Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa
File: 0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa (raw, json)
Hash identifier: lCvUeOqFD2pUTSaQvD3Nuj//MJQ78KbbLWQrEncG7tY=
Subject key identifier: D1:D1:7A:33:1E:66:9D:F2:53:3A:E1:2E:B0:25:51:59:DF:86:F2:CE
Certificate issuer: /CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Certificate serial: 12
Authority key identifier: EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa
Signing time: Tue 27 Aug 2024 13:21:55 +0000
ROA not before: Tue 27 Aug 2024 13:21:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 204844
IP address blocks: 160.30.99.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Validity
Not Before: Aug 27 13:21:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D1D17A331E669DF2533AE12EB0255159DF86F2CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a4:b5:59:ac:2c:4a:1e:ad:9e:98:ee:54:6b:
9d:42:82:3c:c9:11:26:c9:02:d3:6a:bd:c0:41:08:
6c:95:e6:51:e8:80:42:27:34:1e:5d:31:81:49:f0:
09:84:0e:af:d4:0c:f6:2b:da:7a:7f:ce:79:ce:c0:
63:c5:05:1a:9f:32:de:06:14:7d:5c:2e:90:25:52:
f9:b3:6a:d2:5f:55:21:12:48:93:27:f2:e0:24:86:
81:cf:73:0f:e6:1a:3e:4c:13:10:6b:d1:b6:e7:b5:
4a:ce:20:a6:42:34:11:c5:8d:d1:d8:c8:7a:56:83:
54:04:10:a0:c0:37:11:7a:5d:7e:9e:33:68:c8:99:
51:d9:d8:15:37:29:a4:1c:23:c3:81:e1:1c:d1:df:
4e:4d:df:64:72:63:2d:89:d2:ea:5b:51:79:26:20:
2a:2e:14:f1:44:81:28:6b:fc:66:90:d9:03:19:f4:
69:f2:36:23:75:98:88:9d:1d:90:de:f2:ab:94:9f:
a0:fd:8b:20:4c:66:46:11:03:92:d5:71:01:26:b0:
ef:6c:b1:67:1d:6a:ae:1b:b2:44:69:72:f6:ed:bb:
c1:e9:de:bd:39:f1:27:45:89:17:e8:f9:21:fd:a1:
4d:ef:2d:d3:31:a0:80:a8:b9:75:c9:e9:62:e5:66:
d5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D1:7A:33:1E:66:9D:F2:53:3A:E1:2E:B0:25:51:59:DF:86:F2:CE
X509v3 Authority Key Identifier:
keyid:EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.99.0/24
Signature Algorithm: sha256WithRSAEncryption
87:e9:21:2e:82:9e:2f:fa:2a:00:0b:56:ad:88:15:05:8d:b8:
34:1e:54:bc:27:ce:cd:26:83:ff:b6:4d:ca:bb:07:e5:66:51:
b2:6d:86:23:f4:ae:3a:27:84:c2:79:91:b4:d7:f3:de:e7:42:
a9:54:b3:65:90:08:65:65:09:57:a4:94:bc:5b:ec:06:f1:b6:
a9:89:78:d1:60:2c:d5:58:da:21:bf:e0:13:2d:bf:e4:05:5a:
e2:02:e0:67:c3:53:33:63:9d:ac:4e:8d:8c:bb:f1:39:13:48:
68:69:2c:c9:6a:54:5d:92:a7:05:93:ff:a6:bd:98:7a:db:84:
27:91:ff:af:67:a1:7d:d0:e5:30:20:09:dd:03:8e:5f:ad:27:
ac:50:c8:2e:64:08:c9:1f:4b:ed:88:3f:86:75:58:e6:01:41:
d5:3f:30:a7:81:7f:61:99:8d:13:d4:19:2a:57:16:36:c9:ed:
6c:6a:8d:c0:74:27:8a:f4:c7:aa:a6:62:3c:22:74:8f:c7:52:
8d:b3:8f:ec:81:ec:79:27:46:e2:20:e7:ba:2b:16:19:a0:e8:
47:8c:30:75:72:1b:cd:10:e8:83:e3:24:c7:92:b1:35:03:76:
69:96:aa:83:de:1a:48:9c:2a:52:6c:07:4a:a8:29:5b:d4:dd:
37:0f:f3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:04:50 2025 by rpki-client