Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/njOsSL3BsIiw76PwO5VDwyadY_c.roa
File: njOsSL3BsIiw76PwO5VDwyadY_c.roa (raw, json)
Hash identifier: EwoOWXWOY0hjTBRZvmuDoIucBM8cgTxrAw14EGOlnDY=
Subject key identifier: 9E:33:AC:48:BD:C1:B0:88:B0:EF:A3:F0:3B:95:43:C3:26:9D:63:F7
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 1147
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/njOsSL3BsIiw76PwO5VDwyadY_c.roa
Signing time: Mon 26 Aug 2024 05:20:50 +0000
ROA not before: Mon 26 Aug 2024 05:20:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:26:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4423 (0x1147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Aug 26 05:20:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9E33AC48BDC1B088B0EFA3F03B9543C3269D63F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:25:16:ca:55:af:4d:fd:5d:d6:2a:00:33:7d:
01:37:19:88:08:3c:91:2b:62:cd:08:16:b1:ce:88:
f7:76:3e:ba:42:5e:be:98:a8:1a:38:64:e4:b3:cf:
3c:03:c8:de:94:7b:88:7e:07:55:ab:c0:6e:97:a3:
87:5f:c0:8e:e0:2f:6d:92:0e:ce:4f:25:9c:c4:8f:
71:8c:a5:fc:66:b9:12:9c:72:49:13:1a:16:15:cd:
75:8b:67:a3:48:5c:bd:1f:95:c1:6b:cc:51:f9:04:
48:6b:5f:54:48:c0:2d:77:6e:79:2d:f6:2d:6b:9c:
9c:75:3e:2c:e9:08:76:39:b8:9f:49:7d:96:66:dc:
ec:e9:6a:58:cd:fc:6d:56:89:5b:1e:ea:4a:f2:15:
ec:96:03:6c:cf:a0:a2:a3:47:6c:9e:9f:bf:e1:c4:
a8:f7:24:5f:48:42:14:5b:e4:ee:5f:5f:82:2f:12:
e8:fd:12:9a:86:c4:b4:45:fc:ad:88:ab:1e:9d:b4:
c8:fd:27:db:fc:a8:10:c3:0c:f9:59:2c:f5:0f:7b:
30:d5:35:f2:8e:d0:b5:69:7e:68:b8:85:1a:e8:80:
70:a9:18:0f:6b:35:2c:b5:7b:07:89:19:ae:4c:e4:
d8:c4:b7:ca:10:f7:d6:12:c0:0d:fa:b9:a6:a8:67:
e1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:33:AC:48:BD:C1:B0:88:B0:EF:A3:F0:3B:95:43:C3:26:9D:63:F7
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/njOsSL3BsIiw76PwO5VDwyadY_c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
44:03:f4:37:08:94:e7:b2:d3:9d:89:21:3b:dd:63:84:cf:11:
c7:0c:e1:9a:fd:c7:16:66:19:50:00:0e:87:62:05:11:e0:02:
9d:75:37:d2:eb:84:3f:f2:d6:69:7c:e3:b6:15:99:05:9a:cb:
ab:ff:87:19:97:e8:c7:de:0e:86:53:22:4a:d3:91:aa:6c:cc:
73:23:fe:47:38:b7:d6:d4:93:6a:fb:b9:ee:9d:80:1c:16:88:
21:23:7f:54:8a:8c:23:69:0c:e6:41:25:c4:9d:57:5f:ba:f7:
91:67:88:3d:cb:83:c9:ed:4c:d7:4b:53:36:1c:8f:15:23:1e:
9f:9f:b2:69:25:1a:72:bc:06:be:99:87:58:05:47:e6:79:83:
46:d5:ce:8d:04:92:c1:49:cd:ed:fb:0b:fc:bd:8b:49:a8:0b:
79:ad:91:8c:53:9d:66:e9:4f:7a:91:4a:2d:a0:20:3f:80:b9:
1a:2c:e3:2f:f1:c2:55:87:b7:23:cb:01:61:fe:b7:74:12:ff:
dc:fc:30:15:2a:25:26:32:13:61:e6:9e:6c:37:41:60:c8:a1:
59:b3:d3:2a:dc:a1:ac:b0:90:bd:f7:02:0f:3a:b5:4d:6f:03:
de:cc:aa:00:98:c4:8f:9a:b8:84:0b:c6:ac:77:c5:68:8f:05:
2e:68:0f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:24 2025 by rpki-client