Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/xrHONL2INmzA_DTb-Im7YYMMVEc.roa
File: xrHONL2INmzA_DTb-Im7YYMMVEc.roa (raw, json)
Hash identifier: XxRqbWEa91D1J7Eejt/eIFNPUzp3FAJ4vaeKxcwCpWo=
Subject key identifier: C6:B1:CE:34:BD:88:36:6C:C0:FC:34:DB:F8:89:BB:61:83:0C:54:47
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 11C0
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/xrHONL2INmzA_DTb-Im7YYMMVEc.roa
Signing time: Mon 10 Feb 2025 14:26:58 +0000
ROA not before: Mon 10 Feb 2025 14:26:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.127.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 01 Apr 2025 05:27:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4544 (0x11c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Feb 10 14:26:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C6B1CE34BD88366CC0FC34DBF889BB61830C5447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:61:95:af:87:c0:f3:7c:f1:dc:e7:9f:aa:
ba:9b:be:9e:e7:ce:5f:b4:6d:e8:d0:9c:af:cc:1a:
14:24:6b:34:c4:a8:5a:23:d0:ce:a7:67:00:d9:be:
50:ea:88:51:47:1d:e9:5a:5b:c5:3f:06:b9:83:fd:
9f:d0:49:ba:d1:68:41:a7:6c:98:69:ff:e0:c4:97:
44:c4:ec:64:b8:08:29:81:89:c1:4f:72:f2:cd:27:
b1:49:f2:d2:f8:18:88:08:32:7c:ba:da:8c:c8:89:
3c:da:9d:ba:e5:97:0c:e4:a8:5b:b7:8e:57:d5:1c:
2a:3c:16:5e:ca:2e:1d:a3:80:c8:a1:9c:96:8c:46:
5f:d3:c1:68:0d:b2:80:8c:30:d8:51:09:23:3e:92:
f2:70:e4:a6:fc:99:b3:c9:23:02:85:09:52:32:8d:
ab:af:c9:33:a7:76:07:db:5a:fb:22:75:13:25:bb:
7f:b8:d1:94:96:d7:82:3c:24:22:12:8e:be:5a:77:
f5:5c:16:e0:8b:f1:ca:0d:3e:48:d9:cc:d0:34:b5:
7b:80:1b:f9:81:23:67:20:64:e8:43:13:74:91:b2:
0a:49:6e:04:e4:8c:0e:1f:fb:b6:14:b1:50:23:14:
ca:9a:a2:7e:a2:72:8e:e5:ae:5d:a1:31:44:08:21:
5a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B1:CE:34:BD:88:36:6C:C0:FC:34:DB:F8:89:BB:61:83:0C:54:47
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/xrHONL2INmzA_DTb-Im7YYMMVEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
14:17:1c:d1:35:0e:36:c2:ce:e4:c7:a9:ff:44:2f:50:81:71:
bc:b1:a6:db:e2:4e:81:b3:fe:0e:6a:cd:95:9e:e9:2e:45:5b:
5e:92:90:34:93:d7:1b:77:a8:f6:f0:1e:ae:a8:e4:7d:41:51:
d9:e8:13:d7:65:f8:4f:4a:10:3a:a9:f4:db:7e:30:53:e4:56:
cf:a0:68:9d:e2:34:14:75:42:6c:d8:28:8e:c7:a2:f5:df:38:
de:da:cb:29:55:6f:cf:7c:ec:f1:c3:07:0e:ca:ac:e6:0d:5c:
b3:fc:ea:ee:c2:f5:dc:81:fd:c2:33:93:7b:3e:6c:2a:f9:be:
02:57:e3:2f:c8:12:2d:76:8e:78:6a:25:69:d7:a5:f8:27:28:
63:ea:c1:2a:08:2a:72:80:4f:6f:52:32:6f:cd:c3:58:04:2c:
35:1a:00:7b:dd:b1:0e:e9:ab:0f:c8:ef:b5:7e:2f:f2:13:b9:
63:3a:fd:d4:57:c6:2f:76:08:23:a6:3f:ac:09:90:0a:c6:f7:
4f:f9:d2:fc:c4:ba:2d:72:4a:b8:1d:75:96:53:99:8d:5f:a3:
e5:19:2e:e3:73:f2:98:11:5f:31:38:ae:fa:6a:b7:78:74:f9:
d3:6f:99:0a:34:7d:a2:8a:84:c5:80:bf:23:9e:13:45:7d:95:
56:11:e2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:04:33 2025 by rpki-client