Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dROupWjkA-O1ZXmUkgVG0MYOCmc.roa
File: dROupWjkA-O1ZXmUkgVG0MYOCmc.roa (raw, json)
Hash identifier: pID1wT01ngNW0imB21dJA96jc/D39Xqqkb/s31n+NCU=
Subject key identifier: 75:13:AE:A5:68:E4:03:E3:B5:65:79:94:92:05:46:D0:C6:0E:0A:67
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10AF
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dROupWjkA-O1ZXmUkgVG0MYOCmc.roa
Signing time: Mon 26 Aug 2024 05:16:41 +0000
ROA not before: Mon 26 Aug 2024 05:16:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 222.250.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4271 (0x10af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7513AEA568E403E3B5657994920546D0C60E0A67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:ab:df:34:1e:77:27:68:b0:34:90:00:c2:
80:b9:45:80:18:42:12:50:f3:39:c3:b4:5d:67:26:
52:73:b0:49:16:e3:b7:f2:17:8b:d3:42:2b:f8:69:
01:c3:e9:0d:7f:be:b6:71:c6:6a:9f:e9:64:d6:c1:
ce:bc:58:c2:fe:30:d7:84:47:fa:0b:03:44:ff:b9:
8e:b3:e9:b7:95:35:92:fc:7b:4c:e7:f8:d2:e9:00:
00:22:df:f9:b4:7d:28:cb:d3:c3:a9:2f:00:62:46:
9a:ac:0a:64:05:d0:5c:a1:7a:ee:b4:8c:6d:be:a4:
82:c5:a7:e0:b2:1d:2b:82:e5:4d:ed:21:23:de:d7:
7a:11:28:b6:78:50:28:3d:27:35:3a:7a:6e:bd:33:
ae:47:d1:c6:0e:b1:b3:f9:25:a4:0c:7d:a5:9d:4c:
60:20:7d:83:7e:5b:06:48:1f:2d:84:38:ed:f1:4e:
d9:91:05:c1:e3:90:05:14:2e:b7:39:c9:69:2d:42:
1b:6a:2f:1e:5a:02:e6:36:dc:60:71:36:a9:2d:b1:
46:4b:d8:0b:20:9c:b2:9f:22:b9:b1:e5:d5:07:76:
54:01:41:74:a2:93:5d:2b:6d:a8:97:3d:db:d7:bb:
51:08:c5:be:71:80:09:16:57:02:22:a3:8a:cc:fb:
d9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:13:AE:A5:68:E4:03:E3:B5:65:79:94:92:05:46:D0:C6:0E:0A:67
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dROupWjkA-O1ZXmUkgVG0MYOCmc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.192.0/18
Signature Algorithm: sha256WithRSAEncryption
22:f1:13:81:44:8f:b3:d4:0a:78:9d:9e:56:88:9c:65:df:0f:
ef:47:ac:20:ec:a1:32:cb:08:1c:5e:f8:e0:af:bd:b4:e0:12:
45:f3:70:15:bd:f9:d4:ed:34:65:94:dc:16:d3:07:50:21:fb:
e5:dc:48:88:96:59:11:ee:7d:e4:89:e3:1e:cf:46:15:9a:88:
21:01:ef:e8:a1:0d:ce:1a:cb:ce:b1:f8:ba:c2:8b:ab:b2:dc:
b3:04:2b:ee:e3:f8:c5:87:7b:2f:86:af:c8:09:d0:94:ac:86:
1c:e3:d8:9b:7c:85:d9:f5:ef:42:17:56:85:6f:eb:d8:b1:67:
22:98:9b:ba:44:b9:00:6d:82:89:fc:79:0f:9e:12:44:85:be:
9a:b4:43:fc:5f:e4:34:cd:5f:ae:18:48:7b:a8:78:4c:8c:13:
84:99:6e:22:06:7c:69:e0:55:0d:d0:90:d7:4d:74:05:ef:1d:
9a:fa:52:35:3f:bb:58:23:37:27:52:ce:74:66:60:67:fb:5f:
22:9a:bb:65:38:d1:c1:01:7c:34:b2:4f:51:44:58:07:aa:c0:
8a:3b:23:70:d4:54:c0:21:77:a1:7c:db:63:29:74:52:7c:42:
d9:d9:bd:4e:14:44:f2:7f:57:0e:b5:b9:79:64:e8:d6:94:ee:
bb:f5:35:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:34 2025 by rpki-client