Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ad4yQIJHNUsYKekWXWXFsDN6rlo.roa
File: ad4yQIJHNUsYKekWXWXFsDN6rlo.roa (raw, json)
Hash identifier: Q64taZaT0rN1V1M36es8y0htKl5lEQCmtnGL1sW84no=
Subject key identifier: 69:DE:32:40:82:47:35:4B:18:29:E9:16:5D:65:C5:B0:33:7A:AE:5A
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0C98
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ad4yQIJHNUsYKekWXWXFsDN6rlo.roa
Signing time: Fri 04 Oct 2024 05:51:24 +0000
ROA not before: Fri 04 Oct 2024 05:51:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7483
IP address blocks: 103.129.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Dec 2024 00:46:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3224 (0xc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Oct 4 05:51:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=69DE32408247354B1829E9165D65C5B0337AAE5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2a:3d:44:84:f0:8e:31:7f:b3:b2:09:83:49:
ce:77:42:03:b6:7f:b4:7d:10:d2:32:67:0f:cc:4a:
df:1b:5f:55:14:8f:f6:24:80:f0:89:f7:57:33:d2:
7b:e0:32:cd:b0:f6:74:2c:89:b4:77:1c:a6:4f:0a:
eb:7a:bd:4d:4a:a2:f9:ce:b9:1f:23:a5:a8:bf:33:
6d:32:b4:3d:fe:aa:b1:cb:5f:7e:fc:1c:2c:de:e7:
57:77:9d:ed:9c:dc:a4:49:b8:aa:b2:db:68:62:73:
f4:b4:7b:66:0d:2f:ca:f4:2c:93:f9:a2:68:90:17:
ff:6e:fe:68:01:fa:d6:40:14:59:cb:2b:1b:f9:27:
ba:93:77:d2:ef:5c:d5:6c:dc:52:ae:8c:2b:65:11:
1c:ce:b2:da:f1:db:bc:b3:a9:bb:f9:14:3d:ba:9b:
96:38:91:da:16:fe:04:5c:39:32:b6:fd:b5:6c:8e:
9c:12:1d:88:a6:e6:a8:f6:5f:ae:26:2e:63:aa:10:
27:a0:8e:be:5e:ed:0f:c5:c3:9e:8a:56:16:0c:41:
e0:3b:2e:7b:66:82:fa:3f:25:9d:62:89:0b:60:29:
a7:0b:fb:8d:4a:75:67:e6:73:b3:e1:e7:3e:0c:e5:
63:81:6c:9e:1e:5e:e8:6e:2e:6c:78:48:e8:a2:61:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:DE:32:40:82:47:35:4B:18:29:E9:16:5D:65:C5:B0:33:7A:AE:5A
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ad4yQIJHNUsYKekWXWXFsDN6rlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.170.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e3:66:a0:36:7a:b7:7d:54:11:4c:15:8b:ea:79:19:93:9c:
27:98:89:cc:3a:73:ba:cb:80:18:40:8c:90:f7:5a:ff:e7:3f:
56:39:35:05:ed:35:7e:dc:36:47:af:93:d5:34:fa:f0:b6:fd:
94:90:a4:a1:03:f0:3f:58:d9:12:24:ec:ca:39:c1:89:b5:26:
ff:9f:e7:36:74:97:9c:26:2f:d4:6c:2c:9b:fc:57:76:78:a3:
50:2b:c0:8c:15:be:ce:04:b1:68:29:fe:1b:85:93:2f:9c:57:
41:59:f7:7f:6d:ac:83:6e:63:e5:dd:e1:cf:23:bd:06:77:c3:
34:2a:93:25:31:1d:5f:d9:1f:5a:55:af:f7:b7:43:e8:f0:33:
18:51:80:53:ed:43:96:67:20:7e:9e:f2:80:53:81:4e:34:b3:
37:d3:f7:be:27:16:ab:8a:8f:45:2d:87:5b:6c:da:17:f9:c1:
40:ad:b3:0c:c8:e5:77:4a:98:f6:fb:2c:9a:cc:26:3e:9c:52:
92:7d:12:cd:33:76:d8:26:9b:29:1a:6e:b2:45:6b:ea:37:03:
dc:1b:4d:5a:a0:df:0c:2d:f4:18:8f:bc:b6:f1:99:93:1c:81:
9b:23:8d:18:22:c2:9d:50:28:fa:40:d9:35:e9:3c:c2:2f:04:
a9:91:ac:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:23 2025 by rpki-client