Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8T9CVlKou49QFHZ9eFKeJDcuVRY.roa
File: 8T9CVlKou49QFHZ9eFKeJDcuVRY.roa (raw, json)
Hash identifier: /KN1H2imje6xgeS79Jn2zXgIXNPfVFgVOvOVv0dLoQI=
Subject key identifier: F1:3F:42:56:52:A8:BB:8F:50:14:76:7D:78:52:9E:24:37:2E:55:16
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0FE6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8T9CVlKou49QFHZ9eFKeJDcuVRY.roa
Signing time: Mon 26 Aug 2024 05:15:51 +0000
ROA not before: Mon 26 Aug 2024 05:15:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4070 (0xfe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:15:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F13F425652A8BB8F5014767D78529E24372E5516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a6:7f:30:a6:a7:cd:1e:69:fe:cb:ca:6f:e6:
0d:b7:e5:25:3d:ff:ac:c1:70:d2:37:6a:fe:2d:04:
99:69:60:b4:da:3c:3b:bc:b1:e8:87:d5:66:e6:94:
da:16:f1:fc:e5:f7:bf:c3:f2:1c:19:10:3b:b8:34:
72:26:2a:c6:a5:0f:fd:12:13:d0:65:31:5e:52:06:
c5:28:be:50:67:06:ff:82:c9:39:65:a2:11:79:94:
ca:48:f4:dc:1f:6c:08:56:ca:a8:6e:c0:39:a3:eb:
ca:9d:5c:2c:03:77:1c:4a:a1:69:c5:6a:f1:4b:76:
55:ac:3a:27:3d:a6:3e:1e:7c:5c:9c:24:a6:ea:f9:
e4:d0:5b:0c:b8:17:f4:72:aa:9d:ab:fa:56:e5:cd:
fb:e9:9d:e9:39:00:35:4b:d0:16:b4:88:ab:f2:fd:
8c:bc:f4:df:4e:0f:50:4c:65:1f:ea:39:59:3c:6a:
69:9c:c7:7b:9b:1c:e2:60:15:1d:aa:f4:1f:b1:0f:
9d:74:fd:0a:10:cd:0d:d0:0d:fc:61:6b:ba:d7:6c:
d4:fd:d3:22:45:d4:e8:c3:7a:4b:fe:eb:00:e0:4c:
31:b5:24:33:af:ce:1e:79:fa:0c:ad:95:20:5b:dc:
26:ef:c0:b6:29:a5:8d:49:b5:9b:6a:e0:64:18:4d:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3F:42:56:52:A8:BB:8F:50:14:76:7D:78:52:9E:24:37:2E:55:16
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8T9CVlKou49QFHZ9eFKeJDcuVRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
cd:5b:75:0f:d1:0e:35:59:c8:06:fe:bb:1a:0d:f5:6c:04:78:
d9:bc:81:25:d9:1e:1b:ad:dc:56:3e:ff:a3:e6:45:82:59:5c:
87:fa:2b:b7:fe:3b:2d:17:c7:d3:64:13:51:38:db:9f:4f:6f:
5e:fd:87:44:0a:d9:ed:77:24:87:51:f2:16:82:32:0b:ad:72:
11:56:93:c1:b1:91:e1:50:fc:09:2e:97:17:2f:2a:b3:0a:c0:
4d:27:28:d2:e4:d7:3e:f3:ce:a4:d6:94:10:bc:4a:5a:12:a0:
78:af:37:a3:2a:67:6e:81:83:ff:48:57:57:f2:ac:b1:f6:65:
b6:31:0d:e7:dd:40:34:2c:18:e5:7a:ef:04:61:b2:5a:0e:72:
eb:20:8e:d8:89:b9:da:7e:22:fa:82:98:4e:fc:b8:93:63:cc:
2e:a5:65:54:fe:ed:0d:69:a3:68:cb:95:15:4b:09:d9:61:58:
d1:8e:fa:36:24:4f:56:e6:b9:b6:47:c2:c1:74:d6:72:db:4b:
7a:9f:7c:bd:bd:ef:03:37:64:11:51:19:fe:68:d9:b9:29:92:
b3:d8:0e:a6:0e:38:74:68:b4:a9:e9:65:ae:2e:3b:78:6e:a1:
11:94:97:b5:5a:e0:2a:9c:10:85:19:2f:b6:62:29:95:b0:31:
cd:80:f5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:04 2025 by rpki-client