Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/s3WWe-RSHaMD_iQeJ0f7PVCZYOs.roa
File: s3WWe-RSHaMD_iQeJ0f7PVCZYOs.roa (raw, json)
Hash identifier: +xFyj2WeFx8oZfN4lGqSwd4HinhnK78DpC/UyBYcy1k=
Subject key identifier: B3:75:96:7B:E4:52:1D:A3:03:FE:24:1E:27:47:FB:3D:50:99:60:EB
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 0141
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/s3WWe-RSHaMD_iQeJ0f7PVCZYOs.roa
Signing time: Tue 19 Nov 2024 08:19:37 +0000
ROA not before: Tue 19 Nov 2024 08:19:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152618
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Dec 2024 01:41:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321 (0x141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Nov 19 08:19:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B375967BE4521DA303FE241E2747FB3D509960EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:e4:b2:e9:c7:49:e5:5d:e1:62:45:57:a3:
67:21:a3:07:ae:99:b7:83:c6:43:20:2d:c3:4a:b4:
52:45:5c:39:62:1c:01:da:59:e6:e7:d9:14:10:26:
87:78:95:f4:8e:4f:92:58:ae:1d:de:16:66:ce:17:
f7:92:1d:26:e0:e8:3e:69:76:36:21:b7:38:2f:4a:
03:78:af:32:d5:af:40:29:29:0d:aa:42:39:17:a1:
0b:71:c6:c2:64:58:27:5a:94:70:72:dc:57:d8:a4:
70:18:2c:d0:e3:74:81:f2:a8:90:e4:8b:bc:b2:c0:
21:d4:08:24:5a:94:30:06:41:8a:3f:06:ba:ec:81:
6d:5a:2e:d1:3e:d9:ac:a7:fe:dd:ac:c2:86:3c:82:
f0:0b:95:1d:56:f7:b3:76:01:2d:99:b8:3c:12:2d:
ec:87:0b:fe:1a:68:48:b3:9b:2b:1d:45:6b:e1:67:
45:4a:7a:f3:a4:5b:a7:33:14:1e:bd:d6:13:c2:44:
7e:53:90:4e:b8:b6:b9:0e:96:ad:66:41:a0:c4:c0:
f5:89:36:8c:bf:e8:d3:31:6a:6a:3a:d0:b9:9e:f4:
8e:2d:9f:cf:5c:d1:9f:1e:b9:53:5e:77:44:f7:89:
b8:4c:83:6a:b0:e0:8b:23:f0:12:6d:e1:7e:18:9c:
0d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:75:96:7B:E4:52:1D:A3:03:FE:24:1E:27:47:FB:3D:50:99:60:EB
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/s3WWe-RSHaMD_iQeJ0f7PVCZYOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
53:71:d8:30:8d:6a:bd:15:96:28:65:5c:b6:d2:db:1c:84:50:
ca:69:ba:36:52:72:1e:bb:8a:0f:f1:07:70:12:1c:be:30:36:
4f:72:e3:8a:c5:d7:d1:e7:69:9f:a0:a2:01:df:2f:f1:95:9f:
97:7e:bb:bf:63:a9:cd:6e:53:bc:1c:26:81:ad:5d:13:ce:01:
8d:61:47:d6:95:34:d3:62:61:36:48:0f:cc:33:31:08:2b:bb:
8e:62:d4:71:65:b0:fc:5c:f1:f4:fd:8c:04:36:46:0a:2c:d8:
ae:6b:01:44:df:4c:b1:6e:43:69:bb:9d:84:be:0b:91:c8:49:
1b:a1:cf:d1:8d:fd:36:13:c8:db:37:f5:1d:f3:e3:7b:6d:b6:
d6:0e:28:a3:8b:e9:f9:f2:bc:10:ed:2f:39:38:b1:8a:86:97:
99:3b:fa:c8:89:b1:1c:8b:e1:74:5f:2d:5b:a2:8b:00:18:66:
ba:a7:33:b6:c5:18:55:e0:60:83:69:cf:9d:10:79:d1:18:09:
d1:3a:8b:c0:31:24:66:7a:d4:15:48:a8:68:23:af:af:21:40:
74:b6:2f:12:d6:dc:57:49:ae:d9:07:f0:84:3e:16:2f:7c:e9:
26:9a:60:6d:b9:3f:e2:35:37:a0:9c:35:d0:2e:5d:1c:ed:43:
19:a5:54:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:53 2025 by rpki-client