Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fccEhkTNKMvETw6MvjaavyCnl4U.roa
File: fccEhkTNKMvETw6MvjaavyCnl4U.roa (raw, json)
Hash identifier: WyRvaoIceoGhakCSRd8MpBEHPm785WTmeUjajEdx0HI=
Subject key identifier: 7D:C7:04:86:44:CD:28:CB:C4:4F:0E:8C:BE:36:9A:BF:20:A7:97:85
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 109C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fccEhkTNKMvETw6MvjaavyCnl4U.roa
Signing time: Mon 26 Aug 2024 05:16:36 +0000
ROA not before: Mon 26 Aug 2024 05:16:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 60.244.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4252 (0x109c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7DC7048644CD28CBC44F0E8CBE369ABF20A79785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9c:13:64:81:ba:4c:28:28:92:ee:8f:60:66:
17:0f:74:71:3f:eb:66:76:37:9c:80:10:76:97:c8:
e7:90:c6:ad:ef:8f:ca:0d:36:86:4a:34:f3:ec:eb:
09:31:ef:df:ef:c9:dd:af:ec:bc:b2:6a:8b:35:13:
8a:5d:42:c0:56:8e:05:4c:aa:ab:a3:47:9d:46:62:
7a:45:50:6d:0c:07:77:ef:f5:4a:df:76:d2:48:29:
9b:df:7e:5b:6d:22:86:70:03:4c:87:fe:24:c7:a7:
ad:a1:da:2b:ad:b1:8a:7f:f0:bf:7f:ed:f9:b0:7c:
95:79:5f:6b:df:68:4f:8b:44:8f:30:35:84:7e:86:
b3:db:54:32:c2:be:91:97:08:dd:84:05:e5:ff:ad:
07:ae:02:0e:5a:cb:4d:73:e1:f0:0c:11:a2:e5:5b:
18:6f:e8:53:85:f4:52:45:19:c0:20:d4:9b:29:9d:
d3:30:b7:ce:e7:32:7e:66:f6:0f:3c:f6:23:f4:99:
e7:aa:45:96:86:2a:e6:be:69:aa:08:94:09:70:90:
0a:26:d2:19:14:69:b8:81:62:71:c7:9b:d4:58:1f:
1b:73:a0:40:80:6e:27:d6:83:c8:49:d7:e6:72:e3:
ae:d2:fa:64:fb:23:4a:62:99:bd:20:62:06:84:ab:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C7:04:86:44:CD:28:CB:C4:4F:0E:8C:BE:36:9A:BF:20:A7:97:85
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fccEhkTNKMvETw6MvjaavyCnl4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/18
Signature Algorithm: sha256WithRSAEncryption
42:79:c2:b1:76:f0:84:1a:cf:f8:d8:f0:dd:38:3e:32:31:0e:
e5:f2:98:fa:a4:5d:cc:71:a9:1f:13:8b:8f:95:9c:8d:76:5a:
52:6f:77:43:55:82:af:55:e2:7e:70:1c:c6:b6:f9:61:93:5b:
66:29:ef:8c:f4:6f:e6:f1:81:e9:dc:d1:85:b3:6d:62:2e:ca:
1a:ab:5b:a5:35:85:8d:f1:72:0d:52:54:a5:55:1a:cf:3c:93:
ae:97:0b:6b:b4:3e:6a:15:e4:d3:01:a4:69:2b:6f:3b:6c:3a:
97:25:9c:eb:8d:d5:88:b9:84:b3:c5:b1:ea:f4:cc:44:09:aa:
ad:36:a4:2f:14:05:86:f7:89:0e:63:63:2f:f7:63:8c:99:73:
40:10:e5:fc:4d:57:db:b2:82:8e:aa:0b:16:d4:c3:45:a0:31:
e5:47:b4:a1:ce:9f:bb:de:b4:ae:95:5e:42:17:99:47:94:ed:
aa:a1:18:16:df:9e:18:65:bd:df:70:b0:98:56:b9:32:03:a7:
0a:83:a0:4d:8f:8d:b7:40:42:13:9c:57:97:85:98:8c:0b:51:
13:02:df:ce:3c:45:e2:67:e2:c7:29:85:45:bd:a4:e1:ed:f6:
bc:1d:19:9b:d1:02:3d:fa:12:b3:a0:96:08:4c:32:e8:83:d0:
95:77:42:a7
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw
NTE2MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdEQzcwNDg2NDRDRDI4
Q0JDNDRGMEU4Q0JFMzY5QUJGMjBBNzk3ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRnBNkgbpMKCiS7o9gZhcPdHE/62Z2N5yAEHaXyOeQxq3vj8oN
NoZKNPPs6wkx79/vyd2v7Lyyaos1E4pdQsBWjgVMqqujR51GYnpFUG0MB3fv9Urf
dtJIKZvfflttIoZwA0yH/iTHp62h2iutsYp/8L9/7fmwfJV5X2vfaE+LRI8wNYR+
hrPbVDLCvpGXCN2EBeX/rQeuAg5ay01z4fAMEaLlWxhv6FOF9FJFGcAg1JspndMw
t87nMn5m9g889iP0meeqRZaGKua+aaoIlAlwkAom0hkUabiBYnHHm9RYHxtzoECA
bifWg8hJ1+Zy467S+mT7I0pimb0gYgaEqxqhAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUfccEhkTNKMvETw6MvjaavyCnl4UwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2ZjY0Voa1ROS012RVR3Nk12amFhdnlD
bmw0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY89IAwDQYJ
KoZIhvcNAQELBQADggEBAEJ5wrF28IQaz/jY8N04PjIxDuXymPqkXcxxqR8Ti4+V
nI12WlJvd0NVgq9V4n5wHMa2+WGTW2Yp74z0b+bxgenc0YWzbWIuyhqrW6U1hY3x
cg1SVKVVGs88k66XC2u0PmoV5NMBpGkrbztsOpclnOuN1Yi5hLPFser0zEQJqq02
pC8UBYb3iQ5jYy/3Y4yZc0AQ5fxNV9uygo6qCxbUw0WgMeVHtKHOn7vetK6VXkIX
mUeU7aqhGBbfnhhlvd9wsJhWuTIDpwqDoE2PjbdAQhOcV5eFmIwLURMC3848ReJn
4scphUW9pOHt9rwdGZvRAj36ErOglghMMuiD0JV3Qqc=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:50 2025 by rpki-client