Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/9F9mLy8tUEzRTVWI62ooT5eTJAk.roa
File: 9F9mLy8tUEzRTVWI62ooT5eTJAk.roa (raw, json)
Hash identifier: TEoZOUC6KW1ee7OMOjjC28qxji9mTbRfItoVpXa81bA=
Subject key identifier: F4:5F:66:2F:2F:2D:50:4C:D1:4D:55:88:EB:6A:28:4F:97:93:24:09
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 103C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9F9mLy8tUEzRTVWI62ooT5eTJAk.roa
Signing time: Mon 26 Aug 2024 05:16:12 +0000
ROA not before: Mon 26 Aug 2024 05:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.201.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4156 (0x103c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F45F662F2F2D504CD14D5588EB6A284F97932409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:02:83:1b:b6:c6:f5:ce:58:e6:41:b4:bb:
f4:e7:29:34:88:8e:94:0f:d2:17:9e:62:f0:9a:17:
05:3c:4d:de:81:d8:4a:d1:a0:06:f2:a3:f2:bb:84:
4e:1b:de:13:f1:7e:47:23:d3:a5:bd:98:a4:d8:14:
ed:e6:eb:15:fe:2d:f3:2b:69:b7:e0:69:92:f4:87:
3b:60:2b:45:27:02:1d:28:06:0b:bc:5a:f6:a9:a5:
2c:37:d2:5c:50:28:ae:99:a2:03:a2:fa:c4:47:f7:
40:d0:08:8a:e5:f0:e5:dd:1b:cd:8d:33:13:36:25:
aa:99:48:96:a1:a8:7b:57:42:18:58:6b:96:89:0c:
fa:b2:b1:dc:92:24:b5:45:70:9a:1e:a7:7a:f7:20:
2f:06:9d:58:16:39:07:71:3a:8b:e9:f6:66:a3:df:
61:aa:a4:e8:ca:3c:0b:01:be:76:0a:62:0a:34:dc:
12:3d:4e:23:6c:52:00:50:e9:4f:82:84:24:02:78:
8b:69:3b:9f:51:35:5a:16:aa:29:2c:61:c9:dd:27:
df:a8:28:28:69:b6:03:22:26:d2:07:24:21:51:5a:
ee:98:65:b6:6e:1c:1e:41:5b:dd:1b:3d:ee:95:8f:
45:b0:aa:40:b0:54:47:f5:d0:cb:52:56:6d:d8:31:
2f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5F:66:2F:2F:2D:50:4C:D1:4D:55:88:EB:6A:28:4F:97:93:24:09
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9F9mLy8tUEzRTVWI62ooT5eTJAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:f5:2d:8e:25:8b:1e:c4:78:45:a2:6b:47:31:c7:2a:48:fd:
53:15:01:9b:2f:53:b6:9f:56:59:ab:88:33:8d:b2:1d:db:e4:
0d:21:26:c9:df:ed:c2:5c:fc:1b:4c:39:87:0e:2b:e5:85:06:
e4:15:36:1a:5a:75:90:88:8d:ee:ce:88:09:db:c7:45:29:9c:
54:f2:21:b9:b5:51:e7:7e:7d:4f:b5:bc:af:b9:fc:16:65:06:
4b:6d:35:fa:fd:07:ff:33:17:46:71:9a:17:50:18:1e:78:d5:
73:3f:1f:fe:57:46:65:e1:9b:6c:40:8a:6a:5f:b0:2f:6b:82:
f3:40:44:18:10:08:b8:28:70:a1:9f:8d:03:c5:a8:a8:c5:85:
dd:66:62:14:2b:c2:c7:fb:83:79:c7:48:74:bc:66:40:d2:69:
9d:c2:9e:ca:db:72:41:da:00:10:97:8b:8e:56:ca:e5:eb:e0:
14:96:e4:ce:e1:c8:78:ca:27:1d:4f:b9:66:5b:19:3d:5c:01:
69:90:de:fa:f9:e5:ba:91:cc:ad:54:a2:d0:06:6d:af:68:77:
0a:bf:1a:9e:ce:34:f3:33:5a:48:e3:07:e8:a4:fb:ae:f8:49:
cc:31:53:5b:00:08:f3:49:3b:13:e0:ed:98:12:31:0f:20:88:
c8:ed:7c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:06:20 2025 by rpki-client