Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa
File: PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa (raw, json)
Hash identifier: 7olnTYPF0K2iGeIUmwGc8rTciB7OohTuqyd605pNaLA=
Subject key identifier: 3D:85:AC:38:AB:8D:92:47:3D:FE:3B:50:4B:7B:41:DA:81:82:1C:53
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 100B
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa
Signing time: Mon 26 Aug 2024 05:13:20 +0000
ROA not before: Mon 26 Aug 2024 05:13:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 210.209.192.0/18 maxlen: 18
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:56:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4107 (0x100b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 26 05:13:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3D85AC38AB8D92473DFE3B504B7B41DA81821C53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:17:a1:52:e3:32:70:58:be:79:a0:e3:51:59:
e7:11:fe:18:8f:72:ee:7d:de:63:fd:fa:43:b5:49:
85:9e:04:03:75:a2:9b:dc:47:60:4d:27:bb:73:a6:
bb:51:4b:27:36:95:d1:fe:78:35:8e:29:3f:ba:77:
08:5b:b4:88:ea:09:fb:07:71:14:48:af:ee:14:d4:
f5:2c:dc:d6:53:31:ca:95:f3:fb:07:2e:16:48:b2:
18:9e:3e:1f:18:9b:5d:fd:bd:77:ab:cb:71:91:9d:
33:e0:f1:9a:d4:5e:6b:73:18:54:f8:02:fe:a0:66:
8e:b1:40:76:2b:c2:07:6f:63:bd:9c:41:38:e5:4b:
8e:14:5f:60:a5:2c:e7:80:ca:cb:4d:d5:1b:54:dc:
16:b6:16:12:23:b4:f7:3e:70:76:63:0d:b4:fa:8a:
58:a1:7d:d3:c7:17:6b:8b:e3:0d:5c:cf:cc:a5:ea:
1a:cd:c2:aa:ba:2b:f9:d7:d7:9f:d0:fb:46:80:05:
39:e6:73:63:92:ce:da:53:10:21:a2:74:d4:a8:d2:
74:98:bf:7f:4d:f8:cf:07:90:9d:92:3a:03:fa:86:
b5:c4:4e:a2:89:d3:ea:3b:24:b8:c3:80:f4:76:a1:
c3:92:29:12:7c:33:d3:1b:31:39:1d:22:8f:63:7c:
94:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:85:AC:38:AB:8D:92:47:3D:FE:3B:50:4B:7B:41:DA:81:82:1C:53
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8f:f3:55:53:94:4f:05:ef:98:0e:98:9b:03:50:31:93:2a:e1:
bf:a2:79:a4:b3:a0:ef:3a:b3:4f:75:32:62:e4:b0:74:1c:7c:
de:16:de:c9:ba:67:35:78:5e:f4:de:fd:aa:9d:e5:8e:60:f4:
7b:a7:1b:de:c1:fd:8d:81:45:6d:ea:0e:cd:c3:bd:5e:42:a3:
c4:6d:6b:6f:bf:a8:c8:93:f0:ec:f9:fb:1e:14:1a:0a:9f:b9:
1b:b8:08:5f:85:12:03:80:c8:bb:ee:cf:be:c9:a2:5d:98:4b:
b6:e3:7e:e9:c8:bf:37:64:01:1f:75:d4:1b:50:35:dd:91:cc:
b6:98:13:cf:0e:b1:4a:ea:36:94:86:56:6a:7a:ee:4d:e7:5b:
26:42:86:ed:d4:53:23:8f:4f:4d:8a:15:bf:98:bb:50:d0:74:
1b:54:ab:41:69:77:75:d3:39:99:85:cf:a4:5e:bd:45:f1:39:
26:71:a6:f5:3a:33:d7:9d:9b:52:83:98:df:7d:14:2b:18:8c:
53:29:89:72:32:52:e4:e9:af:53:a6:d2:38:18:f9:c6:59:d7:
e1:b5:fa:55:91:70:2b:cd:d2:7f:24:08:af:de:f9:ba:42:40:
92:5d:37:58:f4:c4:ae:d4:60:3e:fb:3b:64:38:04:13:b3:4d:
15:a5:0a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 21:06:05 2025 by rpki-client