Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/NUlGKjVejfT1qS7vtvHZYNndkmk.roa
File: NUlGKjVejfT1qS7vtvHZYNndkmk.roa (raw, json)
Hash identifier: 3N9yzBjKHotsLzOpj2ux5n8b13YYCtmB3VvuKh2hPTs=
Subject key identifier: 35:49:46:2A:35:5E:8D:F4:F5:A9:2E:EF:B6:F1:D9:60:D9:DD:92:69
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 11BC
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/NUlGKjVejfT1qS7vtvHZYNndkmk.roa
Signing time: Mon 10 Feb 2025 14:26:57 +0000
ROA not before: Mon 10 Feb 2025 14:26:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.240.0/22 maxlen: 23
Validation: Failed, certificate revoked on Tue 01 Apr 2025 05:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4540 (0x11bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Feb 10 14:26:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3549462A355E8DF4F5A92EEFB6F1D960D9DD9269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:1a:a4:80:f2:2f:55:17:73:16:80:d6:09:
fe:b5:f5:e8:f7:b7:dc:6b:a3:81:d0:79:7d:4e:13:
ed:92:bd:5a:b0:10:f0:0a:e1:b2:f1:57:27:de:a6:
5b:58:6f:2c:2a:9f:03:d4:d9:52:08:3a:d6:34:32:
cb:8c:79:06:24:51:d9:f6:5d:ab:5d:36:69:89:ad:
2a:ab:de:b4:c5:03:63:1a:95:ab:c9:8e:88:0b:38:
6c:2e:2b:8a:0f:09:53:61:0e:40:22:ab:d8:a6:c3:
3c:93:a4:c4:5c:f1:06:a8:9e:0f:1a:f9:e3:9f:30:
d9:0d:d8:f1:de:ff:9b:0a:bd:7f:1a:10:b0:81:f3:
fc:62:20:48:36:52:00:f5:4d:a2:c6:02:85:73:74:
60:1a:89:fa:1c:b3:2a:96:57:3a:19:f9:21:72:21:
ad:11:d4:f7:f2:e9:1b:97:da:f4:b8:0d:a5:7a:7d:
f7:64:f0:cd:9a:d0:9c:89:99:bb:2c:66:7b:00:6b:
e2:1e:23:73:98:28:6c:29:7a:dc:1a:ac:28:75:1e:
55:80:56:e2:4a:f3:4b:b6:a4:ab:39:88:81:6c:37:
22:8f:12:10:62:68:e9:44:7b:86:9a:ad:52:9c:f3:
4b:a5:eb:cb:bf:ec:a9:35:96:22:4f:a8:c0:33:bd:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:49:46:2A:35:5E:8D:F4:F5:A9:2E:EF:B6:F1:D9:60:D9:DD:92:69
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/NUlGKjVejfT1qS7vtvHZYNndkmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
80:69:79:6c:17:ee:c2:af:7e:d7:0e:68:05:01:ff:4e:2b:15:
63:32:8c:24:71:10:d4:f5:a0:ac:06:80:ed:27:35:f9:c1:3d:
34:19:2d:cf:82:61:77:cd:5a:11:50:30:66:2b:b0:44:37:b8:
4f:a2:3b:82:7f:3c:ce:87:14:92:00:4f:d9:75:59:0c:34:0e:
a4:8b:3f:dc:81:6d:ab:90:30:2d:ca:58:d3:62:71:6e:3b:f5:
45:6c:bd:57:53:80:2e:a5:5e:da:26:a8:e8:f9:92:90:39:74:
56:6d:96:31:88:be:c3:4b:78:41:11:71:f0:c5:41:39:05:cd:
68:a2:68:7b:f7:9f:64:a7:8c:a7:d1:cd:0a:c8:f8:fb:a2:fa:
93:89:36:55:8c:7b:d2:9e:cb:7b:90:25:bb:b9:e0:03:8a:45:
5f:70:4a:e3:55:73:5d:5f:37:c3:f2:90:f3:88:73:61:6e:78:
a3:89:59:61:70:91:b8:d0:5e:40:63:e3:c9:bc:98:2b:9f:02:
72:b0:5e:91:97:8b:3f:33:90:1b:c7:71:15:55:ba:40:57:a5:
14:be:34:1b:33:d0:f5:76:27:0b:2e:fc:cf:ea:cc:93:ec:24:
63:31:21:c9:36:0c:cb:c5:50:92:3e:91:80:c8:ec:8e:81:65:
26:94:91:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:29:48 2025 by rpki-client