Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/f-JMzMcUcS0xriHI3G74_Rx8qgw.roa
File: f-JMzMcUcS0xriHI3G74_Rx8qgw.roa (raw, json)
Hash identifier: Gu3K3S8TRColXsvxcTO5tV3jwDz6ukIIHpymQbkMnN0=
Subject key identifier: 7F:E2:4C:CC:C7:14:71:2D:31:AE:21:C8:DC:6E:F8:FD:1C:7C:AA:0C
Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Certificate serial: 0E01
Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/f-JMzMcUcS0xriHI3G74_Rx8qgw.roa
Signing time: Mon 26 Aug 2024 05:34:55 +0000
ROA not before: Mon 26 Aug 2024 05:34:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 103.138.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3585 (0xe01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Validity
Not Before: Aug 26 05:34:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7FE24CCCC714712D31AE21C8DC6EF8FD1C7CAA0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:f8:66:30:8a:fc:fd:bd:57:c9:07:c9:e4:
b0:a0:dd:d4:3d:e4:56:ca:94:d8:4d:50:34:0a:33:
6f:49:cb:2a:ac:32:a2:e8:06:f0:0e:15:a9:f3:d9:
d8:14:51:2b:0e:7d:bf:c7:6d:42:14:c3:3a:be:48:
31:cb:3e:b5:8c:e1:e4:0e:36:a3:ec:c9:01:26:82:
2f:65:4b:53:90:88:01:35:b6:b7:f8:cd:19:72:58:
4b:1b:7f:d0:7c:22:26:f4:99:22:ec:4e:c2:49:bc:
d0:1e:20:5e:a0:94:56:68:57:67:3f:24:4a:f2:fa:
3c:ee:98:00:f8:dd:d8:c0:7d:2c:ea:e0:7a:f8:12:
11:88:01:59:eb:e8:ae:79:e5:01:bf:48:8a:8f:9a:
d9:a7:ba:31:f8:da:8f:f2:8b:26:09:0f:88:30:3d:
f2:ed:55:a0:99:41:9c:a2:b0:24:36:bb:83:16:74:
52:01:32:c1:b8:e6:0b:c1:58:e2:17:fd:f6:7a:d6:
ee:45:f7:36:0e:ed:e6:e7:a2:7a:91:e9:04:b7:8a:
7a:ae:8f:27:d2:b8:bb:95:3d:c2:4c:03:03:a1:26:
31:e2:fa:31:39:2a:4f:ce:6a:6f:d8:b5:f1:5a:b1:
7c:c7:2c:c4:a2:75:8d:dd:89:5d:cc:f5:73:e0:9a:
4e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E2:4C:CC:C7:14:71:2D:31:AE:21:C8:DC:6E:F8:FD:1C:7C:AA:0C
X509v3 Authority Key Identifier:
keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/f-JMzMcUcS0xriHI3G74_Rx8qgw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:cc:b8:06:a0:06:d0:13:68:b9:de:c7:f4:17:e9:52:4d:22:
86:12:52:43:6a:76:f8:12:c4:bf:57:34:78:f2:95:02:82:bc:
93:ee:94:e6:f7:fd:03:69:0a:da:5f:ce:81:f7:03:11:5c:6d:
15:28:31:44:a2:3c:9e:d3:93:26:88:c5:22:5f:b0:66:8a:ff:
d0:0c:c0:30:ac:b2:2c:de:7c:1f:61:b6:c1:ab:62:12:d7:0c:
a2:39:da:36:98:8a:4d:1e:fc:10:c4:43:9a:5e:c0:bd:b7:2d:
ee:1f:26:b6:32:85:52:73:e8:5c:a8:80:f5:49:4a:42:54:72:
c3:46:38:e3:27:3c:38:63:9d:e6:07:8d:39:d7:50:97:0e:c8:
e2:f7:22:3e:ac:e3:ce:15:ce:5f:16:be:f5:a0:61:d7:8f:39:
20:44:4d:eb:64:4a:56:1b:6b:28:af:38:2d:6e:e9:97:41:e9:
6b:4c:d7:75:d1:e5:bc:c8:b1:13:44:f5:02:74:aa:7a:63:5f:
73:a0:3f:78:db:02:b7:17:4f:e4:db:fe:e4:e6:42:ea:e6:81:
3b:4e:77:31:aa:7d:79:58:3d:e1:74:92:74:e3:c0:45:84:79:
1a:c7:ad:05:11:4b:e8:77:2a:52:23:30:71:b3:26:b7:46:44:
99:b7:f7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:16 2025 by rpki-client