Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OwccpjkH6eNXSqyoFwp80cfsqlQ.roa
File: OwccpjkH6eNXSqyoFwp80cfsqlQ.roa (raw, json)
Hash identifier: FszNGvc4Ob4Tb3x4a+DcHU7+tfUWYdQbs14tqC78Hh8=
Subject key identifier: 3B:07:1C:A6:39:07:E9:E3:57:4A:AC:A8:17:0A:7C:D1:C7:EC:AA:54
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10AC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OwccpjkH6eNXSqyoFwp80cfsqlQ.roa
Signing time: Mon 26 Aug 2024 05:16:40 +0000
ROA not before: Mon 26 Aug 2024 05:16:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4268 (0x10ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3B071CA63907E9E3574AACA8170A7CD1C7ECAA54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2f:cb:b3:d9:ae:b7:0a:2b:04:90:4a:7f:6e:
07:cd:0b:98:5f:08:ed:bd:23:db:fa:10:2e:01:7d:
d9:aa:01:50:2c:c2:c5:35:dd:8f:df:bf:ec:0a:9a:
eb:f5:7c:75:af:b7:8d:f9:e0:c4:b6:32:b8:99:16:
cb:28:16:35:eb:db:b4:3c:3c:17:21:79:31:c5:70:
94:ae:9f:e9:04:86:8d:58:a5:1f:3f:51:6f:26:24:
27:5d:d6:8e:a1:b0:bc:de:4c:7f:4c:80:75:25:fe:
9b:99:57:d5:1a:3b:0e:f1:e1:e0:13:7a:f5:c3:3a:
e6:47:41:12:08:d5:10:5c:ea:1a:dd:3f:17:bb:7a:
a4:b3:ad:49:93:31:a6:19:68:84:fb:e3:03:b1:d4:
a4:9d:94:ad:86:01:3d:d2:8d:cd:d7:59:83:e9:ec:
b6:e0:20:10:14:65:25:62:dd:3c:c6:48:bb:c1:75:
8e:34:eb:45:72:39:dc:9e:dd:4d:f2:32:02:72:f1:
42:a2:4c:49:f5:b5:c6:ed:97:08:cd:04:45:5c:8a:
88:ec:9a:49:6f:ab:08:be:8f:5e:06:e0:6a:f2:65:
04:30:51:dd:0f:25:ab:c8:eb:99:ef:f4:90:94:89:
26:be:25:8c:36:8c:3a:de:62:13:ed:8d:80:22:ba:
4b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:07:1C:A6:39:07:E9:E3:57:4A:AC:A8:17:0A:7C:D1:C7:EC:AA:54
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OwccpjkH6eNXSqyoFwp80cfsqlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9e:54:14:80:06:da:21:d3:20:73:74:92:19:96:31:25:f8:7a:
b4:91:4d:e4:59:c9:13:c0:c1:f0:fe:8d:42:5a:8e:d1:33:be:
6d:d5:b0:b9:c9:fb:d3:f7:71:39:f6:2a:95:9d:ff:42:dd:6a:
c3:4a:2e:69:48:01:34:6b:76:78:1b:9c:f4:a2:e2:7f:dd:37:
af:36:e5:54:ca:cd:2d:e6:fe:73:78:4c:6e:56:5e:6f:98:91:
45:d0:51:a9:0d:48:f3:46:32:29:dd:7b:f6:33:25:80:dc:d6:
fb:20:76:22:0b:b8:e9:1c:78:7c:1a:d1:73:bc:cc:5e:d8:ac:
65:a7:b6:2b:f4:51:6f:57:09:e1:cb:24:e3:e1:fa:d1:7e:d9:
d5:65:d9:c9:b8:d0:cf:c7:9a:bb:99:f3:c0:5b:ab:ca:21:3b:
19:87:04:b3:4e:14:86:83:9e:53:02:07:cf:55:f0:78:70:ad:
27:9a:94:ab:44:c3:6a:a8:ad:42:cd:1b:3b:69:8e:ee:ee:b1:
98:df:53:9e:d2:4a:43:aa:54:48:44:11:6d:f5:b1:d1:7d:62:
5a:c1:6b:e4:6c:c6:95:4e:8b:13:9d:cd:75:ba:fc:51:7a:37:
8f:19:83:b4:1c:3f:c0:25:68:b1:c8:f9:d7:93:ef:bd:7d:b1:
1e:64:28:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:25 2025 by rpki-client