Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/sjCVidISOm3vR7K9VFcnArzplWM.roa
File: sjCVidISOm3vR7K9VFcnArzplWM.roa (raw, json)
Hash identifier: hhMhsev+Zr3U8J6rQ5OBnnSCTIIRUo2qY6lxMJlVcRU=
Subject key identifier: B2:30:95:89:D2:12:3A:6D:EF:47:B2:BD:54:57:27:02:BC:E9:95:63
Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA
Certificate serial: 097E
Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/sjCVidISOm3vR7K9VFcnArzplWM.roa
Signing time: Mon 26 Aug 2024 05:23:22 +0000
ROA not before: Mon 26 Aug 2024 05:23:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131626
IP address blocks: 103.144.32.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA
Validity
Not Before: Aug 26 05:23:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B2309589D2123A6DEF47B2BD54572702BCE99563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:fc:b3:41:53:ed:d3:13:eb:a4:92:61:f3:
c7:da:dd:9c:fc:f5:33:39:5c:e2:3d:d1:7a:5a:4b:
6d:52:0e:de:33:93:4b:50:7e:07:bc:d8:ab:63:ff:
ab:e0:c6:98:c2:c3:12:de:5a:a5:dd:1e:6e:8a:0c:
9b:d2:96:3f:3e:7c:14:63:4f:ff:ee:38:90:8c:8f:
6c:4e:b0:e1:d8:14:ec:d8:90:11:f1:b0:de:7e:c1:
6e:54:39:62:a7:30:2f:36:da:1a:06:94:b8:6a:d6:
46:d8:d6:4a:fe:25:93:b8:6b:ae:c8:06:2f:a1:da:
22:25:7d:30:eb:86:f7:56:ae:89:ba:6b:e3:58:b9:
eb:ff:b7:27:0b:90:0c:b7:86:40:6b:4e:62:bc:bf:
9d:ec:64:b5:97:5c:92:64:aa:30:a4:cb:f6:6a:d5:
d6:06:8d:86:d8:2e:7a:2c:64:52:17:55:67:d2:89:
4c:fe:a1:89:84:09:c6:e8:69:02:94:a7:0c:9e:78:
f8:ab:7f:79:9e:0e:2b:c9:6d:a4:b6:d6:4a:05:0e:
a3:02:dc:8c:2f:39:6a:74:48:89:f3:c5:e8:19:7c:
ff:03:b2:3a:8d:89:be:ff:39:eb:71:00:bf:b8:2b:
f7:df:bc:a9:d0:a6:b8:13:ea:7b:fc:94:ae:81:57:
10:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:30:95:89:D2:12:3A:6D:EF:47:B2:BD:54:57:27:02:BC:E9:95:63
X509v3 Authority Key Identifier:
keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/sjCVidISOm3vR7K9VFcnArzplWM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.32.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:45:b3:a6:5c:5e:0f:11:a9:a6:a3:cf:ba:b3:ff:4f:f1:41:
06:a0:df:4e:c0:3f:68:c1:67:db:c7:a8:54:0f:de:11:78:af:
77:3d:d5:09:73:e2:82:da:27:9d:0c:1c:32:2d:33:2f:7a:b5:
17:f8:02:d5:38:57:65:b7:a5:8d:e4:d5:57:8a:3f:d2:09:13:
10:83:27:cd:dd:c0:ba:ba:f6:2f:07:c8:e7:ef:22:0c:c8:6f:
43:f6:d5:da:55:80:ce:eb:25:72:e5:15:1d:25:73:78:48:92:
eb:27:03:f5:b2:40:7c:4e:50:d1:0e:6e:c7:be:7f:64:95:9b:
46:f9:e8:66:52:fc:c8:80:c8:56:a4:a7:a0:03:06:ee:2d:70:
e2:c1:ab:20:f6:65:fb:0b:d1:33:b4:73:d1:94:8e:47:28:62:
21:4b:7e:fa:02:46:e9:07:97:cb:70:6c:55:25:79:41:d5:60:
b6:c2:84:21:73:46:a0:d9:93:7d:7e:68:05:87:ae:72:75:d3:
e2:9c:be:4c:d3:f2:a6:77:25:3c:2c:1e:9b:b1:85:62:5a:5c:
27:25:b5:99:27:d6:7c:b5:96:4c:52:d1:7f:fb:c0:91:4e:fb:
29:d5:83:5f:c5:6f:2e:32:b7:71:1a:e9:4b:77:54:ff:13:0b:
5a:0c:43:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:27 2025 by rpki-client