Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/pOPTGUR2BaA6FC4ItAdqDAzLFuw.roa
File: pOPTGUR2BaA6FC4ItAdqDAzLFuw.roa (raw, json)
Hash identifier: PQzrkFmKKjWqBePyQZepDHLXdGGiCivdODka4nyF0SY=
Subject key identifier: A4:E3:D3:19:44:76:05:A0:3A:14:2E:08:B4:07:6A:0C:0C:CB:16:EC
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 11BE
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/pOPTGUR2BaA6FC4ItAdqDAzLFuw.roa
Signing time: Mon 10 Feb 2025 14:26:58 +0000
ROA not before: Mon 10 Feb 2025 14:26:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Apr 2025 05:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4542 (0x11be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Feb 10 14:26:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4E3D319447605A03A142E08B4076A0C0CCB16EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:82:b4:a3:69:eb:ce:5b:6a:06:c7:30:02:ed:
a8:5b:b6:f7:18:83:87:ce:af:53:86:a3:c4:ce:41:
61:af:dd:1b:bc:e8:75:d3:1f:59:6e:75:30:9d:98:
17:c6:88:42:41:7c:96:14:a3:fd:bb:cc:57:9f:7a:
83:69:11:6c:bc:c3:61:39:40:66:15:e3:64:b0:bf:
21:d3:c1:e3:83:df:88:64:24:3c:20:8b:07:3f:28:
57:a8:b4:b0:0f:34:0a:6c:70:17:b0:29:81:dd:0c:
49:72:bc:1f:a0:43:a8:34:57:be:f9:11:5b:98:79:
13:5f:14:dd:7b:3e:e9:43:98:3e:5b:68:f0:bb:7d:
3b:1f:df:15:70:ef:67:65:68:b5:d6:e5:b7:d1:12:
a2:4a:b2:0e:34:8c:5f:a0:43:b3:46:58:47:73:6b:
06:85:a1:91:c8:64:9c:06:f9:9a:33:0b:12:e8:7d:
74:b7:1f:54:1d:ee:b3:0a:22:44:be:57:e6:2c:b8:
e5:9f:3c:eb:3c:04:91:39:75:db:ca:68:ac:85:4b:
33:34:2a:43:59:21:9a:59:f2:23:04:95:7f:97:fd:
d2:a8:26:a6:03:2d:6d:99:43:bc:d1:d6:05:b1:10:
12:7f:24:7a:c7:45:b0:eb:6c:92:b7:8c:99:4c:6c:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E3:D3:19:44:76:05:A0:3A:14:2E:08:B4:07:6A:0C:0C:CB:16:EC
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/pOPTGUR2BaA6FC4ItAdqDAzLFuw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.242.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d3:24:1b:5d:c5:3c:9e:9f:e9:8a:93:19:2c:db:e2:5e:95:
c8:58:1a:69:9b:78:23:99:56:c9:68:3f:f4:b0:dd:f6:d7:9c:
3d:58:b6:a3:c2:a8:4d:f8:46:3b:8c:c7:f8:15:ca:aa:78:36:
b2:ca:44:8a:40:b8:bf:b5:f9:69:59:07:46:8d:23:d1:66:61:
c6:3d:1b:ca:b8:c5:50:95:7b:a4:93:f2:46:3e:95:29:50:7b:
6c:b1:4b:46:9a:4d:13:33:e1:d2:bb:40:0e:3a:fa:29:96:8f:
38:ec:0c:4d:e5:34:fd:32:17:96:4a:37:7e:ba:cb:e0:43:73:
c2:11:ac:16:b5:bf:12:0f:bf:21:5f:49:4d:ba:7f:90:b5:6f:
5e:d8:b4:3c:af:07:71:ee:27:ec:03:76:e9:bd:e2:9a:ce:0c:
55:99:55:ed:82:2e:67:aa:7a:37:d1:3b:78:bf:ee:9c:fc:c0:
e6:1d:65:fe:14:03:81:cc:dc:5c:d4:fb:9a:c0:07:99:70:00:
69:c5:7c:8e:89:31:b4:dd:d8:8a:30:1b:80:c6:b1:ef:87:a5:
fe:59:54:51:e2:5a:16:cb:0f:a5:50:e7:43:b2:01:8a:7a:7e:
b1:af:89:e3:64:36:ae:59:92:6a:f9:d0:a8:68:aa:fc:6a:f5:
4c:98:cb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:21:13 2025 by rpki-client