Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa
File: Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa (raw, json)
Hash identifier: wzfLkb60K9w0a/3+U7yA+C8gD/bHhi3UsnjKh4eQrn4=
Subject key identifier: 46:7F:E0:67:8A:32:F4:DF:FE:CB:14:58:E1:E3:0C:C2:AA:09:82:C9
Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E
Certificate serial: 0EDB
Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa
Signing time: Mon 10 Feb 2025 14:12:02 +0000
ROA not before: Mon 10 Feb 2025 14:12:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 208932
IP address blocks: 103.135.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 May 2025 03:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3803 (0xedb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E
Validity
Not Before: Feb 10 14:12:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=467FE0678A32F4DFFECB1458E1E30CC2AA0982C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f9:6a:53:02:bc:c0:81:00:e6:be:ed:7e:57:
97:97:56:2e:a4:f8:b4:97:aa:18:d3:e4:03:0d:1f:
f8:db:96:48:95:d1:6c:eb:ca:5a:20:e1:a8:a0:80:
03:4e:32:aa:69:10:82:3a:5b:bd:9e:f3:98:b1:9d:
90:ff:f3:6b:eb:b4:a8:c8:53:87:7b:5d:8d:50:78:
77:6d:d0:0f:63:4a:51:c5:c6:8a:ee:be:80:42:37:
fd:11:77:06:0f:94:85:c0:12:c5:06:13:d2:b9:46:
66:37:59:3a:77:f0:7a:0d:db:b0:3d:7c:f6:22:17:
7a:09:4b:b0:de:84:08:c1:36:1b:e9:0e:62:d2:68:
bb:f5:d8:c3:ad:87:c0:99:14:ec:10:0c:28:2b:05:
8a:cf:fc:05:ec:26:9f:11:2e:34:1c:3f:34:c3:5a:
6c:0a:ec:49:44:5f:21:97:8e:b1:a4:70:4d:d3:90:
22:1d:23:e6:a6:0f:e0:6b:9c:62:ae:0a:08:d6:43:
bc:b1:05:d6:0d:de:1d:f1:75:ac:e6:f4:66:f4:c6:
9b:87:02:f7:ba:ea:b9:07:6e:eb:c2:01:4f:e4:49:
9f:33:dd:79:53:cd:07:87:b4:ea:85:4a:96:07:37:
0a:dc:64:18:f1:52:db:03:89:12:8d:cd:86:b8:b3:
e0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7F:E0:67:8A:32:F4:DF:FE:CB:14:58:E1:E3:0C:C2:AA:09:82:C9
X509v3 Authority Key Identifier:
keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.20.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:33:62:37:b8:b5:8d:e8:45:79:5c:76:fd:52:00:84:81:28:
00:89:03:a6:32:2b:52:9d:7b:69:fe:03:8d:26:e1:13:80:19:
2c:7b:61:d3:70:12:cc:fb:f2:e8:27:d4:32:51:ae:b9:7e:67:
09:1e:a6:9f:1d:9b:c6:1f:b2:89:b6:d4:8f:dd:fa:0a:7b:a3:
a1:72:74:10:d0:1a:f7:99:bd:af:04:d2:29:9f:3c:d8:4f:9f:
4c:16:97:76:f6:c3:27:42:04:0c:ae:39:ba:43:02:1e:e9:92:
c3:ec:0b:41:1f:b7:7a:96:b4:25:1d:ec:53:03:70:97:8a:34:
ea:94:3c:ed:42:ce:cf:10:ef:eb:95:73:be:ac:f4:28:b2:c0:
7d:19:13:53:7d:5f:d4:81:69:0f:26:e5:1d:39:c8:42:cd:a4:
aa:e0:7d:f9:6c:ed:59:86:84:7b:3b:2e:9c:1d:db:5e:e9:a4:
b6:9a:0d:f0:1d:8b:1b:e3:02:15:e6:19:1e:97:95:b1:a1:4b:
d0:4b:a7:95:25:8e:c4:bd:2e:78:ee:0f:c1:d6:5e:b3:ad:4c:
51:15:36:47:a3:52:14:ec:88:68:a1:9f:e4:1c:8b:1a:ca:89:
93:26:d4:6c:68:7f:8e:08:32:8b:ec:b5:ba:5d:fa:4a:34:09:
9f:1b:c9:d3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jun 4 01:19:18 2025 by rpki-client