Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa
File: RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa (raw, json)
Hash identifier: BttQ6CynP32CswJMNujK9AEdOI2l+QrSEBAlO71pp5g=
Subject key identifier: 44:24:B4:12:9D:A7:20:6E:52:C7:F0:43:85:A3:9F:3D:E9:F9:09:33
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 0120
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa
Signing time: Fri 13 Sep 2024 08:19:40 +0000
ROA not before: Fri 13 Sep 2024 08:19:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.123.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 11:45:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288 (0x120)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Sep 13 08:19:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4424B4129DA7206E52C7F04385A39F3DE9F90933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:9e:9f:1b:b7:37:d8:2b:a8:37:89:ec:65:
8b:41:b9:d6:76:61:d3:23:04:32:4f:76:b4:94:b1:
ff:54:74:f4:48:24:f0:7b:e0:46:0d:52:8c:85:fc:
5f:40:7d:aa:b7:04:d5:fc:5e:d4:0b:ba:c9:37:38:
07:9f:9d:a0:96:b9:2a:bb:66:dd:ab:11:fb:e7:3e:
4b:c7:55:36:e8:d3:26:7e:e1:cc:1a:d2:73:00:b3:
d0:44:74:e6:6e:1a:fa:63:ec:03:18:79:53:de:da:
b5:41:88:59:8f:8a:a7:08:ef:b3:a4:f1:e9:40:03:
6c:31:3a:86:3d:9d:1b:fe:b2:19:8a:08:dd:7b:01:
de:50:82:59:1a:87:a5:1d:ca:2b:3b:ce:ea:3c:30:
b8:e7:80:0e:cc:36:d9:8a:93:80:6f:e0:ea:9e:12:
ec:2e:47:f6:78:5b:b2:34:67:4c:a6:ee:c1:e0:41:
6d:e0:82:71:91:c1:ef:f0:1d:ee:11:9c:ba:7d:b6:
39:9e:67:e4:f6:17:99:89:93:78:d1:2f:db:73:1b:
8e:09:81:24:23:6f:b2:ab:27:ab:46:ce:13:e4:8c:
75:3d:bd:7c:ee:d6:e6:80:5a:fb:2e:b0:4d:b8:88:
bf:b2:f5:4b:2e:bf:98:bc:dd:9e:e6:12:6b:12:c5:
3d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:24:B4:12:9D:A7:20:6E:52:C7:F0:43:85:A3:9F:3D:E9:F9:09:33
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.132.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:cc:29:f4:b4:03:e7:8c:6a:7f:a3:d9:f9:e6:8a:08:a5:7f:
b7:7f:ac:e2:03:90:d3:a3:06:5a:19:d8:ad:b5:44:1b:2f:68:
a7:61:41:60:34:af:07:ce:0e:e0:5f:de:43:a2:d4:92:9e:16:
3d:be:87:32:be:01:71:4c:34:c7:a1:af:2f:a8:ce:e1:a1:c6:
b1:f7:3f:bc:3c:a5:76:74:21:3e:a1:db:7e:15:88:9c:84:7a:
61:b4:a0:56:b4:88:19:03:4a:99:9d:4b:1a:0b:49:ed:ed:c3:
72:cc:35:be:87:54:90:84:42:88:d0:66:85:b2:0a:8f:83:46:
f5:0c:a6:db:d5:fd:4c:78:fd:2f:01:ed:d5:d7:42:0b:62:84:
b3:ca:6f:d4:a4:d8:6d:55:68:c9:1b:2b:54:72:76:8f:76:d2:
0d:fc:b3:80:25:d6:f7:e5:55:7a:6f:3d:ca:7d:cf:36:08:fa:
da:df:0d:44:31:39:55:36:ff:f9:4c:c7:88:06:c2:a6:13:7a:
a9:2f:d6:2b:51:7a:1a:de:bc:42:5f:74:30:93:9a:66:b1:71:
82:a8:24:33:d7:d4:fa:7f:be:b3:67:3c:fa:d2:0a:e9:ae:75:
c0:a1:8e:a9:cf:81:3a:31:49:96:52:79:df:ec:09:8d:84:c5:
7c:cc:5a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:52:03 2025 by rpki-client