Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YoTXQBT0ykUDSd0E8fX0w4ovI6U.roa
File: YoTXQBT0ykUDSd0E8fX0w4ovI6U.roa (raw, json)
Hash identifier: RE9WXTm/U/Z4wTs0Pb8TyS2P3AIZR+GXRdTc0f2759Y=
Subject key identifier: 62:84:D7:40:14:F4:CA:45:03:49:DD:04:F1:F5:F4:C3:8A:2F:23:A5
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 108D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YoTXQBT0ykUDSd0E8fX0w4ovI6U.roa
Signing time: Mon 26 Aug 2024 05:16:33 +0000
ROA not before: Mon 26 Aug 2024 05:16:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 222.250.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4237 (0x108d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6284D74014F4CA450349DD04F1F5F4C38A2F23A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:1a:8f:e2:b5:d1:9e:84:3d:61:b6:9f:e8:
a5:73:92:43:a5:5c:eb:14:43:e3:51:e5:75:0d:6b:
c1:79:88:f9:10:b2:f5:cb:0f:1f:1b:c1:98:2e:8a:
66:e9:ea:a8:6a:48:55:be:b9:be:26:16:8d:76:34:
fc:96:fc:98:88:c8:c0:08:4f:39:18:70:4b:c0:83:
ea:b4:b0:37:7c:2b:e4:c2:65:16:bb:98:09:ae:39:
1c:3b:93:ff:fe:9f:b4:8c:0c:b9:61:45:58:1f:35:
93:78:2e:32:98:3d:ac:70:bc:04:52:b7:7f:35:83:
f2:6e:36:9e:fa:67:2e:d2:42:42:d6:ba:e3:ab:f0:
ac:63:23:2a:1a:c4:73:d9:60:86:39:ad:54:c1:fd:
7e:b0:50:8d:13:62:3d:8d:a9:bc:a6:3d:52:73:48:
18:a8:78:b1:79:16:0b:73:53:ca:74:bc:e1:c2:51:
39:7e:0c:7d:5b:f1:34:53:cb:cf:5f:e5:dd:25:2d:
37:72:c7:54:34:bb:c9:5b:5d:e5:f0:9b:32:1e:c6:
f5:4d:1a:82:77:8d:46:38:98:29:6d:b6:33:76:74:
5e:17:c6:dc:21:5c:5e:db:41:dc:ff:cf:90:06:27:
4a:d7:64:37:98:b6:8a:d0:40:ad:93:56:34:9f:ef:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:84:D7:40:14:F4:CA:45:03:49:DD:04:F1:F5:F4:C3:8A:2F:23:A5
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YoTXQBT0ykUDSd0E8fX0w4ovI6U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.64.0/18
Signature Algorithm: sha256WithRSAEncryption
72:5b:02:85:fb:d9:91:55:fc:b0:02:cb:b3:e2:99:86:3a:3f:
3b:83:02:ab:3b:65:00:11:38:d0:75:24:c1:28:e2:48:87:f9:
ef:c1:f3:a9:e4:18:51:5d:87:db:ba:6e:3c:1c:ac:11:d1:91:
50:a3:62:c1:af:89:7b:35:58:e3:6f:ed:21:96:f6:87:8c:b9:
73:f6:71:f8:5e:62:1d:e2:db:48:10:54:31:e1:06:94:0f:b2:
55:3f:13:89:cc:ec:77:27:df:48:bc:d0:81:2a:05:0a:e8:b5:
f8:b0:94:d0:4f:03:fe:03:a0:40:ac:88:6f:53:96:a8:e4:aa:
15:12:59:f5:06:03:c8:75:3a:28:24:af:42:8f:5d:97:7c:35:
55:bc:bf:8f:5e:82:7d:64:49:6e:06:38:06:0f:ed:d0:f3:3b:
12:a3:3e:6f:4c:d6:c5:55:96:a4:0a:93:65:df:9f:87:eb:f2:
83:b4:15:21:31:f4:1a:10:75:bc:18:d5:ac:1f:c1:44:6d:38:
f5:c4:79:d2:47:fd:b2:52:f0:1f:5f:9d:98:5f:1b:e7:0c:c2:
bc:46:6c:5b:70:d2:e3:40:0d:42:a4:17:d8:fd:ea:f1:5c:0f:
c8:c7:2a:37:55:f8:ca:9b:09:57:c3:97:3a:c0:ab:01:89:aa:
ba:27:d7:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:35 2025 by rpki-client