Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/EsjIu7af25oNJeeHN_RQ1NEALQs.roa
File: EsjIu7af25oNJeeHN_RQ1NEALQs.roa (raw, json)
Hash identifier: i8vF37VfTK5EETGeSvUf/Xt3MolWn+JkPYXBweZWK0A=
Subject key identifier: 12:C8:C8:BB:B6:9F:DB:9A:0D:25:E7:87:37:F4:50:D4:D1:00:2D:0B
Certificate issuer: /CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9
Certificate serial: F3
Authority key identifier: F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/EsjIu7af25oNJeeHN_RQ1NEALQs.roa
Signing time: Tue 29 Oct 2024 09:46:40 +0000
ROA not before: Tue 29 Oct 2024 09:46:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 14874
IP address blocks: 202.47.172.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243 (0xf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9
Validity
Not Before: Oct 29 09:46:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=12C8C8BBB69FDB9A0D25E78737F450D4D1002D0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fa:f9:c9:6c:bf:d7:a7:b6:30:c5:f3:8f:5d:
99:80:4b:c9:df:7b:d5:af:ad:8a:23:75:fb:f5:51:
77:9d:80:ee:15:f2:5d:dc:a0:66:e7:2c:e8:a8:89:
cc:fb:97:87:e2:5a:d1:d7:2b:59:3a:72:99:2e:b7:
b3:1b:50:41:c7:be:ea:d3:76:95:c2:ec:5a:b2:93:
79:6c:b2:14:fc:6e:04:f6:a2:66:9f:e6:9b:6a:a4:
b7:1c:42:48:42:56:ca:80:2a:7e:0b:87:28:6f:ab:
44:89:84:9b:f0:d1:6b:e8:b7:a7:a5:f4:b9:90:49:
28:28:c6:a0:f5:9b:a0:d1:80:2b:cc:31:e4:9c:2a:
35:5b:9a:b0:f4:be:92:af:7b:3b:10:0f:5e:2a:d3:
d5:5c:49:b0:c0:a5:9b:6a:a1:70:a9:e5:e4:ac:c3:
d1:52:46:a9:24:b1:0f:cb:44:19:a3:4b:0a:39:2f:
70:54:3c:8c:40:bb:c2:2e:05:08:2c:12:ce:e1:ba:
41:db:f0:32:17:53:df:cc:b1:73:5d:1b:08:bd:b6:
9a:11:59:1e:44:91:71:39:a9:8a:65:8a:9d:df:9e:
b0:ec:c6:49:51:20:3b:eb:62:da:11:7a:8b:4b:bb:
4f:82:db:68:37:78:c9:63:80:98:5d:22:df:be:9c:
9b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C8:C8:BB:B6:9F:DB:9A:0D:25:E7:87:37:F4:50:D4:D1:00:2D:0B
X509v3 Authority Key Identifier:
keyid:F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/EsjIu7af25oNJeeHN_RQ1NEALQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.47.172.0/23
Signature Algorithm: sha256WithRSAEncryption
15:c0:0e:db:71:43:2e:94:2e:e9:0b:bd:6e:00:72:8a:16:3b:
2f:aa:3b:a5:60:66:49:1e:b4:85:13:76:78:ce:f8:be:79:c8:
4f:33:99:3f:d1:06:67:9e:9d:0e:9a:7e:6b:c6:e9:60:68:d1:
a3:a6:9e:86:20:b6:23:85:86:f4:91:9b:da:26:cd:22:75:62:
a3:22:31:48:e6:c9:52:71:59:29:b2:f5:6d:a4:91:5f:4d:47:
ee:79:22:8a:51:fb:74:47:b1:b5:17:64:36:af:df:6a:59:18:
35:26:a8:c7:c1:37:db:c0:80:f1:29:36:63:f6:23:85:2f:e4:
f5:fb:a8:04:e3:3c:a3:1a:d6:f9:f5:d4:96:64:81:7f:40:9e:
95:59:e7:b8:41:da:a7:12:5c:af:4b:bd:b3:23:fe:e1:1b:c6:
1a:55:e6:ea:a5:b1:d6:57:84:2c:1b:c7:33:98:c9:cf:e2:8e:
68:ca:ef:2c:3d:46:df:9a:9d:e0:9d:1c:df:9c:6c:5f:20:3e:
3c:b5:28:c8:0a:5c:4d:8e:ff:cf:03:f0:64:12:96:c8:72:34:
4b:96:39:27:14:e6:c1:1f:a0:8c:1a:bc:68:24:c8:d2:bb:e6:
1c:41:4b:82:92:eb:b4:5d:af:63:64:80:4b:13:a5:6c:47:be:
b6:b5:df:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:45 2025 by rpki-client