Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/nPaXUqjpWr7fGzQ7inFjH1sceYk.roa
File: nPaXUqjpWr7fGzQ7inFjH1sceYk.roa (raw, json)
Hash identifier: fyjrjOTymE2+N7evgbAp1f1OZkLukh/eWwRXewHvtDU=
Subject key identifier: 9C:F6:97:52:A8:E9:5A:BE:DF:1B:34:3B:8A:71:63:1F:5B:1C:79:89
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 104F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nPaXUqjpWr7fGzQ7inFjH1sceYk.roa
Signing time: Mon 26 Aug 2024 05:16:18 +0000
ROA not before: Mon 26 Aug 2024 05:16:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9311
IP address blocks: 210.201.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4175 (0x104f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9CF69752A8E95ABEDF1B343B8A71631F5B1C7989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f6:1e:6a:1a:5d:bf:9d:05:2c:6c:ff:2f:12:
01:f9:9f:50:76:78:12:30:44:17:b0:9f:c6:a6:e8:
42:e8:50:a8:9b:10:f4:41:70:24:3d:8c:08:21:13:
d9:81:e0:53:30:1d:8e:3e:31:35:be:69:da:36:c5:
6b:1a:7e:38:d1:f1:34:22:2c:76:04:c0:ac:a5:11:
05:90:fd:07:93:a3:de:79:91:a6:4b:c6:4f:8d:ef:
6d:1a:6e:78:d9:04:68:b7:e1:f3:3e:b8:9f:ef:e8:
e6:71:98:12:61:5b:1b:09:2d:e6:e4:0f:59:81:99:
25:ac:12:c1:2f:2a:13:ce:c7:8a:f9:2d:79:7c:86:
71:61:3d:38:cb:4f:42:48:91:dc:ca:12:83:f2:3a:
93:9d:17:7b:f0:07:fa:81:ae:b3:61:a1:f3:f8:08:
38:15:f5:31:2d:45:75:37:0b:e6:d3:b6:07:94:22:
1b:61:08:ca:62:77:a9:50:17:31:56:97:84:79:e8:
36:6e:e6:be:a9:ca:a3:1a:a5:70:0f:f9:78:5c:2e:
b8:8f:4e:5f:26:76:6a:5d:03:da:a2:78:02:81:55:
8a:ed:0f:be:8a:15:57:96:91:95:49:36:fd:23:8c:
73:93:84:56:71:72:29:42:ac:dc:ae:60:14:30:c6:
12:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F6:97:52:A8:E9:5A:BE:DF:1B:34:3B:8A:71:63:1F:5B:1C:79:89
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nPaXUqjpWr7fGzQ7inFjH1sceYk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.80.0/22
Signature Algorithm: sha256WithRSAEncryption
81:91:3a:29:cd:e9:06:75:63:14:1f:f4:39:7b:7e:f0:14:69:
a7:e3:05:13:57:de:84:c7:13:54:e5:a4:1c:6f:36:25:fb:00:
2f:6e:e1:a6:09:f5:db:36:7d:ac:89:ff:e8:98:86:49:0a:49:
20:b5:c5:e1:db:18:f9:85:91:31:18:c5:df:c8:27:3a:ea:88:
56:10:92:1e:8c:57:69:61:1b:d3:b3:ac:7c:61:e8:a7:34:e8:
27:5a:9b:72:ce:75:27:3d:d0:80:d9:9e:61:c1:79:32:c2:2b:
d5:03:68:b8:0d:8e:62:7e:7d:1a:ec:70:74:65:e7:8e:4b:b4:
bc:8f:89:3c:95:47:3a:94:20:d4:d7:12:be:f8:7e:3e:69:ad:
36:bb:04:b5:eb:01:c5:5f:21:3d:d4:ce:48:8e:67:fa:54:ad:
75:95:84:3b:07:9b:02:63:ef:4c:2e:c0:a5:1e:ad:a6:87:13:
c2:cb:93:8f:b7:24:4d:9e:81:31:83:f2:c4:6b:ca:2c:6d:c5:
0a:d4:43:6b:5a:58:33:5f:78:b4:74:6e:6a:85:75:4f:e1:6d:
35:bc:7d:00:89:4f:94:97:8f:10:e8:55:f0:51:b7:8f:f7:40:
ae:fe:b6:a1:f3:73:5d:ab:1c:5e:6a:df:9e:9e:c9:c4:d8:3f:
57:d1:61:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:27 2025 by rpki-client