Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa
File: AFwMi2WtmuswbDhK_xfXYERr3zI.roa (raw, json)
Hash identifier: KC+xkDJZAoURBhM7AgoKm+35qIvvglEHxBZNTh5CVIE=
Subject key identifier: 00:5C:0C:8B:65:AD:9A:EB:30:6C:38:4A:FF:17:D7:60:44:6B:DF:32
Certificate issuer: /CN=7E9CEF27C8DED13506B3399D992ECFF626B57951
Certificate serial: 07
Authority key identifier: 7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa
Signing time: Tue 09 Jul 2024 10:09:50 +0000
ROA not before: Tue 09 Jul 2024 10:09:50 +0000
ROA not after: Wed 09 Jul 2025 08:49:00 +0000
asID: 208223
IP address blocks: 160.25.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E9CEF27C8DED13506B3399D992ECFF626B57951
Validity
Not Before: Jul 9 10:09:50 2024 GMT
Not After : Jul 9 08:49:00 2025 GMT
Subject: CN=005C0C8B65AD9AEB306C384AFF17D760446BDF32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:e1:79:33:12:b3:30:43:c9:82:21:16:dd:
6b:a4:ff:a7:b6:c5:89:80:49:b6:4f:e4:d5:22:6c:
49:f9:f6:fd:c5:44:f0:fb:9b:fd:ef:ce:ef:7f:81:
e5:06:5a:22:15:6b:fc:00:54:c2:02:c9:ed:ce:11:
16:94:a4:47:4f:17:8c:4c:39:1b:07:87:14:b8:a3:
5a:bc:03:25:a9:e7:d7:bd:43:85:e3:b6:7c:f0:11:
bd:2b:b5:b4:1b:ea:e6:4f:24:3e:f9:45:13:e5:00:
d4:f9:38:e0:c8:0d:b4:8e:51:7d:43:ab:b6:2a:04:
fd:44:bf:6d:6e:7a:50:9d:7e:53:71:96:d8:e1:78:
b5:45:ba:6f:4e:8c:3a:b5:91:36:86:06:07:e5:52:
bd:16:85:65:ae:ab:2b:c5:8d:7b:35:ae:1b:0f:f6:
1c:5e:7d:ee:19:d4:d6:0d:66:a5:a9:7c:c7:56:6f:
86:05:82:48:3c:1d:24:ef:2c:a5:fa:0f:9e:e2:b3:
6f:74:db:a6:2f:26:42:ad:1e:a2:60:97:f9:72:f6:
af:80:f1:10:21:92:1d:3b:03:e0:8b:ef:1b:25:37:
32:a2:cd:da:39:25:08:98:87:96:8b:66:9d:7a:f6:
d4:30:36:6c:95:56:ab:0a:02:52:10:07:af:18:7b:
5a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5C:0C:8B:65:AD:9A:EB:30:6C:38:4A:FF:17:D7:60:44:6B:DF:32
X509v3 Authority Key Identifier:
keyid:7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.104.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:1a:ba:d1:72:77:10:06:85:5a:1d:80:02:dd:38:1e:1f:cf:
76:7a:1c:85:57:9a:9c:9c:29:50:02:13:4d:b7:d2:40:77:43:
78:65:f2:a3:db:bc:e0:f7:2a:c5:8e:f2:fb:e8:46:4f:78:1c:
e7:b3:0e:52:f6:98:c1:64:a3:37:64:0b:31:4e:5e:46:36:d7:
e9:33:53:b0:90:3b:2c:e4:5e:7d:78:5a:82:46:74:66:3a:a1:
b9:9d:1c:f9:cb:fa:4f:4f:c8:8e:24:43:57:cf:d5:95:d8:a9:
e7:31:07:11:16:ce:70:26:5e:9e:3d:6d:dd:4a:74:20:69:b2:
69:67:da:98:8e:fc:1c:10:bd:57:22:6c:a3:9a:75:6d:6d:01:
40:32:01:4f:67:8f:d9:b6:3e:4f:dd:70:fc:9c:4e:26:9e:ce:
fe:02:fc:25:69:e6:63:be:58:89:df:ca:6c:5b:f4:be:dd:32:
a5:c4:35:63:04:e9:d0:1d:3e:ac:66:72:7d:5d:a7:59:51:03:
57:a5:5a:d6:34:4d:22:a8:58:02:a1:8e:a2:c9:d9:65:d8:e6:
12:af:4e:dd:95:29:81:5c:07:a2:32:a6:9b:ab:c8:23:53:76:
b4:a7:bc:44:0e:69:da:df:5a:7f:89:f3:8f:6f:d6:20:f9:99:
1c:90:54:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:21:11 2025 by rpki-client