Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/GLwNlzvM0DK7h85Jv0PZnswxZ2s.roa
File: GLwNlzvM0DK7h85Jv0PZnswxZ2s.roa (raw, json)
Hash identifier: Nz8pjnaBT0es2tuYRK2/Dbj/VPWDpKnyLAB57t/Ilho=
Subject key identifier: 18:BC:0D:97:3B:CC:D0:32:BB:87:CE:49:BF:43:D9:9E:CC:31:67:6B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0FCA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GLwNlzvM0DK7h85Jv0PZnswxZ2s.roa
Signing time: Mon 26 Aug 2024 05:15:45 +0000
ROA not before: Mon 26 Aug 2024 05:15:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 218.35.8.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4042 (0xfca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:15:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=18BC0D973BCCD032BB87CE49BF43D99ECC31676B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:8e:1a:4d:09:60:94:0f:f7:46:aa:80:0f:
5e:b4:98:2c:28:49:6d:46:04:5a:85:c2:63:a0:9f:
69:d9:93:03:73:eb:a0:3d:3e:dc:98:96:e8:ab:09:
90:7d:14:88:a1:2c:b6:ee:64:6d:82:45:32:c1:0e:
c7:73:77:dc:c0:b0:67:32:07:b8:6e:b6:3b:3f:ea:
d6:05:b4:1d:26:2f:1d:8d:95:81:dc:a3:06:84:0f:
39:cb:97:c9:02:a7:7a:11:59:ae:1f:30:89:80:ba:
79:b0:60:66:2d:43:02:52:62:56:48:9a:8a:e0:f4:
71:25:70:f4:ff:9e:dd:5c:a6:d9:d1:31:f3:99:f2:
46:4e:1d:57:1d:b2:42:11:c9:34:dc:e4:2e:f0:8b:
57:70:ae:25:7c:79:bd:20:88:b0:66:a7:0d:b7:12:
4e:86:5d:20:84:65:bc:d1:2d:88:46:8f:1e:a7:43:
8e:af:07:89:8a:2e:44:55:35:0a:55:07:ad:c3:76:
cb:0a:58:88:e7:f7:92:9f:08:e8:33:c5:67:92:e9:
98:4a:f6:a8:ac:67:24:d9:82:96:58:cd:05:24:c0:
dc:85:78:8d:ac:d0:fa:3a:09:3a:1b:fc:5a:4d:ab:
33:b2:ab:d2:8f:eb:c2:a5:6d:34:dd:dd:5c:f0:54:
6f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BC:0D:97:3B:CC:D0:32:BB:87:CE:49:BF:43:D9:9E:CC:31:67:6B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GLwNlzvM0DK7h85Jv0PZnswxZ2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.8.0/21
Signature Algorithm: sha256WithRSAEncryption
10:50:a7:b9:6a:72:29:e8:95:39:35:6e:8c:a9:d0:e9:4a:dd:
8a:f9:38:ba:d5:c0:8f:5d:ed:38:af:f0:3e:29:d8:b5:29:45:
aa:fc:5d:dc:a8:1c:99:9d:0a:86:8a:1c:19:1e:71:f0:51:4a:
ae:ab:f1:f5:c1:c0:5a:ea:d8:d5:be:74:8d:6a:e8:2e:e1:9d:
c1:98:46:5f:a7:3e:00:48:9b:ef:46:10:f5:ff:85:db:46:21:
b9:bb:cf:2a:ae:03:30:81:c6:78:28:72:ce:3c:d5:85:98:0d:
43:7b:16:17:ca:87:77:69:e5:2b:9a:1f:ee:40:b2:d2:b6:84:
dd:00:e8:b9:c6:ec:ba:86:15:77:82:cc:85:b3:3e:89:33:ba:
e7:3a:ed:be:9d:1a:e1:c4:9b:22:52:96:f6:9c:15:5a:17:14:
aa:49:d8:57:f3:26:60:2e:38:0f:a0:27:66:11:c0:84:bc:12:
f6:f6:a7:45:72:3b:45:54:b5:49:2e:98:c5:c4:32:21:16:5d:
e1:0f:cf:d0:05:1f:aa:9a:f0:39:f3:a5:75:ae:91:c8:c2:be:
10:7b:ec:1a:b8:25:9e:91:92:9a:30:62:bf:85:bb:8b:3d:d8:
b3:ed:21:99:b6:dc:85:91:22:ef:63:b2:83:80:ef:82:af:c9:
8f:e0:3b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:27 2025 by rpki-client