Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/6w1Rkg4SFpI3OXRDi36v7g6v2zA.roa
File: 6w1Rkg4SFpI3OXRDi36v7g6v2zA.roa (raw, json)
Hash identifier: iY5ecgisrDNGLNByO8LMajmde7tUeUitxRBVLqZRfdc=
Subject key identifier: EB:0D:51:92:0E:12:16:92:37:39:74:43:8B:7E:AF:EE:0E:AF:DB:30
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 104E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6w1Rkg4SFpI3OXRDi36v7g6v2zA.roa
Signing time: Mon 26 Aug 2024 05:16:17 +0000
ROA not before: Mon 26 Aug 2024 05:16:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.58.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4174 (0x104e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EB0D51920E121692373974438B7EAFEE0EAFDB30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7e:98:42:3d:2e:bf:c2:34:b7:af:09:d8:a9:
60:c6:cb:3e:c8:4c:a2:47:56:84:fa:c9:82:ba:b8:
50:84:20:fe:70:3f:80:75:74:52:02:c8:7e:8a:78:
96:13:d8:a8:68:2c:46:c0:f6:18:e4:58:ad:5e:90:
26:1d:d6:88:30:0c:1e:41:1a:11:ed:e0:4f:2c:32:
8d:23:8a:30:ee:4f:2c:26:17:04:2a:2c:3a:c7:fe:
0c:16:d7:de:51:e6:69:67:ed:06:d8:8c:25:9d:8e:
d9:22:33:07:17:d6:3d:91:3b:b5:d7:86:fa:54:f9:
e4:c1:0f:f5:9a:d0:20:fe:ab:ed:d3:f4:5c:cb:9b:
b8:e5:6a:e3:fc:74:4e:ce:1a:8e:48:55:80:e7:af:
5c:02:af:46:b7:a7:08:9e:d4:f1:8d:67:ef:af:2f:
6a:05:6a:97:01:0c:d8:3b:31:76:85:d9:83:4d:08:
b1:55:52:54:88:a7:e3:62:4e:e2:56:a0:81:29:f5:
7d:4c:69:e9:b8:38:9d:39:ec:84:37:a1:3a:4d:fc:
cf:b8:ad:ff:d3:31:6a:c7:6f:79:f5:1a:7a:a6:fe:
7e:79:c2:1c:d6:1e:cf:53:53:4f:28:91:17:41:e3:
71:ee:0e:29:21:8d:78:ac:25:75:35:8b:a6:d4:06:
84:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0D:51:92:0E:12:16:92:37:39:74:43:8B:7E:AF:EE:0E:AF:DB:30
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6w1Rkg4SFpI3OXRDi36v7g6v2zA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.112.0/20
Signature Algorithm: sha256WithRSAEncryption
05:00:ab:22:d7:a9:77:b2:d7:95:97:5b:e3:5a:3d:df:48:61:
bb:dd:8b:24:1e:ec:8d:2b:84:90:56:f9:af:8d:51:7f:25:5c:
09:fc:f9:9c:fa:86:14:19:5b:ee:c5:52:6f:27:e6:f7:27:ab:
85:0d:3c:c9:1b:18:84:ff:bd:6b:c5:60:ee:bc:d0:a9:38:4e:
f2:1b:b2:13:f4:d0:b2:d1:23:0c:5d:1d:3c:09:b2:b9:89:b8:
7b:a8:9e:53:53:9a:35:12:b3:4d:ca:02:39:bb:93:89:b2:a3:
5d:ce:e4:54:d2:9f:ad:b1:70:95:6a:58:67:38:a1:5a:6f:dd:
af:ad:d4:a3:b3:54:ba:3c:82:c3:ae:13:00:e9:bb:2c:ba:99:
ea:be:63:c5:b7:f3:c3:9b:85:41:8f:07:26:3b:03:8f:5b:e5:
a6:2b:51:48:7c:08:ed:07:d6:41:27:59:88:f7:5e:23:ca:1d:
ea:5f:15:3a:c9:c1:35:e4:4a:4a:d3:73:27:10:e7:30:75:35:
26:1f:25:9d:ba:2b:e4:77:a0:41:ae:b7:df:21:74:3f:96:e7:
50:4f:fd:3f:7b:70:8f:ff:29:6c:3f:f8:a7:72:bb:0d:f2:84:
15:88:d6:f4:76:19:ee:00:c9:6e:08:5e:bc:8f:77:46:50:3e:
e3:a2:f4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:27 2025 by rpki-client