Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa
File: g904P5eN9CNbeKQjGSpNz3pFGAk.roa (raw, json)
Hash identifier: TqRRpU3s4oQBrlu//kiH673lLH1VZq7c8OHcZHPf7ak=
Subject key identifier: 83:DD:38:3F:97:8D:F4:23:5B:78:A4:23:19:2A:4D:CF:7A:45:18:09
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10E9
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa
Signing time: Fri 30 Aug 2024 07:58:40 +0000
ROA not before: Fri 30 Aug 2024 07:58:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 218.34.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4329 (0x10e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 30 07:58:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=83DD383F978DF4235B78A423192A4DCF7A451809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:4d:08:61:8e:6e:a7:59:ec:b7:be:d8:90:
91:f7:a7:e6:40:8c:83:4f:88:45:04:83:37:08:3a:
42:98:5f:22:80:29:fa:e5:64:37:1f:03:0d:5b:95:
0d:f6:18:f5:e1:68:f8:0c:6c:3f:8d:af:92:75:c2:
9b:bc:0b:ba:bd:d1:da:3c:a1:a2:76:2e:44:a6:f9:
ff:54:6c:11:70:ab:45:87:c9:df:f3:bf:60:74:dd:
5a:6f:bd:88:57:69:fd:c6:1d:18:99:da:24:e8:27:
cc:7e:d4:19:a0:a4:79:ce:77:9f:ff:36:8e:05:19:
01:56:89:e8:f2:5d:fb:bb:6d:38:a2:6a:d7:3f:12:
1f:59:b0:a8:f2:4f:62:66:14:84:dc:e6:90:8d:09:
75:e4:19:02:de:27:89:20:a5:b8:11:17:e0:49:3d:
ed:b5:b0:53:f6:97:97:b2:4a:41:33:ed:fc:60:a2:
cd:55:a1:56:a5:0e:2b:82:66:f1:ed:8a:45:24:0d:
4b:96:93:87:f6:90:6a:c1:87:0e:a0:5d:bc:e6:7b:
e3:54:ad:2c:ee:8f:fc:90:19:da:a4:71:cc:c6:94:
41:62:82:9b:3a:9b:9a:9e:80:b9:d6:f3:91:dc:40:
d8:43:eb:92:39:9a:48:60:19:1b:b1:54:16:e6:fb:
21:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DD:38:3F:97:8D:F4:23:5B:78:A4:23:19:2A:4D:CF:7A:45:18:09
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.112.0/20
Signature Algorithm: sha256WithRSAEncryption
13:2a:0b:30:fb:17:64:ba:cd:ad:2f:52:b4:09:16:7e:78:eb:
62:d8:67:8c:19:48:9e:9c:a9:b3:0a:ae:f4:c4:95:b2:39:52:
7e:7d:29:94:04:24:1f:df:0a:0f:fb:6e:24:f8:b0:1c:65:8c:
85:bc:79:b7:e6:f9:a3:e0:91:87:67:43:bd:cc:03:0a:ae:ea:
80:dd:34:01:48:a0:3d:61:be:a3:77:e1:5b:56:b1:74:25:e6:
52:3c:b2:10:be:f6:f1:b6:38:77:7e:2e:2f:e6:30:7b:1a:07:
89:3e:12:be:6e:2b:09:56:2c:37:c6:66:11:be:7b:ad:ac:a5:
d4:b0:2d:40:36:1a:e4:00:c4:34:a3:97:4a:a8:a1:70:7e:60:
4d:b9:6e:37:12:89:bd:f1:65:49:33:ce:2b:c3:ee:ec:b4:6f:
f7:cf:7d:b3:68:03:ec:07:e2:79:c6:69:e1:f7:d0:22:81:0e:
ce:42:e4:96:72:38:3e:01:48:e7:a5:1e:95:b1:55:58:a8:dc:
cb:b4:98:93:8b:b6:cf:47:32:c9:61:47:16:a0:23:77:84:ec:
6f:ca:b9:8e:2c:2e:4d:e9:f5:91:89:32:4a:2a:ff:71:a5:06:
a0:ae:c7:4a:53:0b:50:26:17:b7:1e:1a:d5:db:ff:fb:e2:dc:
45:cc:34:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:43:25 2025 by rpki-client