Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Xcw5BuP8JmHvjIokN2rO9-p2Pg8.roa
File: Xcw5BuP8JmHvjIokN2rO9-p2Pg8.roa (raw, json)
Hash identifier: n4cEYC+EgYP1TIWi2r6Cl+DgstoVElY3gx9Z65uFVeQ=
Subject key identifier: 5D:CC:39:06:E3:FC:26:61:EF:8C:8A:24:37:6A:CE:F7:EA:76:3E:0F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 104A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Xcw5BuP8JmHvjIokN2rO9-p2Pg8.roa
Signing time: Mon 26 Aug 2024 05:16:16 +0000
ROA not before: Mon 26 Aug 2024 05:16:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.58.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4170 (0x104a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DCC3906E3FC2661EF8C8A24376ACEF7EA763E0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:72:78:2e:a2:92:99:d1:19:b5:46:60:69:
7e:30:32:13:19:0a:c1:53:a0:58:8a:b4:80:05:92:
9d:6a:6e:38:2f:28:f4:0b:02:d1:63:40:ff:e8:4b:
f2:86:f6:ab:22:d9:d1:d6:86:ac:8b:a5:05:58:59:
cc:cc:da:ad:a7:53:11:51:a5:f8:58:cc:ba:9f:7d:
7f:0d:93:71:88:5f:a2:7b:6a:33:c9:4c:7d:8c:8a:
36:39:ed:00:ad:2e:1c:a5:f1:88:2d:bc:60:f4:a9:
bd:12:85:d3:73:c3:26:15:77:9a:b3:85:7d:6e:d8:
bf:52:cf:26:64:3c:86:41:ea:58:f3:ff:aa:25:34:
85:68:e6:79:46:9c:2b:1c:97:29:35:52:e4:c1:5d:
07:7e:51:64:77:c4:74:7a:dd:8d:86:10:b2:39:51:
f6:88:31:b2:f8:c9:d4:4b:50:59:9b:0c:cb:a6:77:
4c:27:b0:ef:e3:70:d3:c9:2c:d1:4c:0a:f0:86:b0:
bc:56:29:a2:b9:97:a8:a8:11:f2:a1:cc:50:45:0a:
db:ed:7e:8c:97:a0:bb:c7:ba:5f:96:e0:d8:31:28:
8d:3b:39:f1:8c:64:37:0f:ed:36:ed:11:c6:9d:36:
5c:83:d3:8e:57:88:42:54:dd:05:55:2b:6c:68:3a:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CC:39:06:E3:FC:26:61:EF:8C:8A:24:37:6A:CE:F7:EA:76:3E:0F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Xcw5BuP8JmHvjIokN2rO9-p2Pg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.88.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b4:f4:71:17:4a:c9:8f:3e:c0:ac:e5:57:74:55:3a:b1:3b:
63:35:1b:75:54:3e:33:d3:89:9e:89:9a:91:fe:e3:6d:cc:76:
e3:ed:86:e4:c8:5a:90:a8:5f:77:dd:32:c5:9a:a4:80:fa:ff:
e3:7b:ea:b7:5a:f4:65:7f:7b:66:53:71:c5:b3:af:1f:6a:08:
14:81:7b:c5:75:c6:c7:24:a5:44:f8:b0:ea:11:15:d6:50:d6:
a4:e1:6f:01:9a:a7:51:f8:0a:45:d4:bb:b7:36:23:e5:8c:e7:
4a:79:3d:b0:e4:f6:1a:f0:eb:26:59:65:83:63:90:45:98:c1:
6f:dc:90:42:67:65:f4:51:c9:0c:5f:8d:83:eb:51:fb:03:3f:
28:38:f5:0c:88:06:df:e5:1d:9e:79:97:d4:bd:eb:e3:5f:ae:
d4:26:da:ab:74:97:be:ed:bd:9a:17:82:d0:f1:62:93:e6:6d:
25:b9:86:5d:ac:a8:9e:4a:a7:da:94:3e:9e:15:87:ea:c4:97:
8d:d6:ef:c9:f9:c8:1d:ff:5b:6d:36:6f:1a:98:45:75:f5:a7:
79:58:9d:f1:aa:7b:b0:e3:3a:a3:ff:b0:b5:da:17:86:e3:e5:
58:9d:e1:86:fb:26:02:3c:a0:82:02:2a:2a:cd:a2:e3:e9:78:
4a:d0:f4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:52 2025 by rpki-client