Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-5PQ2e80fdqnuryLPs09ZZ4tfPs.roa
File: -5PQ2e80fdqnuryLPs09ZZ4tfPs.roa (raw, json)
Hash identifier: VNUbdeOPhUS0UEGwJLBfzzEtrCJS1lXPrv0UBrFlDNk=
Subject key identifier: FB:93:D0:D9:EF:34:7D:DA:A7:BA:BC:8B:3E:CD:3D:65:9E:2D:7C:FB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16B9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-5PQ2e80fdqnuryLPs09ZZ4tfPs.roa
Signing time: Mon 26 Aug 2024 05:22:32 +0000
ROA not before: Mon 26 Aug 2024 05:22:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 106.104.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5817 (0x16b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FB93D0D9EF347DDAA7BABC8B3ECD3D659E2D7CFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:54:22:d4:92:ef:b2:df:a1:84:c5:67:97:
79:16:9c:09:c7:3e:24:19:53:82:a5:d5:28:84:04:
bb:1a:a1:6a:bc:08:f4:d6:52:05:e8:c9:e7:26:8c:
22:3d:50:63:bb:01:fd:9d:1a:09:a0:8c:ad:4d:c3:
eb:e6:3c:2e:3c:d7:b7:50:2c:3c:55:8d:92:5c:14:
31:3f:62:4b:7f:c2:03:43:bf:e0:c9:f0:5c:0c:18:
2e:01:8e:30:11:03:c2:38:fe:7d:54:45:f9:fa:09:
4b:d5:24:bc:2d:5c:ea:6e:3c:a7:61:ef:dd:d6:38:
f5:12:41:21:3e:8b:95:9d:bf:f6:d6:28:45:59:3d:
d4:c6:04:30:ee:d1:f9:15:18:10:d9:25:7d:3d:25:
6c:ed:6b:9f:d7:18:35:37:1b:a0:a5:c0:0a:38:74:
68:48:42:4e:6e:69:03:b8:93:94:7d:52:ec:d0:1a:
6b:5c:f8:f3:b7:12:d3:64:03:42:fe:39:a7:48:4f:
67:80:97:a9:b8:03:e4:39:df:ae:d1:4c:dc:26:9c:
dd:4d:c5:51:6e:ee:c2:af:a3:63:82:93:81:f0:4a:
3b:39:ca:f5:f9:1f:86:9a:3a:6f:55:74:fb:2e:fd:
91:1e:10:f3:a3:87:50:2b:68:92:2d:81:3a:fd:24:
a4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:93:D0:D9:EF:34:7D:DA:A7:BA:BC:8B:3E:CD:3D:65:9E:2D:7C:FB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-5PQ2e80fdqnuryLPs09ZZ4tfPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/14
Signature Algorithm: sha256WithRSAEncryption
92:cb:31:39:f1:02:a3:88:b7:d6:09:fe:ec:e9:bc:bf:43:80:
ea:f8:5e:b1:34:8f:7d:7d:2b:29:26:9a:f9:c5:c8:b1:e0:96:
46:39:1a:cd:71:4b:7e:9c:eb:f3:7d:de:f7:07:a9:c1:a0:de:
0f:ec:ca:d1:b0:83:61:64:c4:9e:cb:d8:39:18:bc:6e:0b:31:
32:41:ee:ae:39:87:7b:34:6c:c7:cc:12:75:6a:25:80:e0:4b:
e1:68:80:d7:57:7e:0f:f6:55:8a:c2:c1:43:3a:7c:b1:8e:59:
d7:bb:9f:a3:ba:eb:4b:95:46:02:92:e4:cc:ae:a3:d3:0e:63:
72:40:e1:a2:81:0e:76:90:a4:fc:00:69:81:4e:b7:3b:ff:6e:
14:97:6f:1e:6b:2f:db:66:d0:d3:d9:bc:4d:6e:49:2a:9c:cc:
e8:60:18:ef:fd:f5:c9:fe:f1:99:73:14:a8:1c:76:50:fd:07:
1e:a9:42:57:0c:a7:a5:46:94:9a:28:9a:7a:30:32:5f:f2:b4:
88:dc:8b:b7:be:4f:50:ef:4a:6e:ec:a9:d1:19:d6:e2:e9:97:
28:01:6e:53:47:7f:11:72:a5:6f:5e:9c:90:01:53:2f:91:c2:
88:9e:4d:64:30:ec:44:9c:ac:48:63:ec:9e:ff:28:8a:11:19:
be:e3:2c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:05 2025 by rpki-client