Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/ytYIq81SkRMgE75DkPQhFndpCEA.roa
File: ytYIq81SkRMgE75DkPQhFndpCEA.roa (raw, json)
Hash identifier: Lkc2IpXjNInFKxCrI7TVaNZwiIRrv3B97OUE4Omknwg=
Subject key identifier: CA:D6:08:AB:CD:52:91:13:20:13:BE:43:90:F4:21:16:77:69:08:40
Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Certificate serial: 01BF
Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/ytYIq81SkRMgE75DkPQhFndpCEA.roa
Signing time: Mon 26 Aug 2024 05:26:31 +0000
ROA not before: Mon 26 Aug 2024 05:26:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.37.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447 (0x1bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Validity
Not Before: Aug 26 05:26:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CAD608ABCD5291132013BE4390F4211677690840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:61:c2:14:50:b1:2c:0b:81:1f:0f:73:b9:
10:3b:2a:aa:f6:86:77:f2:fa:f3:32:ff:32:f8:89:
4e:70:77:66:1e:7f:7b:bb:30:43:ed:46:f2:9c:85:
ef:86:c9:af:ec:ea:9a:c3:da:59:91:a9:13:72:7a:
42:3c:ce:1d:cd:7f:d4:2c:bb:00:cf:39:cf:1f:64:
98:1b:1e:54:88:aa:9a:f5:ef:28:5b:3e:68:19:4c:
57:8c:ed:0f:ac:8c:06:61:15:59:e2:78:ab:02:07:
dd:b0:01:6b:f9:50:b8:2b:85:54:bf:ae:f2:45:ac:
73:f9:f0:02:b0:88:63:12:54:03:d9:ce:36:19:da:
ad:7a:2f:fa:59:2a:92:d3:fb:01:7d:88:4e:aa:6f:
18:04:67:bf:18:9c:ce:92:bb:24:d2:cd:1b:78:bd:
7a:3f:8d:81:41:ad:85:f4:bc:35:f2:b3:f9:45:d1:
14:85:c8:79:d3:25:b7:49:d4:1e:0d:32:cd:d3:27:
4f:ce:e4:c3:51:0f:34:63:43:b4:84:67:27:a1:50:
c3:cc:48:5d:65:79:d4:81:45:58:ce:aa:c1:f2:5e:
40:5b:ea:db:a2:63:56:93:1f:8d:00:20:40:bb:46:
54:39:eb:f5:02:a1:ac:52:c2:e9:bc:f2:4f:bf:ce:
e6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D6:08:AB:CD:52:91:13:20:13:BE:43:90:F4:21:16:77:69:08:40
X509v3 Authority Key Identifier:
keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/ytYIq81SkRMgE75DkPQhFndpCEA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.4.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:4a:95:82:a4:7e:79:0a:37:0a:ec:d9:7d:cb:50:4b:72:29:
0b:67:4a:bf:32:5c:74:53:92:b1:73:6d:ea:2b:c7:de:02:fa:
ee:ff:db:3d:83:ec:d7:84:d4:02:2a:f8:48:44:7b:ef:f7:f8:
44:c5:2c:7a:0e:19:e2:e1:1d:e0:c2:9f:5b:12:2f:2f:89:c9:
41:c4:86:52:49:c7:8c:8a:12:cb:12:69:19:fd:5a:c4:da:af:
f8:96:d4:06:b7:e5:55:de:1a:09:eb:a5:7c:7d:af:ff:97:34:
a0:ab:cd:06:9b:c3:c4:6e:f4:ee:e5:f1:d7:0f:cb:03:22:40:
9b:9a:cf:e4:03:fe:f0:80:9e:37:09:ac:7c:7f:d3:97:00:e3:
09:7d:b0:26:cc:ce:3f:94:1f:32:1f:10:81:d9:bb:28:15:bd:
de:38:5d:48:3a:31:5e:43:43:68:4e:02:ee:f6:55:8a:71:2b:
b8:26:5d:0a:87:a6:8f:16:2c:9a:38:3a:fc:80:55:ab:eb:67:
c3:f2:01:f1:f2:a5:4c:99:b3:0e:e4:73:29:93:bf:3c:6e:6e:
05:4c:3e:b8:44:76:c2:86:31:24:ca:d7:b8:76:cf:52:84:33:
ac:cc:65:a2:f5:fd:3f:1d:75:6d:57:b1:3e:eb:a8:96:24:97:
01:78:31:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:36 2025 by rpki-client