Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/nizqxerToSMoYxCpHtafBZepBpA.roa
File: nizqxerToSMoYxCpHtafBZepBpA.roa (raw, json)
Hash identifier: afWyAi3DH8tfbHqRE/Ukwh3uaiRoVc+EaCNZZI5ADYY=
Subject key identifier: 9E:2C:EA:C5:EA:D3:A1:23:28:63:10:A9:1E:D6:9F:05:97:A9:06:90
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 10B7
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nizqxerToSMoYxCpHtafBZepBpA.roa
Signing time: Mon 26 Aug 2024 05:16:43 +0000
ROA not before: Mon 26 Aug 2024 05:16:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 210.202.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4279 (0x10b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9E2CEAC5EAD3A123286310A91ED69F0597A90690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:3b:69:bf:f8:cf:2c:c5:ea:2a:fa:45:ce:
76:f0:8a:12:fb:60:c3:42:2e:ec:7a:55:a9:d7:b8:
ad:5b:81:77:b4:73:dd:d8:d9:6b:61:e1:45:cc:f8:
7d:79:b7:6e:11:66:59:db:6d:76:57:2a:45:fc:2a:
ca:cb:1f:b4:1e:cb:e5:dd:c2:a6:dc:93:6c:2b:38:
77:23:b4:c8:bf:7d:0f:a7:29:64:e9:78:1e:c6:8a:
ea:a5:79:25:a4:00:9c:48:36:b1:dd:df:d7:1f:be:
57:06:f7:6f:e5:1c:18:df:5a:38:50:26:b1:0e:61:
56:30:5c:5e:d6:fa:10:57:78:42:49:18:66:30:dc:
e9:38:8c:e6:96:d6:08:f2:c1:0c:9e:fe:8f:9a:eb:
ee:7c:52:af:91:1c:ff:73:e3:1b:19:d7:53:a7:9c:
27:98:8b:1a:71:6b:12:2e:91:e9:11:97:ef:8f:68:
21:cc:58:b9:9e:54:f2:80:72:97:c0:37:d7:f1:df:
c0:a4:d6:7b:d8:75:ec:69:84:86:10:3b:09:22:58:
49:50:89:d4:10:ea:b8:10:2b:88:ef:09:c2:7f:f6:
c6:45:b9:6f:64:24:71:34:c1:6e:29:68:dd:69:ee:
50:e8:4c:53:3e:11:c7:4d:a2:65:5e:5b:7e:e4:06:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2C:EA:C5:EA:D3:A1:23:28:63:10:A9:1E:D6:9F:05:97:A9:06:90
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nizqxerToSMoYxCpHtafBZepBpA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.32.0/20
Signature Algorithm: sha256WithRSAEncryption
51:49:7f:6c:2c:4f:67:a9:0b:02:ae:92:04:35:42:a2:ea:42:
8f:4a:50:8e:06:c3:b1:e9:14:96:17:32:0c:5a:67:1a:22:d1:
ff:b6:ee:14:df:6e:09:e2:f6:3a:5a:fa:74:a9:2a:16:13:0e:
7c:c2:88:88:50:c8:66:09:52:47:89:b1:18:5e:19:72:00:64:
6c:97:40:f5:fa:c5:95:77:47:a1:b7:a1:ef:9d:58:54:ac:1c:
cd:0a:3a:5b:b2:c9:cf:6e:1c:75:ba:81:a8:60:3d:3a:87:36:
a2:20:1b:06:bf:61:f5:8c:8a:3e:b1:39:6f:e2:99:3d:2c:b3:
db:1d:bb:5c:f8:b5:48:d0:7d:b6:e5:4f:4b:d7:4f:9f:7b:9f:
05:54:ac:51:10:25:98:74:15:70:f6:4a:4e:f3:54:54:50:ea:
86:d7:f4:bb:e4:22:71:d5:56:72:8f:05:f7:46:63:1e:ec:6b:
80:cb:10:55:a0:fd:6a:f0:69:51:01:4e:00:6b:81:6f:5c:40:
5b:01:fb:bd:8e:15:eb:5b:5d:3d:0c:01:4e:fc:61:2a:d1:7f:
e4:06:ea:83:18:7d:83:cf:c5:b8:6f:2e:66:0e:4f:0a:79:96:
97:16:52:e6:eb:e0:ec:7d:f5:40:5b:70:c1:23:ef:55:74:06:
32:e9:2c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:46 2025 by rpki-client