Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa
File: 1SPPfSh3XbzlF_q60dG9T0wbEQM.roa (raw, json)
Hash identifier: BSF+ol/scDAMu3l99DCSAAg+3GU0c8ANwG61mr3E6EU=
Subject key identifier: D5:23:CF:7D:28:77:5D:BC:E5:17:FA:BA:D1:D1:BD:4F:4C:1B:11:03
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0C49
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa
Signing time: Mon 26 Aug 2024 05:34:36 +0000
ROA not before: Mon 26 Aug 2024 05:34:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 103.123.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3145 (0xc49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Aug 26 05:34:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D523CF7D28775DBCE517FABAD1D1BD4F4C1B1103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:35:66:31:b1:ec:b8:d1:8b:c9:3f:95:03:8d:
8f:a4:50:7b:bc:8a:d5:8a:41:92:5e:9a:9b:da:4b:
95:e7:2d:9d:cd:c3:e7:de:a8:84:3f:98:fb:bc:f0:
8c:1e:ee:39:7e:56:32:09:bc:a5:e7:35:bb:76:0a:
50:c1:95:d1:ea:28:76:97:a4:fb:f2:6b:dc:a7:0d:
b0:d5:2b:c9:05:57:a7:4c:2f:3b:2b:5b:12:6b:a3:
12:af:cb:9f:a9:2e:ff:be:e4:69:bb:33:6b:aa:5d:
21:e1:99:4a:f1:47:db:7a:eb:ac:e7:35:ef:2a:9e:
1f:69:26:9c:04:91:f8:f2:60:ce:0e:6a:bf:35:e6:
b0:da:cc:01:f1:89:35:07:4d:2e:95:bc:0b:b2:41:
28:18:55:78:cb:10:32:41:1a:46:82:27:80:b2:2e:
9c:9a:55:ee:57:ee:cd:fc:7f:41:a9:99:39:a5:5c:
ee:77:6b:4a:3a:26:d9:89:fe:d4:84:ae:44:c4:d6:
bd:39:1f:8a:c0:8e:d5:86:00:4a:71:d9:df:8c:7a:
fd:06:e8:ef:0f:d6:90:92:27:dc:a4:f4:47:fa:e4:
ed:2f:85:4f:27:eb:9d:71:08:a7:32:87:14:81:25:
b4:60:3c:46:9e:0d:b1:0c:6b:10:bf:0c:37:00:33:
fe:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:23:CF:7D:28:77:5D:BC:E5:17:FA:BA:D1:D1:BD:4F:4C:1B:11:03
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:f4:6b:50:73:88:b7:20:ef:e4:3e:3d:cb:25:ef:d4:07:3c:
a5:4b:a7:f1:3d:a6:48:92:9c:f8:02:c9:ca:fd:21:76:f8:e3:
2f:6a:64:56:cb:c3:e7:3d:8d:a8:48:2d:c9:2e:cb:a6:88:46:
00:c0:7c:64:03:45:79:28:6f:27:32:bb:63:b4:91:38:2c:a6:
e1:d2:a2:3a:13:94:6b:ae:63:e9:dd:1f:cb:27:84:77:2d:8f:
1c:34:e1:86:39:ac:49:d3:0e:d4:74:58:c3:0e:34:a0:60:97:
85:c7:31:d1:20:dd:9d:a7:c4:08:06:74:59:2b:48:78:2e:fa:
eb:de:64:fa:9a:d6:57:8f:48:04:91:9d:30:4e:77:93:a1:f3:
a4:88:97:01:8f:a6:99:dc:1e:36:fc:c4:ef:64:6b:fd:05:da:
8e:e7:c7:8b:b3:01:ad:fa:3d:cb:b7:0f:51:f1:11:96:df:26:
22:23:a5:90:82:67:19:48:f1:1d:3f:9c:f2:ea:31:c3:3c:f2:
88:f7:dd:b5:e5:65:ab:e7:9a:23:14:43:68:0d:2c:68:d3:2c:
2f:ef:32:61:03:9f:ad:7d:44:bd:e6:cf:5d:55:15:fd:54:9c:
3c:e3:f1:80:62:da:c3:77:5b:9c:ef:9d:f3:4b:53:e4:8e:fa:
2c:e3:08:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:51:36 2025 by rpki-client