Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa
File: QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa (raw, json)
Hash identifier: VwsXLEIHoma0o06l4MfszVmMdtQwU9YAbYVUDpi9B1k=
Subject key identifier: 41:E1:48:AB:7E:4A:0F:E1:29:42:FA:3A:FD:3B:BA:BF:95:B4:28:72
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0C45
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa
Signing time: Mon 26 Aug 2024 05:23:49 +0000
ROA not before: Mon 26 Aug 2024 05:23:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4781
IP address blocks: 210.63.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3141 (0xc45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Aug 26 05:23:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=41E148AB7E4A0FE12942FA3AFD3BBABF95B42872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ea:d0:63:1f:8e:50:6d:3d:cc:b2:4b:52:40:
81:df:d3:e3:4c:64:80:0c:0b:a8:8f:63:26:80:56:
fa:a6:7f:8f:cc:5d:76:05:75:81:78:31:b1:c7:ca:
48:dc:a9:bf:09:42:c1:3c:a9:fd:59:6f:22:a9:3e:
95:58:4a:1f:9c:ef:20:0c:25:77:79:98:47:dc:64:
08:72:53:7b:2b:1f:39:54:7e:e6:e6:c6:b6:27:ae:
f6:6b:dd:d5:8b:21:35:e6:71:0f:e8:b3:72:5d:93:
f6:94:4b:60:f5:91:60:9c:d9:c5:e2:ad:17:8e:dc:
18:f8:3a:aa:d8:cb:b6:d3:77:ec:1e:26:f6:46:b8:
ea:ce:57:4f:2d:cd:62:69:88:fd:90:0c:42:55:0b:
00:4f:33:e1:a1:49:2f:45:33:c6:e0:99:22:c6:62:
48:36:77:09:4b:36:66:ed:59:d8:e6:2d:60:9a:8a:
be:54:ec:78:51:1a:79:11:e4:86:06:35:38:1b:2c:
ae:41:d6:4c:ef:7e:78:34:4d:d4:47:87:0b:f1:44:
57:37:00:d2:1b:68:d7:92:5c:1b:51:a6:ef:77:46:
7a:ac:62:5f:7c:a9:29:63:95:b8:3d:1d:7f:66:fb:
87:9f:f5:18:0c:10:a5:6a:51:81:16:64:e0:6b:3d:
c3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E1:48:AB:7E:4A:0F:E1:29:42:FA:3A:FD:3B:BA:BF:95:B4:28:72
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.100.0/24
Signature Algorithm: sha256WithRSAEncryption
35:34:1d:84:28:6d:77:8a:7e:1e:df:90:b1:38:67:f0:ed:a3:
2b:f2:7a:1d:f9:a7:5e:ab:82:58:c2:0f:a1:58:71:39:e2:69:
af:2e:29:9e:c1:ee:84:5b:95:83:77:eb:0a:2f:61:e2:9c:3a:
dd:57:73:66:55:b8:88:a5:02:5c:f2:6d:e2:e2:43:23:87:3d:
95:33:28:fe:df:5c:39:4a:53:2f:7e:7e:62:a3:08:b3:24:09:
9b:2e:70:10:6b:d3:a9:83:ad:d0:de:7b:ac:77:21:1d:d1:ea:
e7:97:22:b0:20:80:df:af:2e:70:9d:0e:29:50:74:78:61:ca:
f9:1f:4c:0a:2b:f8:ee:99:42:f7:16:1d:36:75:19:6c:50:60:
64:cd:a6:db:24:df:14:98:2d:1f:ec:30:99:3b:2d:6d:3d:3f:
2a:fd:3e:cf:74:fe:77:6e:29:09:b6:36:3b:bf:5b:92:0c:e7:
e0:de:42:04:c6:3b:57:72:4c:81:a8:e0:86:b5:7b:c1:a3:24:
b8:b8:a7:46:ba:82:72:b7:3d:07:de:32:1d:75:26:ba:20:ed:
ea:4b:2e:2a:50:f4:d6:38:72:ba:49:fa:32:5d:7f:30:f6:3b:
14:26:30:32:74:4b:24:8b:ec:16:ef:52:35:e9:d5:94:d6:ae:
0e:3c:ac:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:57:36 2025 by rpki-client