Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/_QCE25OsJF1J-lLMdxPTaVOlF94.roa
File: _QCE25OsJF1J-lLMdxPTaVOlF94.roa (raw, json)
Hash identifier: mVivp5AsloSlTy9Ex+KgsaaoVnrYeg2IV2vhfzhB98s=
Subject key identifier: FD:00:84:DB:93:AC:24:5D:49:FA:52:CC:77:13:D3:69:53:A5:17:DE
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0C4A
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/_QCE25OsJF1J-lLMdxPTaVOlF94.roa
Signing time: Mon 26 Aug 2024 05:32:44 +0000
ROA not before: Mon 26 Aug 2024 05:32:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 103.229.100.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3146 (0xc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Aug 26 05:32:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FD0084DB93AC245D49FA52CC7713D36953A517DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:05:d9:29:32:8e:33:ee:a9:ec:c1:aa:0c:6d:
76:f1:f6:69:58:7a:4c:c3:a5:f3:b2:7d:fb:0a:f5:
42:0b:40:b8:ab:8a:b4:fd:4a:be:50:13:90:6f:e2:
b5:5e:b7:b5:87:ff:d1:62:81:97:e4:dd:00:84:e8:
61:7d:f8:c1:df:08:b3:03:69:83:88:be:9d:1e:cc:
19:84:3d:3d:42:6b:74:db:bd:86:fb:d7:a4:93:e2:
25:65:cd:d1:a2:0e:0a:61:33:0d:95:a2:c4:45:19:
79:fb:31:6c:ba:e1:ae:b6:d6:ea:39:ac:90:b9:6e:
01:5c:9b:98:57:6c:e9:bb:af:29:96:00:9a:4a:73:
a4:ce:ce:9a:8d:80:d7:37:f4:19:be:3e:e4:02:30:
91:8c:50:55:27:bd:9c:d4:ca:ea:ce:8b:90:df:da:
19:64:3d:25:86:89:a4:c2:b5:ea:f6:d1:b1:c4:f6:
9d:18:3b:a9:6e:0a:7a:12:0a:bc:ce:1c:08:2d:ed:
56:56:c4:70:f4:4a:8b:f3:59:f8:30:2b:21:97:8f:
f9:cc:d8:f8:1c:0d:2a:fe:94:49:e7:9c:c7:49:70:
a6:23:af:98:cf:11:88:b4:cf:3b:9e:f7:23:78:91:
d9:b2:9f:16:f2:2f:0a:e5:8c:ef:09:d2:7b:50:c1:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:00:84:DB:93:AC:24:5D:49:FA:52:CC:77:13:D3:69:53:A5:17:DE
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/_QCE25OsJF1J-lLMdxPTaVOlF94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/23
Signature Algorithm: sha256WithRSAEncryption
15:79:bd:66:33:28:42:0c:fa:f9:04:a8:91:39:44:ca:05:7f:
93:9f:45:c4:12:8a:88:a4:25:be:32:ac:9c:ff:85:95:1a:a9:
2e:79:f5:35:15:eb:25:5a:08:37:a4:4f:7e:df:4d:75:81:ce:
79:05:dc:4b:91:44:df:ad:1c:9d:be:55:01:8c:04:4f:8b:fe:
d4:e5:ef:6b:51:53:ec:3c:ea:d6:34:af:fc:be:88:2c:d2:1f:
98:a7:6e:ae:6e:97:15:30:bc:95:af:09:08:95:60:35:c6:af:
d7:d2:1d:2f:8f:57:75:09:34:29:93:75:ef:a3:b1:4e:b4:35:
ed:b1:c1:08:ac:af:17:60:47:47:b9:ef:37:a6:e5:28:be:f7:
a6:06:5b:23:02:36:89:74:10:cf:7f:8b:3b:ce:6c:ae:7f:c6:
65:62:57:d9:94:3a:33:a1:1b:9d:9c:23:5a:76:27:8c:fb:40:
bf:f8:62:f3:9f:7b:f1:ab:e4:d7:37:74:f0:76:8c:37:8a:c1:
da:d2:f2:15:b0:03:56:30:b4:c6:63:20:1e:19:63:29:ee:0f:
00:72:41:5e:ab:65:a4:47:7d:67:b2:db:90:f0:a3:74:7d:3d:
f1:7c:2a:61:48:e6:97:b4:5a:e1:86:4f:6a:d4:65:9a:0b:9f:
6b:32:51:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:11 2025 by rpki-client