Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Z9G6dfKZzDZky4lbrr7d7cIFWVA.roa
File: Z9G6dfKZzDZky4lbrr7d7cIFWVA.roa (raw, json)
Hash identifier: 0vp87KS9FPTcFNlmI1sBob1+n245lT7qTVW/RaCrglw=
Subject key identifier: 67:D1:BA:75:F2:99:CC:36:64:CB:89:5B:AE:BE:DD:ED:C2:05:59:50
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10CD
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Z9G6dfKZzDZky4lbrr7d7cIFWVA.roa
Signing time: Mon 26 Aug 2024 05:16:48 +0000
ROA not before: Mon 26 Aug 2024 05:16:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131591
IP address blocks: 203.79.206.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4301 (0x10cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=67D1BA75F299CC3664CB895BAEBEDDEDC2055950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:52:de:50:8b:75:2d:80:44:f8:cd:28:31:4f:
ca:5c:a1:54:fb:42:24:91:22:17:01:d0:7c:7e:2b:
94:b7:42:08:22:76:9e:37:5f:40:ef:cb:a6:e4:97:
35:43:4a:75:ee:74:d7:db:cf:c6:ab:08:a9:38:52:
77:a5:b1:74:30:28:c1:e1:51:51:da:17:7c:1d:cd:
33:87:12:7b:5f:d8:cc:23:10:dc:27:db:e2:41:1f:
01:5b:62:98:25:f1:59:c1:fa:b1:e2:23:8d:fe:67:
a1:58:6a:87:f9:ab:01:12:93:aa:05:2e:15:1b:d6:
35:a8:95:70:36:ad:61:49:10:c0:e9:7f:a0:f3:71:
77:70:ca:21:1a:6a:c2:50:b1:21:e1:75:c8:4e:49:
f1:c7:2c:fe:58:4d:96:fd:e2:05:02:ce:cc:ae:52:
08:08:12:80:ac:d3:9d:5d:85:d4:82:0a:14:2a:b0:
90:2e:21:53:11:e8:e5:ab:4d:fa:62:2e:6b:58:a5:
10:8c:4d:ba:c8:3f:a9:0f:da:2d:dc:98:90:84:7a:
38:b1:6e:96:c0:3d:7f:2c:c5:f4:dc:de:d5:07:bf:
36:8f:05:fd:e2:14:87:6b:a1:97:18:f6:01:de:7a:
c3:44:7b:6e:9b:0c:0a:bf:c9:b4:f5:56:f9:97:f5:
95:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D1:BA:75:F2:99:CC:36:64:CB:89:5B:AE:BE:DD:ED:C2:05:59:50
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Z9G6dfKZzDZky4lbrr7d7cIFWVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.206.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:c4:eb:7e:84:06:63:4b:78:04:e1:87:a8:fb:e3:5e:de:cb:
ae:2a:6a:f8:ed:e7:b2:66:40:5b:ac:9c:84:06:24:c2:57:2d:
36:d2:a9:fd:39:60:79:ac:2b:07:cc:0f:63:18:a7:5d:d4:d5:
cb:3c:6b:89:3c:dc:eb:9c:50:75:d0:f4:50:d8:4e:34:84:a8:
28:f0:75:1c:a7:3a:a7:b6:f5:e1:b7:78:6b:a5:d3:03:14:f3:
cb:f6:97:f6:ef:9c:79:ee:d3:0c:15:e7:55:81:57:24:df:cf:
bf:8b:b7:b9:32:74:44:2a:d4:61:5d:7d:ee:95:64:b7:b2:12:
d2:b4:f8:72:df:a1:5e:6f:6e:90:7b:18:be:c1:df:6c:ca:5c:
b0:f8:79:0c:d7:bc:81:8b:8a:11:29:c4:fc:39:06:89:b2:62:
9e:7c:ed:24:ea:c0:e3:b2:7b:00:c5:9d:1c:36:c1:08:90:54:
8d:0c:f5:86:b1:ba:e8:57:42:15:f4:7e:6a:72:80:de:00:08:
e9:b6:c2:52:40:0e:31:82:0f:74:58:8c:e5:c8:83:18:4a:74:
27:f7:4b:55:9d:01:1f:9a:98:08:17:fc:99:29:a2:15:ac:b9:
79:e2:74:7f:9c:61:a8:9f:f4:ed:b4:ed:3b:78:c8:7d:76:32:
c5:a4:f6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:10 2025 by rpki-client