Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3lA52akldP7h-yzYzoZmd8oYryo.roa
File: 3lA52akldP7h-yzYzoZmd8oYryo.roa (raw, json)
Hash identifier: CZguz6Lq1FFiAL7R8AWVS0ib7wXt9v4UB+oOviuejiU=
Subject key identifier: DE:50:39:D9:A9:25:74:FE:E1:FB:2C:D8:CE:86:66:77:CA:18:AF:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1671
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3lA52akldP7h-yzYzoZmd8oYryo.roa
Signing time: Mon 26 Aug 2024 05:22:12 +0000
ROA not before: Mon 26 Aug 2024 05:22:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 113.196.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5745 (0x1671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DE5039D9A92574FEE1FB2CD8CE866677CA18AF2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a1:6f:30:14:b9:79:38:a3:72:50:60:3e:b6:
39:a5:cf:9a:99:09:85:24:0e:04:99:69:ea:e3:a6:
ff:68:a5:9b:93:ae:b5:f3:ab:40:75:a7:da:01:58:
1d:66:e8:b9:7d:1c:05:e6:ae:35:3a:c8:17:3e:e7:
6b:77:f0:75:f7:6d:14:48:81:08:8b:24:ae:04:b2:
02:03:6f:77:4d:6b:ff:98:0a:6c:14:55:20:ac:ec:
63:0f:27:52:32:dd:3b:a3:5e:5d:d1:4f:0c:2a:cc:
b8:ef:2a:5b:99:3b:20:41:9e:3d:60:e3:45:a9:e2:
7d:9d:c3:68:fb:75:03:62:40:b9:c2:17:f6:36:02:
b3:ef:20:ab:8d:92:90:ae:47:e6:81:9f:22:6a:95:
93:ec:21:cb:1a:b2:53:9c:df:72:ed:4d:74:a9:25:
51:83:0c:47:34:0d:df:93:7f:b1:0a:18:a5:81:cf:
dc:96:97:36:c6:fc:c6:15:5d:22:31:7e:e5:0d:4b:
6c:6c:d4:0c:05:04:1f:50:8c:4a:e2:37:14:cb:36:
7c:3a:b8:f2:3e:db:39:14:2f:37:6a:48:7c:ed:ad:
5a:c8:ce:09:21:70:ea:ae:b4:c5:e4:18:75:69:fe:
6d:7d:05:18:77:fd:43:73:1f:06:e2:40:49:92:fb:
fd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:50:39:D9:A9:25:74:FE:E1:FB:2C:D8:CE:86:66:77:CA:18:AF:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3lA52akldP7h-yzYzoZmd8oYryo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.245.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:46:80:79:8f:b8:4b:fa:93:94:07:63:f3:72:51:73:1a:97:
87:34:96:2d:dd:31:0b:18:9d:b7:88:a9:ba:66:5b:20:ea:43:
59:5d:ac:05:e8:45:40:06:fb:64:88:c0:66:e7:d0:29:90:72:
bb:df:c7:98:2f:72:7e:cc:c4:19:95:f5:d1:b6:64:7c:69:6c:
db:77:07:97:27:5d:19:4b:70:d7:20:25:05:ad:3c:c1:f0:31:
9b:85:e6:d8:45:f4:1c:ab:a3:e9:1e:a4:d3:f4:59:b0:0f:cd:
7f:40:42:5d:96:b4:01:27:ef:45:1a:25:8c:0f:7e:6a:48:05:
d2:28:7c:65:83:c4:c7:49:d2:ca:e6:13:29:f2:7f:4d:0e:cd:
46:bc:30:05:ea:a1:2a:2d:ad:1b:57:97:5e:2d:af:ba:57:a4:
14:b6:b0:24:12:91:54:47:b4:76:8e:ba:06:3e:d7:a0:df:7f:
5f:fa:6b:dd:50:7e:ac:f0:a2:ad:d8:14:6a:c1:df:d8:04:91:
a3:11:ea:0d:07:e6:de:3a:a1:f4:99:33:60:da:11:a5:89:03:
b8:f7:6b:ea:08:a5:54:21:0d:ec:50:f1:93:04:cd:70:8f:74:
05:97:26:df:a5:6a:0e:1e:d0:e4:38:ec:3e:f8:e1:03:96:e6:
ef:a2:62:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:31:41 2025 by rpki-client