Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Z3BrjeVqQp3JTJl9TNvmxb7fNE.roa
File: 5Z3BrjeVqQp3JTJl9TNvmxb7fNE.roa (raw, json)
Hash identifier: cWssZfkx4ryBpJVfGwS+dz19BEKvHMTNqSvZQf58dGs=
Subject key identifier: E5:9D:C1:AE:37:95:A9:0A:77:25:32:65:F5:33:6F:9B:16:FB:7C:D1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1664
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Z3BrjeVqQp3JTJl9TNvmxb7fNE.roa
Signing time: Mon 26 Aug 2024 05:22:08 +0000
ROA not before: Mon 26 Aug 2024 05:22:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.107.144.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5732 (0x1664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E59DC1AE3795A90A77253265F5336F9B16FB7CD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0b:82:83:9d:fb:14:5e:05:bf:fb:5d:ea:af:
85:ab:b1:2e:d6:a0:44:26:98:78:cf:07:46:7d:fe:
be:bf:5a:07:4b:07:f9:b8:7c:0f:ca:e9:77:c4:08:
d0:7a:fa:39:e7:8a:18:27:d3:5b:8c:25:57:bd:13:
37:8a:d5:a0:39:c1:e7:23:80:23:b2:94:57:58:59:
55:bc:14:8e:67:46:6e:1e:d8:77:ba:0d:39:b9:ad:
7a:10:8b:3d:32:e0:62:40:b2:82:d7:53:1d:c3:fe:
c2:22:51:d2:80:04:41:82:55:f4:a3:17:47:76:47:
a1:d5:77:8a:4e:a1:14:f1:7f:51:34:2d:95:ac:8e:
df:11:54:5b:6c:fa:1b:da:4d:ec:55:96:12:db:26:
b8:77:7a:44:3f:f1:85:42:43:86:c9:53:91:5a:e4:
0e:dd:fe:02:3e:83:94:31:69:69:bb:59:f3:46:55:
23:91:cf:32:ee:1f:50:1f:7d:10:10:46:cd:ea:a8:
ae:59:bd:f1:95:9e:56:7f:0e:bf:aa:5c:2a:b5:79:
4c:89:8a:cb:d2:7c:6c:9b:ee:0a:60:8e:2b:01:66:
06:4b:48:05:06:73:fd:3a:00:57:90:51:68:55:42:
ee:a6:02:b1:95:80:d2:a1:dc:99:90:2e:64:ba:7c:
0e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9D:C1:AE:37:95:A9:0A:77:25:32:65:F5:33:6F:9B:16:FB:7C:D1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Z3BrjeVqQp3JTJl9TNvmxb7fNE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.144.0/21
Signature Algorithm: sha256WithRSAEncryption
8c:86:65:b3:df:2a:c2:49:ee:d8:62:f7:0a:4c:d5:10:25:62:
17:f6:d5:87:0c:8f:a2:37:eb:5c:c5:7b:c0:29:a9:fb:3d:46:
28:64:95:fb:6e:1c:08:30:60:93:5b:4b:87:f9:3a:d1:5a:56:
c6:21:b1:f1:52:4d:51:82:27:c7:c1:c2:89:a7:e1:be:66:a8:
b2:5a:dc:08:8c:18:1c:16:fb:3b:b7:3e:2e:04:a1:18:b3:b0:
cf:bf:92:26:a1:4d:d2:59:41:ae:14:4f:96:9a:a5:4e:a9:0b:
84:2d:5a:5f:80:fa:58:be:74:be:10:b3:ef:72:6a:7f:4d:3b:
d5:e3:d3:9e:2f:0e:9d:9b:8e:62:95:10:ae:fe:74:fd:e2:24:
a7:92:56:02:90:d9:1e:2f:97:d1:bf:e8:37:75:8b:03:8e:01:
a9:52:18:d5:a1:e5:74:6d:cb:d7:1d:a7:b9:f8:fb:b4:7b:15:
80:db:68:8b:7f:ff:2f:14:e4:cf:94:a1:89:47:cc:dd:49:f3:
fd:66:0a:b6:b3:80:8c:4c:fc:e0:2c:a6:39:51:c1:f0:9e:b3:
95:11:d0:51:60:36:4f:4f:db:34:7c:58:50:b7:60:5c:0e:24:
49:db:03:6f:3f:fc:dc:0d:eb:38:93:48:36:89:4e:b0:81:5c:
82:43:4a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:01 2025 by rpki-client