Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa
File: dfekttfBAGMViIwOi45b0LR3fPk.roa (raw, json)
Hash identifier: 51vmEg6VFu5OCUI2dWkm1oA6f6sxsieYPgpltxwaY+k=
Subject key identifier: 75:F7:A4:B6:D7:C1:00:63:15:88:8C:0E:8B:8E:5B:D0:B4:77:7C:F9
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 103F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa
Signing time: Mon 26 Aug 2024 05:16:13 +0000
ROA not before: Mon 26 Aug 2024 05:16:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4159 (0x103f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=75F7A4B6D7C1006315888C0E8B8E5BD0B4777CF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:38:a1:a1:fb:de:70:5a:e5:f5:f6:c3:ce:56:
ab:d4:c0:c1:b7:11:1a:cd:1c:cc:b0:19:fc:1f:21:
b4:f4:d8:9d:d1:62:a7:c0:2a:c6:63:79:a2:09:28:
02:62:c5:ee:71:32:b7:22:7c:fe:c4:a3:9c:d0:17:
2f:42:12:b5:09:75:0f:87:7b:2b:38:b0:e5:f1:d5:
bd:31:b6:1e:e1:cb:e4:19:4d:20:0a:45:af:f1:2a:
19:2c:4a:d0:a1:c6:df:4d:d5:54:4e:48:3a:17:24:
7b:fb:ab:5e:fc:78:38:01:78:de:69:eb:b0:28:d9:
0f:79:4d:3f:1f:69:6d:20:8e:ce:82:30:a9:d3:42:
b5:2d:77:8d:2d:78:dd:dc:26:a6:c9:92:ad:db:05:
75:11:bb:97:be:01:e8:92:a1:31:74:f6:52:e4:5f:
fc:c0:7b:bf:e2:10:04:5c:2d:f6:68:a8:c3:92:95:
92:56:85:90:ca:e2:33:fb:7e:31:cd:6a:34:30:ed:
75:52:07:9e:af:82:ee:1c:37:7e:0d:d4:b5:1a:91:
f2:a8:64:db:ea:b4:f4:a9:ac:d8:83:e1:86:6b:eb:
6d:90:6a:a8:ea:a9:bf:31:95:96:a5:b2:6f:3c:ba:
04:be:77:fb:35:26:0d:5a:3d:1b:ca:5e:74:fe:c4:
01:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F7:A4:B6:D7:C1:00:63:15:88:8C:0E:8B:8E:5B:D0:B4:77:7C:F9
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
08:ee:08:17:42:24:83:6e:43:6a:20:5c:7c:51:c7:d0:01:65:
11:60:5c:18:30:05:43:41:c2:ca:e8:80:10:8f:62:20:2a:34:
88:81:05:ed:ca:7d:f3:49:bd:f1:3f:0f:4b:ac:e3:68:b8:c2:
2a:46:c2:6a:40:5a:3a:dd:57:63:e5:5e:15:9f:4e:8d:09:fa:
f2:3a:70:51:79:5e:58:0f:2d:eb:25:32:52:95:f5:22:cf:3f:
39:10:b3:bc:07:d8:fe:e9:45:ef:50:08:71:4d:7b:7c:21:37:
92:5a:ba:8a:59:20:49:e7:a3:e3:d7:3a:04:1b:d0:c4:61:3b:
ff:8d:a2:a2:8c:ab:64:aa:b8:b1:e2:6a:a7:3a:d8:eb:e9:90:
29:cc:71:b8:1f:5c:91:bf:c3:c0:31:c8:ec:01:a4:7b:7c:12:
c5:34:96:b2:e5:17:12:0f:5f:a1:f8:e7:3f:59:bc:31:85:ad:
06:22:fc:e6:f0:ea:79:b0:fa:80:22:4e:01:48:28:b5:ce:f6:
c7:06:c0:ed:ac:a5:41:87:ea:cc:2d:48:cd:33:29:96:74:88:
56:43:bc:f7:b0:b2:91:2c:85:80:ee:31:98:a9:3e:fa:e1:ed:
ba:19:90:f4:26:01:5b:c0:b1:ee:fb:5f:fb:36:6b:7e:97:b3:
44:09:94:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:18 2025 by rpki-client