Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Hv6v-L-nap5y7_RUNPhiEIktGk4.roa
File: Hv6v-L-nap5y7_RUNPhiEIktGk4.roa (raw, json)
Hash identifier: n/qKW/kE+rlWGvrKKb7Q8OsMnmeEg+a/PBw2Z/GuGv8=
Subject key identifier: 1E:FE:AF:F8:BF:A7:6A:9E:72:EF:F4:54:34:F8:62:10:89:2D:1A:4E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1016
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Hv6v-L-nap5y7_RUNPhiEIktGk4.roa
Signing time: Mon 26 Aug 2024 05:16:03 +0000
ROA not before: Mon 26 Aug 2024 05:16:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 60.244.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4118 (0x1016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1EFEAFF8BFA76A9E72EFF45434F86210892D1A4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9f:02:9e:63:83:ff:d9:4a:7c:5c:df:2b:b2:
f6:f4:ad:0e:64:a6:21:17:4c:f7:67:2c:04:79:7a:
86:f2:48:90:81:56:19:7e:d5:14:77:01:32:9d:5f:
4a:c2:32:cd:e3:fd:a6:4d:36:19:40:c0:ba:15:21:
16:ff:30:c5:14:a7:c1:1c:44:84:06:50:b9:d7:75:
b9:e7:25:ef:cb:24:90:22:21:1a:cd:b5:15:6b:d8:
42:7a:a8:ed:d3:e9:87:18:2b:c4:07:b4:70:28:ea:
83:d4:14:31:ed:47:75:7a:db:dc:bc:22:3b:43:96:
0e:f8:f5:1e:81:b2:b1:0a:73:92:57:4a:9f:fe:64:
c2:28:b9:5c:af:ec:fb:02:1d:27:6d:0a:d5:94:9e:
81:77:cc:26:3b:ee:58:df:eb:23:99:e2:75:5f:18:
f3:0e:4c:ff:b6:37:1a:87:1e:13:97:6d:ae:e3:5e:
73:09:00:0d:07:0e:e0:65:37:60:04:fe:2f:11:ce:
57:62:7e:78:43:ee:22:1f:45:bd:07:96:e6:0e:a1:
dc:64:ea:f4:78:ad:87:67:94:df:1b:72:d2:50:11:
46:10:bb:d3:52:cb:27:57:b2:ff:75:3c:73:53:81:
07:b0:0c:40:d2:a9:2c:50:b7:a6:a1:6c:dc:de:d9:
de:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FE:AF:F8:BF:A7:6A:9E:72:EF:F4:54:34:F8:62:10:89:2D:1A:4E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Hv6v-L-nap5y7_RUNPhiEIktGk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/18
Signature Algorithm: sha256WithRSAEncryption
87:68:2e:47:f0:8d:8e:8e:b0:80:47:84:a7:ca:31:05:66:4e:
68:18:43:40:8e:9d:f0:10:de:4a:c5:40:cc:d1:2b:b7:2f:3b:
8a:06:97:f2:16:82:b7:26:23:a7:ad:f3:99:57:d5:34:e3:7c:
93:7d:24:41:0d:43:fb:24:c8:ed:63:53:c9:a7:ae:d2:d0:b4:
48:c1:61:fc:69:0e:57:c1:97:41:bf:19:22:f6:0a:10:c9:1b:
56:93:c3:f2:01:3f:c5:82:a5:4d:9a:9c:3d:e9:ca:00:03:3f:
bb:a5:02:ee:5f:a5:b3:c7:4a:36:37:f7:12:a1:8a:61:76:b4:
82:b9:c2:c0:90:ff:bd:8b:43:6d:b7:98:54:2b:c0:ae:02:e8:
7b:90:56:fa:a2:1c:60:b8:3a:7b:ea:e9:3b:e8:cb:7c:d1:79:
a8:c7:78:1f:de:94:7f:36:52:85:fa:49:6e:3b:c8:95:7a:71:
d8:81:99:09:91:49:02:e1:2a:8a:04:f7:3a:e2:86:08:9d:45:
93:22:dd:e7:ff:52:3d:73:eb:c8:4e:fe:fb:9b:d0:98:7d:a7:
0f:32:7d:e5:be:8f:62:33:48:67:2e:cd:65:f1:11:9b:d3:73:
41:71:1a:44:ed:32:e5:78:cc:80:cd:25:7e:19:5c:55:6d:6f:
d9:d7:c7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:41 2025 by rpki-client