Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZC9BrkJnEFibMERsq_VASd1pPKE.roa
File: ZC9BrkJnEFibMERsq_VASd1pPKE.roa (raw, json)
Hash identifier: 2j0oUp4lfZpjkbS3ZNRzHUcTeeVDJGLjMZ61MmCPK1Q=
Subject key identifier: 64:2F:41:AE:42:67:10:58:9B:30:44:6C:AB:F5:40:49:DD:69:3C:A1
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0CF1
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZC9BrkJnEFibMERsq_VASd1pPKE.roa
Signing time: Mon 26 Aug 2024 05:12:52 +0000
ROA not before: Mon 26 Aug 2024 05:12:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9584
IP address blocks: 113.21.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3313 (0xcf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Aug 26 05:12:52 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=642F41AE426710589B30446CABF54049DD693CA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:31:d8:af:f9:e5:29:33:02:04:a4:03:a2:
df:04:31:53:2a:86:9c:86:60:88:9e:d8:bf:ce:77:
91:4e:0b:e1:e0:8a:a4:05:3d:3e:aa:25:a0:92:47:
4f:11:89:b2:f0:e9:1a:b9:73:c6:2d:f4:d0:5d:70:
90:32:30:71:7c:82:1d:ba:d7:95:80:e2:cf:cb:76:
ec:9c:e7:f4:c8:34:cb:71:87:b4:3e:d5:ba:13:7f:
9a:54:e4:69:e2:fa:a4:93:9d:85:cd:e4:b5:2e:da:
09:e5:08:75:8f:3f:35:a4:60:92:2b:cf:c3:05:61:
b5:35:d9:46:3c:74:c0:31:d1:40:cb:01:c2:42:f8:
9c:66:70:ff:68:8b:10:16:ab:e1:2f:bd:3f:a0:77:
04:fc:f6:3e:18:3a:15:f8:fc:70:f6:bb:61:c5:92:
82:d6:fb:9c:3e:2c:30:c1:f8:df:ea:c8:55:cb:73:
48:99:d9:48:13:31:5d:df:6d:6d:37:a0:52:a1:12:
ab:7b:51:ca:08:40:f7:bd:5a:b6:73:cf:b5:6f:a0:
26:ac:71:39:72:11:b0:02:60:78:9b:65:79:09:9f:
9d:d5:8d:0b:7a:d0:82:fe:36:d8:0d:21:be:aa:06:
11:65:10:5f:15:52:77:c5:88:50:b9:7f:de:fd:57:
90:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2F:41:AE:42:67:10:58:9B:30:44:6C:AB:F5:40:49:DD:69:3C:A1
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZC9BrkJnEFibMERsq_VASd1pPKE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.184.0/22
Signature Algorithm: sha256WithRSAEncryption
60:61:09:a4:12:69:5b:13:f9:8b:a6:c4:59:c3:ff:e2:0c:9d:
7b:83:0b:2f:e0:48:5b:64:96:09:de:7d:82:c0:3a:02:5d:76:
a4:a4:1c:2c:bd:c4:fe:a5:71:ee:47:d3:16:51:c6:ba:73:ff:
f6:a1:81:4e:74:b3:cf:b3:1b:d2:1e:93:e0:2f:72:f9:2f:42:
4c:b3:6f:08:fb:f3:87:a4:48:3f:0f:59:ba:81:7e:92:c1:c1:
cc:e2:2c:53:2e:35:cf:24:f0:3e:5b:d3:ad:54:9f:34:d7:3e:
6a:fb:da:3a:86:9c:25:19:63:56:9d:00:75:9a:99:90:ac:ad:
c1:63:d5:6a:c4:84:4e:20:30:d4:ce:29:15:7e:90:44:45:a9:
d8:4f:0a:20:86:68:2d:12:09:b0:4f:48:6b:a1:66:12:a0:17:
ed:df:2c:6b:5c:cd:f3:87:6e:03:6f:36:36:00:f5:71:57:a4:
5b:6e:32:88:ab:de:fb:e6:c4:ce:aa:17:dd:69:65:e9:e5:dc:
83:b0:e2:a5:41:c8:cb:06:2b:16:d8:d9:76:c6:07:df:93:da:
b8:9c:57:8f:3d:9e:41:74:4e:1e:07:74:97:77:ad:05:84:56:
4b:dd:05:e2:0a:7a:ca:76:83:04:ce:0f:dc:35:47:15:6d:93:
1a:c6:6d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:43 2025 by rpki-client