Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa
File: vemDIzsq6LlNNtIBqDyyRMx25Pk.roa (raw, json)
Hash identifier: FJZy0cy13crYGod8hNqeAqwhUZDccArOeXJnZcI8eUM=
Subject key identifier: BD:E9:83:23:3B:2A:E8:B9:4D:36:D2:01:A8:3C:B2:44:CC:76:E4:F9
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0C4D
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa
Signing time: Mon 26 Aug 2024 05:34:37 +0000
ROA not before: Mon 26 Aug 2024 05:34:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 103.130.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3149 (0xc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Aug 26 05:34:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BDE983233B2AE8B94D36D201A83CB244CC76E4F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:97:9e:6d:5f:e3:f9:28:d5:fe:71:2e:06:
f0:81:f6:e8:03:33:cd:4a:55:74:3a:11:4a:b1:65:
24:de:5b:9f:95:05:42:78:a6:55:42:6c:1d:31:61:
4b:2f:ed:dd:5d:0e:28:c2:88:0c:4f:01:98:61:56:
55:6f:77:75:11:3a:88:28:34:cf:72:8b:1b:43:82:
9a:64:70:3e:97:fa:80:c9:93:6e:0d:2c:2b:2b:a4:
ad:93:64:f5:cc:af:57:ac:51:b3:0e:e4:eb:91:73:
ba:b1:3c:98:f3:45:ef:00:e8:0e:f3:c8:4f:56:87:
a9:4e:04:86:b4:f8:f5:90:f8:30:8e:0b:5a:3b:b6:
2a:23:2a:ff:3c:47:d1:95:6d:dd:59:a1:93:dc:48:
ae:56:3e:9c:11:15:d6:f4:14:d8:bb:1e:03:a4:eb:
a4:7c:11:a5:c8:94:6b:5a:8c:a7:88:85:93:e8:d6:
95:8a:b4:d3:dc:cc:21:8f:28:d6:4b:1a:75:fa:8f:
7b:14:41:84:ca:d8:0f:e9:80:c7:39:d6:d7:a2:9a:
14:81:cc:8b:82:48:ba:58:b6:99:60:dd:3c:cb:ae:
11:8f:f3:e9:98:60:ec:8d:6f:e7:c9:55:25:ab:08:
42:3c:33:17:16:c4:3f:cd:2c:ce:af:61:12:f3:21:
f5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E9:83:23:3B:2A:E8:B9:4D:36:D2:01:A8:3C:B2:44:CC:76:E4:F9
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.96.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:04:4a:9a:4f:f3:da:79:82:19:3d:41:56:5b:22:8d:93:a4:
4a:a7:4c:22:fe:72:b9:f8:23:cf:6b:0d:57:da:99:2e:00:34:
79:88:92:61:fb:fb:da:ab:56:30:40:a5:5f:f8:c4:64:16:2b:
96:2e:be:80:2d:32:c2:ed:5b:75:8d:8a:0a:65:79:f7:9e:49:
a3:f8:cf:71:2b:5b:8d:66:3b:69:bc:5f:fe:e2:5a:ed:bd:ae:
ff:c0:e9:54:51:9a:8a:f8:3d:c2:2a:28:9b:c3:ad:36:81:31:
ca:c5:d8:1d:7c:48:c9:32:f6:95:9a:fc:99:76:80:9f:6e:a7:
d7:a3:fe:2d:ab:02:4f:ca:6c:54:a7:d1:8c:0d:4a:94:29:1e:
b8:54:9f:f7:8d:c2:06:4c:12:cf:36:72:75:73:fd:d8:43:7d:
27:bf:65:39:c5:ba:61:32:fa:7e:53:15:5b:b2:24:a2:7b:d1:
33:2c:94:68:46:d2:2a:f2:9e:1e:34:21:09:a2:4c:e7:56:39:
f3:7c:82:16:66:06:c3:c9:6e:f0:c8:3f:e2:e0:f5:39:b0:33:
fe:5e:00:bf:db:54:ed:69:4b:55:28:ab:74:b7:f8:1b:bd:3b:
5c:83:df:ba:b4:a2:29:75:5e:7a:2d:6c:6b:f1:03:6d:8a:d3:
a9:92:70:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:53:56 2025 by rpki-client