Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qLzdHcUJusoxJTgEdYdAfq56B6Q.roa
File: qLzdHcUJusoxJTgEdYdAfq56B6Q.roa (raw, json)
Hash identifier: 6YmgBiWMP9zf07jv8dQE+WVEcGCm8C5fEFufOKPd6wA=
Subject key identifier: A8:BC:DD:1D:C5:09:BA:CA:31:25:38:04:75:87:40:7E:AE:7A:07:A4
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1021
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qLzdHcUJusoxJTgEdYdAfq56B6Q.roa
Signing time: Mon 26 Aug 2024 05:16:06 +0000
ROA not before: Mon 26 Aug 2024 05:16:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 218.34.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4129 (0x1021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A8BCDD1DC509BACA312538047587407EAE7A07A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e3:b5:dc:72:cc:a9:b1:e0:0c:14:40:d2:0e:
be:c4:ca:b0:0e:0e:d9:25:01:85:34:87:5f:c6:f8:
ac:74:c4:5f:68:2b:7b:7d:fc:b8:76:29:bd:f4:c4:
ba:16:9b:de:3f:97:c2:ea:45:57:ba:dd:ed:76:91:
38:81:da:2b:cb:a7:3b:7f:26:8e:44:a1:06:6c:28:
81:cf:a7:34:7d:49:99:e7:a1:89:be:d0:f6:57:1a:
9e:9a:09:5a:f6:b7:1e:fc:49:da:8f:f7:a7:02:5d:
4c:16:bf:b9:d3:9f:3f:ef:83:b7:f4:ea:01:9f:60:
87:c8:c4:fd:39:a1:64:b4:ec:e5:e8:e2:e3:93:d1:
c8:82:1f:6d:91:c3:9e:e3:56:81:4b:fb:f3:42:42:
8e:86:ca:f0:b6:5c:19:47:3e:13:9c:be:79:49:7f:
1e:f3:79:ed:44:a1:9e:32:33:c2:d2:ad:a0:f4:74:
b5:ca:f8:23:7f:d4:c9:cb:35:85:db:97:2b:73:0e:
fb:c9:1f:10:8c:68:c0:12:96:cf:3d:4e:0a:25:11:
da:0f:9f:58:b0:2e:56:ac:b9:d4:af:20:1e:21:06:
5e:0e:28:c1:93:84:78:23:7d:f3:e2:ac:bd:5d:2d:
91:62:4e:3c:a2:0e:42:ae:c9:b0:d9:80:fe:85:c7:
fd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BC:DD:1D:C5:09:BA:CA:31:25:38:04:75:87:40:7E:AE:7A:07:A4
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qLzdHcUJusoxJTgEdYdAfq56B6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:04:16:31:68:52:f6:85:8e:83:88:94:4a:97:64:1e:40:f2:
72:91:ad:68:b4:c3:80:71:8a:51:0f:1a:7d:3d:d0:4b:02:90:
79:2f:90:3c:5c:54:ec:3a:7f:1c:75:1d:b0:cc:b3:c2:34:db:
71:71:a2:52:10:f1:5c:10:cf:1b:55:00:e1:f9:43:82:08:ff:
fe:76:53:36:ae:36:f8:3a:da:f3:fe:eb:e4:d5:d6:43:e6:37:
92:30:b2:c9:b8:25:70:0d:2b:33:d8:49:c8:b6:a3:f3:16:a3:
05:6e:80:1a:ac:c1:46:85:6e:f9:c5:be:4d:12:1e:49:ab:97:
b4:60:0d:99:f5:4c:5d:3a:47:a2:6d:95:da:44:8c:b7:ff:dc:
43:42:2c:22:a9:fd:90:19:69:4f:49:ad:b4:57:c3:6f:c0:37:
f5:64:9a:f3:b9:6e:7e:50:b0:0f:6f:7a:47:20:92:23:58:d1:
c6:a5:25:ba:31:eb:f3:f6:57:2e:7a:e9:75:5b:bb:81:3b:86:
96:69:de:54:f4:7a:5c:45:f4:ab:6e:7e:40:4f:c9:1c:f2:d3:
af:2c:64:ac:3d:65:76:ef:1f:5b:37:bc:4b:b9:1e:16:51:8e:
11:0f:f9:57:f7:be:32:4e:6c:f3:99:ee:2b:c2:d3:5b:dd:a7:
04:31:53:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:10:05 2025 by rpki-client