:93:e8:60:f0:a1:ea:1d:86:7c:19:
fe:74:65:2e:04:e5:f0:d9:c1:28:3d:aa:10:83:8b:
1c:fb:5b:46:eb:09:51:f9:5a:3f:87:f3:b2:0e:df:
f9:40:79:69:2f:b3:0d:1b:c5:6a:99:a1:1f:6c:81:
b4:26:c4:d9:82:3f:99:0b:fe:65:5b:8b:90:0e:d6:
3b:04:dd:8f:d8:00:2a:c2:b9:76:65:aa:37:8f:a3:
b1:2a:14:f6:23:bf:ff:18:d4:8c:d0:3b:e9:7e:04:
ea:62:b4:eb:a0:36:44:1a:9c:91:13:a5:05:d3:c4:
88:52:4d:bf:af:8e:88:02:a0:ac:44:0f:f8:3a:d5:
2a:59:4a:57:0f:36:ab:58:a1:15:64:56:18:4c:83:
36:fd:62:be:e5:59:83:29:ab:ee:c4:9d:82:fa:09:
60:9a:16:41:7c:d9:17:e7:cd:db:91:77:a1:3a:50:
c7:6e:2a:12:31:30:76:c9:2b:96:f2:df:89:0e:5a:
b6:1b:d8:60:5f:c0:7d:91:a4:21:85:66:81:0b:d4:
26:c2:59:4b:98:7c:f0:3f:fb:a3:45:55:d2:52:5d:
b4:4b:33:6d:f0:03:fd:05:12:99:01:8d:fb:8c:22:
b9:57:9c:c4:5a:e9:97:e9:a3:89:a1:44:eb:03:d9:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8D:2E:00:64:CD:70:C0:20:AF:87:13:7C:89:71:BB:5E:D6:9F:30
X509v3 Authority Key Identifier:
keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/aY0uAGTNcMAgr4cTfIlxu17WnzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.7.0/24
Signature Algorithm: sha256WithRSAEncryption
82:78:61:6d:1a:b5:f1:6e:18:52:38:d3:d7:bc:5f:c8:a6:ab:
76:41:34:c0:4b:bc:85:be:8b:20:48:74:23:87:57:f7:99:65:
3b:2f:16:1d:62:87:61:9b:77:2d:10:07:45:f5:bb:19:b4:df:
63:60:66:c1:11:e0:70:e9:0e:75:35:4a:e1:9b:1e:19:46:30:
3f:c3:20:07:d8:b6:53:6c:ce:98:39:e1:f0:83:73:68:74:3e:
1e:37:e3:c7:e3:15:04:6d:a2:52:0c:ef:9b:4e:d5:62:ea:4c:
20:a3:e3:bc:ee:c2:89:cb:42:35:0a:fa:21:74:6c:11:2b:02:
53:14:30:83:d1:ca:34:64:23:b8:b2:c4:9f:22:ae:37:65:8a:
02:3d:6d:13:ef:8a:c3:45:ff:69:10:7e:4d:f8:a4:4d:20:17:
eb:82:02:fd:86:8f:09:af:d5:4d:ff:26:44:41:7b:76:db:c1:
1f:3c:8f:20:31:e5:8d:ab:37:8b:93:bd:10:1a:7d:f0:e1:63:
6a:65:c5:c0:79:d6:d8:49:68:1c:72:2e:d1:7c:db:9b:a1:73:
1c:12:ff:ee:fb:a3:9e:e5:78:f6:67:ac:7e:a7:fb:7c:e1:02:
03:c1:03:2a:62:5d:26:1a:ac:77:c6:21:00:96:99:b4:c8:6f:
ee:c3:51:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:31 2025 by rpki-client