Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/eNWza-wXX0Yp0VZLBX9mNF3Bt9w.roa
File: eNWza-wXX0Yp0VZLBX9mNF3Bt9w.roa (raw, json)
Hash identifier: 8K2sFc4zEfSkkiWvrdkqNQ8QB0Tm2iIZE5jBVIut5L0=
Subject key identifier: 78:D5:B3:6B:EC:17:5F:46:29:D1:56:4B:05:7F:66:34:5D:C1:B7:DC
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 106E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eNWza-wXX0Yp0VZLBX9mNF3Bt9w.roa
Signing time: Mon 26 Aug 2024 05:16:24 +0000
ROA not before: Mon 26 Aug 2024 05:16:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4206 (0x106e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=78D5B36BEC175F4629D1564B057F66345DC1B7DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0e:78:bd:c5:23:d1:7c:53:f9:a2:2f:5d:ff:
d9:48:46:f1:6e:97:6f:86:3d:cb:1c:77:be:e9:01:
8f:87:03:bc:e8:d9:d7:4b:81:61:ca:dd:ac:52:5b:
0e:9f:58:1e:39:c1:38:93:f8:ae:eb:83:3b:b4:7d:
b2:c8:49:aa:13:a4:10:7a:ac:7d:d2:23:26:98:85:
18:75:cf:29:a8:e1:40:76:2c:54:01:6c:d9:d9:20:
f9:5d:4e:cf:e7:b0:10:c0:06:70:cb:de:f4:cd:5e:
6d:4d:98:57:5d:be:0d:60:00:57:36:3b:fc:ba:fe:
78:ad:38:4f:bf:82:7c:09:8b:cb:5f:93:c9:10:7b:
b3:ef:55:37:73:ea:1e:78:66:ce:b8:9d:44:18:ac:
f4:b0:61:49:30:7b:ff:ba:34:9a:d0:c0:30:ad:e4:
62:c1:19:2c:47:28:5f:01:35:0a:74:67:67:be:2b:
b0:0f:ce:50:84:9a:47:d5:0d:ca:c7:69:ca:13:d7:
81:4e:d9:dd:5e:3b:dd:31:21:90:64:d8:84:a5:67:
f5:07:c1:ef:69:8d:c4:c9:4d:be:07:c2:09:35:67:
fb:dc:0e:a9:b7:34:4c:58:66:6b:bf:a0:4c:48:eb:
09:88:ca:ae:58:d2:6f:da:48:35:79:e6:d1:31:de:
c4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D5:B3:6B:EC:17:5F:46:29:D1:56:4B:05:7F:66:34:5D:C1:B7:DC
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eNWza-wXX0Yp0VZLBX9mNF3Bt9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a8:45:b6:b5:c4:60:f0:fc:d5:56:06:48:42:20:b9:0d:1b:75:
6e:bf:23:50:b5:92:e1:40:58:a2:d3:1c:91:2e:20:8e:8a:c8:
43:1b:d4:ea:01:7e:33:13:b4:36:90:41:62:cc:04:cb:0c:6a:
14:37:83:5e:ef:ad:4d:db:5c:d2:2a:8d:9e:f0:55:81:84:c8:
92:48:2d:66:8f:ff:c0:55:34:da:87:a5:63:c2:ba:05:79:ef:
75:a1:1c:c6:03:2b:b6:0b:dc:5c:b9:60:d3:44:d1:b8:bc:b8:
3b:62:69:8b:aa:51:1e:77:ee:c8:56:74:cc:31:93:66:32:61:
a0:36:ce:6e:61:8f:9b:06:cd:0d:df:bf:d9:81:fe:38:d1:db:
a5:84:cd:8a:b1:aa:96:e1:b2:7b:58:63:0b:c6:62:2b:f3:61:
d7:96:46:13:28:9f:f1:0c:07:b0:8a:9a:da:90:12:99:0d:6f:
95:7f:f4:c9:71:cc:5a:33:af:a7:0e:61:44:33:e5:8f:07:ca:
94:56:77:1b:7c:f6:a7:b8:fb:bc:bb:0e:c7:89:01:c5:55:0a:
9f:41:d1:7d:56:d5:cb:b1:68:5b:1a:22:a1:5f:fd:a3:20:bd:
5d:bf:c3:df:e3:04:da:49:51:e4:88:73:6d:90:8d:9a:74:bd:
f4:07:df:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:04 2025 by rpki-client