Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/gyZJm4mZG1unuwWzuWmvhAw2HCE.roa
File: gyZJm4mZG1unuwWzuWmvhAw2HCE.roa (raw, json)
Hash identifier: 3YBLx+FNl5RO6i7V1L6PasYAkdpyiy0j49s1j/kHlkc=
Subject key identifier: 83:26:49:9B:89:99:1B:5B:A7:BB:05:B3:B9:69:AF:84:0C:36:1C:21
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10AE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gyZJm4mZG1unuwWzuWmvhAw2HCE.roa
Signing time: Mon 26 Aug 2024 05:16:41 +0000
ROA not before: Mon 26 Aug 2024 05:16:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 210.58.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4270 (0x10ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8326499B89991B5BA7BB05B3B969AF840C361C21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:2c:2c:88:19:00:3a:df:59:58:7e:93:28:
43:1c:c9:28:d9:a2:ce:9b:19:99:b3:ba:16:fa:cb:
6f:1f:c0:12:fe:e7:2f:6f:21:c8:35:6a:79:8e:9c:
dd:5c:67:a0:7d:f6:7f:be:0d:60:c8:b2:43:aa:8a:
b8:bd:4b:df:60:98:ae:33:d3:76:fc:1c:a8:91:53:
66:ad:16:9f:39:2f:2c:95:f2:a6:b2:4d:0e:91:49:
3a:b1:1b:36:b4:c2:f7:79:2a:52:76:16:4c:e7:18:
12:6e:22:27:eb:a4:9c:af:e4:12:54:ba:71:5f:fd:
49:97:06:49:f7:19:a2:e4:95:9b:77:95:d1:ee:fa:
9a:c0:82:4a:08:b4:73:f7:62:05:11:a3:44:4e:3c:
de:53:14:04:7c:9e:2c:36:31:82:ba:d4:2b:ea:48:
5a:4d:e6:9b:c6:2c:60:6f:79:63:62:b9:65:f6:0a:
9e:a5:77:99:cd:bd:89:52:5a:5f:c1:e8:ac:ff:a7:
30:bb:be:6d:87:b5:7a:1a:0d:45:3a:2e:be:17:43:
9b:e5:24:47:49:c7:1f:b3:74:b6:96:b9:dc:b5:a8:
51:03:c4:16:b3:b5:a9:c0:68:9c:69:d7:e9:e1:7a:
c6:b2:49:c9:8d:aa:24:34:94:e9:8c:7f:0f:7c:93:
da:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:26:49:9B:89:99:1B:5B:A7:BB:05:B3:B9:69:AF:84:0C:36:1C:21
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gyZJm4mZG1unuwWzuWmvhAw2HCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.128.0/19
Signature Algorithm: sha256WithRSAEncryption
51:84:31:8b:a5:7c:ee:f1:52:57:7b:4c:23:dd:df:71:01:4f:
74:69:b0:42:bc:6d:04:c6:bb:ad:97:88:d4:d4:e0:6a:cf:0b:
0d:5f:53:08:e0:db:e5:fb:af:fd:ed:19:cd:9c:de:38:c7:cd:
21:c7:f1:a2:1f:46:1c:e6:96:1e:3d:8b:e8:29:93:e6:70:df:
9f:d0:7e:4d:8b:68:61:f5:d6:4e:90:c1:74:23:6d:82:de:db:
bf:c6:eb:a3:2f:b6:f5:c0:2e:15:7f:9a:c0:d2:f4:b5:10:92:
94:02:20:fc:68:be:cf:d7:df:f1:f4:fc:3e:9b:c2:77:06:36:
02:04:55:91:de:72:43:d9:8a:38:02:ef:6f:25:c6:8c:23:47:
4f:a4:45:69:3f:18:cc:ff:be:f1:c0:e5:bc:21:d9:36:2c:82:
a3:9e:a0:d9:22:19:6d:05:71:2e:7d:26:72:57:00:c3:01:32:
4a:e0:25:e6:c8:aa:ab:b2:8a:4e:ba:63:0a:42:11:58:b2:3d:
73:2a:63:a0:35:31:3b:36:b1:93:71:f5:6a:b6:de:b4:60:27:
8f:1c:5d:24:1c:94:55:62:dd:c7:a3:34:37:03:c8:58:db:1e:
cd:5e:fd:38:56:ab:b4:4e:d2:49:ff:3e:d1:ae:77:dd:a4:11:
ad:1d:a8:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:57 2025 by rpki-client