Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1Q5YAxY2Zf2SEHgHl85fHx3vLHU.roa
File: 1Q5YAxY2Zf2SEHgHl85fHx3vLHU.roa (raw, json)
Hash identifier: ceHeFMsOKZKKmZ9UQMdWOn4usrBl+6gC/HpMR+TOG64=
Subject key identifier: D5:0E:58:03:16:36:65:FD:92:10:78:07:97:CE:5F:1F:1D:EF:2C:75
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0FF3
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1Q5YAxY2Zf2SEHgHl85fHx3vLHU.roa
Signing time: Mon 26 Aug 2024 05:15:55 +0000
ROA not before: Mon 26 Aug 2024 05:15:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9674
IP address blocks: 210.241.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4083 (0xff3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:15:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D50E5803163665FD9210780797CE5F1F1DEF2C75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2c:27:56:1a:c0:2b:75:ca:02:08:57:7d:3d:
ac:5b:f3:6d:1b:37:57:a6:62:25:23:35:51:02:b2:
06:81:fa:70:75:58:79:c9:a6:3b:d7:af:50:46:b0:
27:32:90:55:d0:21:8a:53:fb:52:df:b4:3a:56:62:
6e:5f:fa:8f:02:22:73:3c:06:6c:a8:c8:ef:4f:f9:
e7:76:47:8b:1d:ce:40:9c:41:d2:81:ad:fb:e7:d2:
04:bc:ca:99:ce:ed:cc:75:07:eb:10:9d:31:d9:c9:
a1:e0:8d:6a:c9:c5:9f:f1:d1:b3:40:f5:c4:9e:be:
0d:3c:e2:e2:89:33:e6:5e:df:e0:bc:55:99:81:10:
a2:73:c8:17:fd:50:e3:ad:17:1e:96:29:99:f2:27:
d2:a5:ef:c0:ea:87:ef:68:c0:06:0d:06:18:c7:ad:
de:13:9b:5c:21:89:f7:9f:16:cb:16:ae:4a:35:3c:
7b:bb:8c:3c:3b:22:39:44:68:2b:0f:72:fc:55:c7:
9c:95:dd:07:16:11:06:3f:3d:27:f4:88:1c:50:f9:
63:ac:ba:80:dd:d2:a7:2c:13:35:db:bf:92:94:97:
ef:26:84:3d:f1:e5:27:0d:46:7b:12:ac:1c:ab:45:
eb:b0:60:b8:52:bd:73:6f:cf:b9:c9:57:ad:d7:f8:
50:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0E:58:03:16:36:65:FD:92:10:78:07:97:CE:5F:1F:1D:EF:2C:75
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1Q5YAxY2Zf2SEHgHl85fHx3vLHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.192.0/19
Signature Algorithm: sha256WithRSAEncryption
0a:13:c6:37:10:41:7f:8d:ee:1e:8c:a1:19:28:da:1e:e0:df:
cd:13:b4:42:a9:49:03:b1:4f:bf:7a:60:ae:33:bf:a5:71:d2:
72:c1:de:04:fb:75:29:54:6c:52:be:14:0e:79:a6:5c:89:a8:
ca:75:ad:61:17:f6:71:e2:00:fd:57:d3:0d:fd:f9:e5:99:ad:
de:23:5e:39:48:75:e0:1e:cd:2e:5a:dc:b3:43:e8:d2:83:33:
85:2d:37:9a:ad:a4:6f:1c:82:1f:12:61:9b:38:06:2f:f5:35:
38:17:e4:6a:36:0a:14:79:f7:9f:c2:66:73:8c:82:c1:0d:69:
51:c1:69:69:b4:72:59:9c:31:0d:60:84:9d:97:9b:d1:83:2a:
7d:2c:e4:7c:fd:ee:dc:7c:b3:dc:4f:5f:e6:27:e2:d3:3b:d6:
44:8a:4f:c3:86:a5:fa:8c:de:17:37:60:5a:72:61:f3:1b:d6:
8f:bd:ee:59:39:b2:04:d2:4f:97:a9:f0:43:01:0e:e9:bb:05:
1e:60:9c:af:8c:54:80:0d:6f:97:e7:11:ca:c9:8e:8f:b0:a1:
77:04:87:92:b3:13:33:ca:73:b0:10:9c:7b:3d:0b:33:55:07:
05:83:79:aa:9e:41:93:03:47:2a:92:17:13:b5:d9:ea:3d:f9:
23:4b:4e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:04 2025 by rpki-client