Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa
File: XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa (raw, json)
Hash identifier: O6/Nch0JFEoUu5Yyit5yZjOPapM2PQdASxH5ppRsgFs=
Subject key identifier: 5C:B9:7B:FC:72:E0:C2:2F:ED:E7:24:4F:8D:BD:99:CE:FA:41:28:2C
Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838
Certificate serial: 012A
Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa
Signing time: Mon 10 Feb 2025 13:44:24 +0000
ROA not before: Mon 10 Feb 2025 13:44:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150756
IP address blocks: 203.99.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Apr 2025 04:37:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298 (0x12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838
Validity
Not Before: Feb 10 13:44:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5CB97BFC72E0C22FEDE7244F8DBD99CEFA41282C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f5:7a:7f:c6:4b:15:fe:a0:3d:5e:ac:a9:08:
45:cf:81:20:a0:19:b8:02:0e:3b:de:93:f1:ae:a2:
cf:22:03:25:9f:95:36:bf:8e:00:47:e9:30:c9:b3:
03:8b:94:17:e3:da:d1:bd:7e:37:73:68:1f:fc:b4:
c3:03:19:e6:a7:74:fe:9c:6f:e3:5c:ed:75:05:de:
ce:87:36:28:f8:7a:2b:8b:02:70:59:90:0d:ec:b3:
1b:37:7b:17:91:d3:09:9b:64:5a:75:0e:75:9f:ea:
c5:14:c0:2c:72:67:bf:92:3d:36:10:60:04:3b:d1:
d4:96:25:9f:07:24:e8:2e:03:8c:d9:ef:9f:9d:d9:
4c:2f:5f:04:a2:48:04:d6:c4:2a:b6:cd:6c:28:b9:
a0:e4:7c:1b:8e:34:f3:6d:b3:f8:c9:ac:93:2c:fa:
04:e2:75:ea:f9:86:52:97:cc:0f:9e:91:9e:42:4e:
f5:fa:e1:a7:6d:9f:75:f4:1e:17:09:6b:49:aa:81:
1e:94:58:d3:2d:f6:bc:97:2e:80:85:f0:77:3a:f8:
18:4f:b0:c4:cb:af:06:0c:77:18:2e:c2:0a:cf:a0:
c2:a8:b7:d4:70:9d:17:40:bf:e4:1e:df:24:8b:2a:
08:61:a3:bb:57:0f:a7:df:aa:d5:fb:61:46:cf:09:
c3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B9:7B:FC:72:E0:C2:2F:ED:E7:24:4F:8D:BD:99:CE:FA:41:28:2C
X509v3 Authority Key Identifier:
keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.99.146.0/23
Signature Algorithm: sha256WithRSAEncryption
49:5a:4a:d8:97:76:d2:02:bc:7d:89:02:f4:87:51:1d:84:37:
5e:de:7c:ca:28:7d:c8:24:87:75:82:47:fb:9d:c5:fc:76:b7:
a9:ca:c9:30:01:74:26:9d:2f:0f:4d:60:bc:f0:bb:09:c6:39:
7c:04:63:d7:62:e5:b3:6a:d2:30:16:91:18:d2:01:1e:9f:69:
b8:d4:07:c7:4a:44:9b:d9:57:e6:25:ea:43:bc:c3:38:e1:fe:
6d:e3:ce:ff:71:0c:c3:b0:03:ad:67:bc:c5:96:a5:fe:fb:03:
44:7c:f6:f1:a4:fe:30:a5:c2:a0:95:4e:6e:59:9c:4f:a0:b9:
be:c8:e3:68:08:f5:09:a7:20:09:80:fa:68:97:09:91:da:16:
19:43:fc:8c:22:c1:82:13:0a:87:66:ee:09:49:2f:a8:65:bb:
7b:51:8c:1a:33:9a:8c:ef:9f:f0:86:d9:1f:bb:78:1c:eb:f9:
a7:70:40:a0:77:fc:cb:44:04:7a:19:99:8e:d0:ef:15:39:38:
02:4b:f8:5c:46:d0:79:1a:54:0a:9c:7e:c6:cd:a4:50:3b:74:
a9:a7:2e:d5:4a:be:0f:e2:e1:45:53:96:c6:f6:08:19:c3:c6:
8d:f1:e5:a5:9d:d6:40:48:a3:7d:58:bd:f3:65:a1:44:67:03:
2c:c3:30:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 04:24:30 2025 by rpki-client