Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-_agbm1wZamI8yanPTls9N4aIXc.roa
File: -_agbm1wZamI8yanPTls9N4aIXc.roa (raw, json)
Hash identifier: ka/bquWo89M3XYShqOQhwVLap8LMoag9DFfZwzg/m9A=
Subject key identifier: FB:F6:A0:6E:6D:70:65:A9:88:F3:26:A7:3D:39:6C:F4:DE:1A:21:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1626
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-_agbm1wZamI8yanPTls9N4aIXc.roa
Signing time: Mon 26 Aug 2024 05:21:50 +0000
ROA not before: Mon 26 Aug 2024 05:21:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 113.196.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5670 (0x1626)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FBF6A06E6D7065A988F326A73D396CF4DE1A2177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:f2:a6:5a:19:55:bc:3f:00:89:1b:23:65:
0f:d0:26:83:43:21:4b:30:8b:50:45:b5:00:93:39:
f5:c0:f4:26:87:0f:01:75:3b:1e:64:13:e1:f5:23:
6f:06:f5:73:ee:08:ba:ef:75:83:87:66:30:65:58:
88:13:0b:12:8d:a6:47:16:68:c3:fb:b8:ef:97:76:
16:10:7a:3a:e2:73:e6:9f:db:f1:2e:9a:8c:39:43:
34:d9:88:3f:92:22:78:0b:ee:93:f8:8d:e5:25:cd:
d2:b2:00:ea:f4:a6:0d:89:5c:2e:52:5f:9a:65:d7:
b4:72:26:17:92:76:94:72:22:7e:1a:16:e9:1b:e5:
58:9c:01:7f:f0:89:46:1f:0a:92:cd:20:27:ce:39:
06:0f:32:43:ca:2d:f9:3c:39:84:4b:c7:51:1c:f6:
95:24:05:4f:d3:cf:44:73:eb:ef:9d:8f:a3:d6:8f:
82:8a:4d:50:bb:0c:20:5c:ad:09:6c:62:5f:97:f5:
f6:71:ca:6a:c9:d6:44:c2:77:a2:4d:61:af:0a:16:
cf:f4:32:c7:a4:af:38:3e:ca:d0:ec:86:99:2d:86:
16:8a:c3:9c:8b:5a:69:ee:3f:53:ee:f2:9f:51:e9:
0e:fc:ff:09:2b:69:6c:fa:69:fd:2b:a3:12:a6:1b:
11:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F6:A0:6E:6D:70:65:A9:88:F3:26:A7:3D:39:6C:F4:DE:1A:21:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-_agbm1wZamI8yanPTls9N4aIXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.39.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:e4:cd:fa:0d:92:9d:06:03:d8:75:95:07:1c:54:0b:db:4a:
ed:ff:0e:1f:5e:59:72:a2:34:a4:08:58:5c:a9:0b:5c:f1:e6:
3c:23:66:e7:2e:99:9e:4e:dc:00:55:f2:6a:ea:b3:f6:65:f2:
1e:3c:55:10:30:ae:e8:3d:a7:58:d1:f0:d0:9a:cf:7f:05:bb:
1d:a3:61:97:4d:87:3e:6d:eb:d2:0e:3c:51:dd:4d:d9:0a:2c:
bd:ce:0d:4c:a3:a7:f5:cc:bc:9b:f3:bb:84:e0:fc:0f:e8:7c:
78:dd:0c:28:8f:b6:4a:9a:8f:81:ca:ff:15:85:47:17:58:75:
0b:7d:bf:3c:db:a1:31:7e:46:3c:48:3c:1d:79:f3:aa:15:6a:
66:79:49:2e:ed:6a:d9:03:af:a2:f4:b2:ba:c2:20:af:be:b6:
15:96:3d:bd:8e:c5:05:04:b4:1d:e9:7e:fa:81:dd:42:31:43:
ae:53:ef:3b:bf:7d:2c:d5:db:73:3c:eb:fc:ef:39:c6:f7:49:
9b:48:63:8f:b7:f7:85:8e:d1:93:ba:3c:9a:d5:15:ed:16:ce:
80:07:79:33:94:6a:bc:e2:6e:ec:0c:6b:df:22:52:6e:08:94:
b8:88:86:40:e6:3a:bf:b2:e2:ed:98:2e:1c:bc:e2:9b:e1:05:
77:5f:dd:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:30 2025 by rpki-client