Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/V8EtSwIZHmP888NWd4CgW1AL7rc.roa
File: V8EtSwIZHmP888NWd4CgW1AL7rc.roa (raw, json)
Hash identifier: e0IwolAjlhaGJ6MrYZvNv0/e6+zBfMTkJhcq2/915Bo=
Subject key identifier: 57:C1:2D:4B:02:19:1E:63:FC:F3:C3:56:77:80:A0:5B:50:0B:EE:B7
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10B3
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/V8EtSwIZHmP888NWd4CgW1AL7rc.roa
Signing time: Mon 26 Aug 2024 05:16:42 +0000
ROA not before: Mon 26 Aug 2024 05:16:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4275 (0x10b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:42 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=57C12D4B02191E63FCF3C3567780A05B500BEEB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:bf:b7:b9:7d:d4:cc:98:a9:3b:7f:37:43:
e3:6b:22:f7:11:c9:10:c3:07:7a:73:78:10:80:90:
8b:b6:6b:8c:6b:4f:ef:27:e6:f2:10:82:f7:53:6c:
23:f7:7c:ef:81:7d:9c:ca:dd:a9:fd:0b:f4:50:ee:
27:2d:55:2b:46:63:c0:1e:9c:05:e9:03:77:23:1a:
7c:03:17:f8:49:33:36:f5:06:38:74:55:04:23:18:
88:de:1e:47:de:86:60:b2:f1:65:7e:34:4d:d6:bf:
0a:56:31:91:40:fa:45:f9:88:0f:a8:38:39:96:8d:
a8:fc:cd:78:36:00:de:d5:c2:78:0c:50:02:5c:b8:
3d:2f:24:fe:18:f9:e4:84:36:e9:41:c2:a4:d4:91:
d5:29:5d:4c:13:3f:5b:96:76:44:8e:ed:bc:31:5a:
d0:6a:2c:6d:c0:d3:64:4b:19:58:e5:dd:6a:04:32:
a4:18:b2:c4:b7:28:e1:cd:57:69:23:97:dd:7b:3d:
15:f2:09:73:86:c0:3c:4c:72:73:f3:cc:58:b2:9c:
b5:9c:d9:39:40:b7:f0:f5:a8:e8:7f:89:ee:8e:b1:
86:81:29:23:bb:88:cf:1c:48:e3:1b:b1:ec:61:de:
6a:d3:bd:16:89:7c:e4:08:63:06:b3:a0:54:0d:f5:
68:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C1:2D:4B:02:19:1E:63:FC:F3:C3:56:77:80:A0:5B:50:0B:EE:B7
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/V8EtSwIZHmP888NWd4CgW1AL7rc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ba:62:52:20:86:92:1e:e0:cc:8f:76:7a:f7:ba:70:96:39:d1:
2c:6f:79:c8:07:2f:7f:ca:c3:4d:e3:2b:7c:43:99:ad:25:10:
52:d5:cf:3a:6b:8f:18:8a:d3:3e:dd:89:1c:6d:e0:25:01:b1:
77:45:5b:12:56:49:39:a6:cc:60:a2:b3:88:13:f1:bf:db:b0:
80:3a:0f:e0:4b:e8:dd:27:e5:f7:e3:c9:7f:a0:c3:eb:fd:e2:
19:64:cf:1e:8b:82:37:3f:f1:97:6d:2f:f0:e1:66:a1:7d:7b:
04:ee:e8:d9:a9:64:cb:de:1b:a0:66:38:2e:ac:94:34:cb:24:
c3:6f:b6:bd:d6:d6:e9:a3:7c:a3:b3:e4:9d:99:4e:b6:2a:b5:
26:b5:9b:88:b6:e9:28:b8:0d:c2:cb:59:87:10:fc:75:51:f2:
a6:96:6f:69:6f:b3:f7:e8:9b:32:4f:43:46:06:70:f0:4e:60:
dd:65:c1:bc:58:97:fa:5b:ac:c5:be:9c:27:c1:e1:57:03:20:
33:83:ed:d4:00:6f:47:92:8e:6c:a7:70:fb:a7:f1:d6:d1:a1:
24:94:a9:4a:1e:65:51:53:e3:23:42:a3:20:37:b4:39:f2:8c:
28:d6:f8:94:18:66:14:6a:e5:ed:f8:c1:c9:45:b8:1b:7a:a3:
e5:de:d1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:04 2025 by rpki-client