Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/CZWLEzuTifmn7Mi6f9AWzRk4f6s.roa
File: CZWLEzuTifmn7Mi6f9AWzRk4f6s.roa (raw, json)
Hash identifier: V+MsZqqvOsmROewGUWbjxk8c4sqhKk3X8AsMIL3gtck=
Subject key identifier: 09:95:8B:13:3B:93:89:F9:A7:EC:C8:BA:7F:D0:16:CD:19:38:7F:AB
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 1148
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/CZWLEzuTifmn7Mi6f9AWzRk4f6s.roa
Signing time: Mon 26 Aug 2024 05:20:51 +0000
ROA not before: Mon 26 Aug 2024 05:20:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:26:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4424 (0x1148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Aug 26 05:20:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=09958B133B9389F9A7ECC8BA7FD016CD19387FAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c3:b3:4d:75:4a:53:74:47:2e:79:1f:dd:e2:
8a:18:1d:5b:e7:84:4d:ca:60:08:79:1d:cd:52:1d:
2f:fa:d0:82:3a:f3:bb:52:86:e0:84:c3:5c:94:a9:
6d:ca:b6:0d:a3:96:b3:d3:ce:43:5c:d9:47:1f:83:
6e:82:8f:8a:d3:69:20:64:b4:54:57:f8:9a:c4:1e:
fc:40:6b:17:83:0f:19:52:af:0e:ca:b2:16:8a:59:
7e:b0:c8:82:b1:3e:d5:7a:02:bd:48:2b:0b:69:2a:
4a:d1:6b:82:4e:9b:f2:e3:b3:11:2f:fd:57:96:f4:
5c:16:71:f2:fb:73:66:88:06:27:9a:5c:9e:ea:ea:
60:5f:04:3b:20:da:0d:b0:55:ef:b5:e6:b6:49:04:
0b:3a:75:e1:d9:ce:24:9f:0f:40:4a:77:3b:ca:7f:
de:7b:f4:0c:de:d5:80:7a:77:69:22:27:10:4f:9e:
af:cd:56:bc:6c:7f:6f:e4:a5:bd:65:ce:98:01:26:
6d:13:bc:00:aa:ac:39:9d:de:0c:b9:37:d2:de:49:
9d:b6:a7:88:de:6a:72:23:c0:61:aa:bd:9a:cd:b8:
c9:af:ed:b0:02:12:a1:e0:95:49:f3:f2:62:43:39:
d5:15:34:30:00:d6:19:2b:cc:f7:a5:0a:cb:46:df:
d6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:95:8B:13:3B:93:89:F9:A7:EC:C8:BA:7F:D0:16:CD:19:38:7F:AB
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/CZWLEzuTifmn7Mi6f9AWzRk4f6s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.242.0/23
Signature Algorithm: sha256WithRSAEncryption
86:7c:f7:d6:87:cd:35:7d:f0:67:b8:f1:4a:6f:6d:73:2a:9b:
81:96:63:78:93:da:73:d8:ec:31:f9:47:05:08:e6:5b:d2:0e:
8f:ce:b6:fe:4d:67:12:3b:dc:77:37:30:44:14:30:d2:ab:aa:
79:b5:03:99:30:bf:45:15:6b:fd:fe:d9:d5:c5:20:5c:05:26:
f2:67:27:c9:1e:5d:82:10:e1:a2:b7:5d:ee:6e:d4:27:7f:a8:
04:a1:3a:e9:c3:1d:5e:92:06:d1:8f:cf:db:55:8a:c2:ba:04:
21:35:6f:f1:ad:7c:dc:a3:b4:0b:34:3c:75:6e:34:d9:fb:11:
2d:dd:c4:0f:05:e0:8a:91:a4:e0:63:a7:0b:08:df:3f:a6:87:
91:0e:2d:0c:a8:a9:fe:2f:4d:fd:6f:e9:ca:ff:d9:56:35:13:
50:92:dc:16:3e:eb:e1:d4:f6:04:6e:5f:70:90:02:45:b8:e6:
dd:87:9f:97:8d:19:22:01:39:ef:ef:7f:24:26:0d:25:e2:44:
52:fe:fe:9b:af:72:df:cc:77:d3:da:c8:8c:63:c7:a6:3a:4a:
dc:40:21:d6:d8:bc:32:c8:e1:94:77:70:f9:36:b7:01:a7:d9:
8e:a9:e9:18:97:b7:8f:a1:9b:d5:b1:51:5f:1f:5d:18:17:91:
a4:b6:86:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:22 2025 by rpki-client