Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/N3kE3xPdKVvR3bn5ILEbLW3CAZM.roa
File: N3kE3xPdKVvR3bn5ILEbLW3CAZM.roa (raw, json)
Hash identifier: K15g0+MEcvBkHeaC/Pg3yw773GKi5npg4GVthSGT1i4=
Subject key identifier: 37:79:04:DF:13:DD:29:5B:D1:DD:B9:F9:20:B1:1B:2D:6D:C2:01:93
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0FFE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N3kE3xPdKVvR3bn5ILEbLW3CAZM.roa
Signing time: Mon 26 Aug 2024 05:15:57 +0000
ROA not before: Mon 26 Aug 2024 05:15:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4094 (0xffe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:15:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=377904DF13DD295BD1DDB9F920B11B2D6DC20193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:04:e7:63:81:84:10:2c:15:2e:03:13:42:b5:
3d:e9:df:e4:c7:33:1a:88:15:a5:c2:32:3d:f2:0d:
3b:6a:51:23:cd:18:14:ff:f5:dd:77:c4:bb:3c:73:
40:e1:a1:10:ac:a8:6d:36:9e:c3:71:e4:29:64:11:
68:42:bd:97:55:96:46:7d:17:3c:6f:f2:9b:45:c2:
d5:77:f1:92:1d:bf:cc:dc:94:2a:b1:9f:fe:cf:54:
58:99:57:ba:7f:b1:eb:76:b4:3e:c6:b1:e3:ed:68:
57:79:fc:50:b2:41:40:48:ab:0d:40:ef:97:f3:b6:
2d:cf:83:70:6d:b1:40:a7:5d:05:0c:7e:23:28:bb:
71:7d:c6:3a:6e:21:18:42:4c:e6:63:c8:fd:61:3f:
17:c4:7d:d6:ad:a5:92:4d:3e:8b:f6:72:ce:04:5e:
a9:67:c1:38:e4:fb:eb:56:02:dd:8d:72:8c:9a:17:
82:2a:28:c9:9e:50:d7:6b:34:e4:91:d4:b3:cc:ca:
46:1d:46:1a:fd:3d:74:8f:0e:d1:08:d5:8e:2c:1b:
95:3f:9c:59:14:f4:77:79:3f:9d:a2:0b:b4:cb:e8:
12:88:54:15:dd:35:ec:af:8d:14:1f:6c:98:bc:5a:
66:e5:73:2a:0c:c0:8c:40:7e:d9:b5:c9:75:63:6e:
06:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:79:04:DF:13:DD:29:5B:D1:DD:B9:F9:20:B1:1B:2D:6D:C2:01:93
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N3kE3xPdKVvR3bn5ILEbLW3CAZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ba:8b:be:42:cc:c7:e5:3d:81:fa:ae:5b:2c:52:5b:07:b6:7f:
85:f9:bb:61:08:48:dd:fb:bc:a7:cc:ee:1f:eb:60:24:b2:71:
36:50:ab:11:b2:94:ce:b7:02:3d:ee:14:07:25:60:77:ef:3d:
2f:67:4c:42:be:8a:31:6b:a9:52:16:b7:68:7b:02:7f:81:68:
ba:22:3b:6d:ad:77:e1:a3:d2:1e:01:37:48:c6:6f:75:4d:7e:
87:68:17:57:91:96:cd:f7:8d:c2:27:fd:04:fc:b2:56:62:a6:
b9:1b:d1:72:62:0e:60:bf:3d:98:8f:b8:11:f6:7f:46:b3:cb:
e3:69:0c:d5:cc:db:27:fe:ec:8c:39:bf:db:3d:14:5d:ae:85:
21:5f:ec:4d:0d:b5:18:01:ec:fd:0a:d6:12:5b:ab:ff:32:d1:
0c:35:f8:90:88:05:cf:ea:9c:53:61:33:c9:8e:36:f0:ac:61:
a7:da:22:89:77:fa:e7:c7:c7:c4:64:41:59:56:1b:fb:be:22:
15:aa:66:37:87:05:23:c8:c1:b9:71:14:57:a4:f4:ed:ff:5d:
01:09:e5:5c:67:83:ae:fc:2b:72:ad:38:64:db:9b:66:5f:38:
bb:cb:38:52:9f:cb:63:95:7c:03:a4:91:5e:a5:09:a0:35:44:
aa:3b:77:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:26 2025 by rpki-client