Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/IWYpr_ekQBWeGw_FNX3LMbY2ZZ0.roa
File: IWYpr_ekQBWeGw_FNX3LMbY2ZZ0.roa (raw, json)
Hash identifier: s5fPXdEVlRo7+BdQQl/oKzxkZNhwuSAdNqLBVytrBzM=
Subject key identifier: 21:66:29:AF:F7:A4:40:15:9E:1B:0F:C5:35:7D:CB:31:B6:36:65:9D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1044
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/IWYpr_ekQBWeGw_FNX3LMbY2ZZ0.roa
Signing time: Mon 26 Aug 2024 05:16:14 +0000
ROA not before: Mon 26 Aug 2024 05:16:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 210.201.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4164 (0x1044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=216629AFF7A440159E1B0FC5357DCB31B636659D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:89:73:8d:74:89:77:f5:a8:f2:70:50:2d:af:
7c:ed:54:f6:eb:49:d5:59:34:a5:e9:7c:60:70:ee:
0d:01:32:5a:84:09:a9:34:c3:79:4c:57:38:91:e3:
9f:bb:3f:1f:f8:af:99:7f:b9:8b:4c:64:82:31:2e:
fe:7c:78:fa:76:f9:2f:95:67:f5:53:4f:1a:9d:ac:
a9:cd:84:0c:8b:4d:f4:2d:e8:f8:3b:a3:10:83:d2:
a4:e5:76:e1:5f:00:c3:22:a3:ad:b2:be:d6:4f:06:
29:62:2c:e7:d2:4e:0a:9d:d1:38:a7:8d:1a:e2:c5:
fa:29:44:17:54:e9:1d:0c:26:6e:c8:40:f8:0e:12:
44:57:e0:fa:61:44:cd:a3:1a:b9:43:bf:b9:52:8c:
0a:86:d1:9a:66:d0:11:36:a5:dd:16:f2:e0:27:e3:
65:89:ca:11:04:5f:ec:cd:69:46:e0:08:e4:c2:d9:
df:72:7d:5c:54:8a:b7:c3:f0:75:7d:57:1e:d4:6c:
08:2f:63:85:b8:4e:1c:30:d2:32:14:29:79:b5:34:
a1:d2:ec:1f:d5:19:2d:3b:99:cf:69:fb:36:ce:a3:
6a:ab:57:3a:69:eb:65:00:67:83:46:ab:fc:dc:1e:
48:64:f6:56:b5:2c:ca:90:0f:fa:00:70:d5:82:58:
bf:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:66:29:AF:F7:A4:40:15:9E:1B:0F:C5:35:7D:CB:31:B6:36:65:9D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/IWYpr_ekQBWeGw_FNX3LMbY2ZZ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:62:67:04:b0:b0:36:1b:d4:e0:ee:1e:97:c3:7c:23:5f:0c:
14:b7:f0:ee:3f:be:2c:4e:33:bb:aa:cb:0f:77:95:95:c7:bf:
21:5d:1e:57:df:cb:63:c2:62:4b:d3:76:49:25:79:39:39:2e:
cc:0e:ea:13:eb:2f:84:b3:8d:1f:68:e8:53:d3:90:ce:99:bd:
f3:5e:75:f5:c3:20:62:4b:91:28:89:b3:ba:a9:9e:64:3d:a9:
59:b8:71:9b:57:df:9e:8c:4b:12:0d:b4:7d:fd:8c:24:b9:f6:
b0:2f:8b:6f:2f:ee:44:40:de:dd:7a:73:31:96:38:08:22:fe:
12:e8:80:fc:55:37:3e:3a:8e:bf:3b:4b:d6:bc:68:0b:b8:cb:
68:c6:2e:7a:de:69:8c:e9:59:7a:ed:00:c8:f8:7f:63:a8:6d:
c7:b0:2c:a3:e5:10:bc:aa:6b:b1:85:dc:08:68:3b:f5:49:ad:
3f:05:4f:bf:ef:1d:4e:b9:04:ab:c1:a7:e0:93:c1:b2:9a:55:
47:1e:20:35:3e:99:19:74:50:f0:78:51:7d:4f:fd:70:1b:c3:
d9:be:0f:87:30:66:43:19:3e:28:67:84:67:87:26:e0:19:e5:
b6:a3:3c:12:5f:01:23:19:f1:b3:90:f8:b1:5e:bf:00:d8:cc:
fb:e3:c6:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:48 2025 by rpki-client