Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4cm_sVUUohGAP2tfVx_BdD5g2Q.roa
File: D4cm_sVUUohGAP2tfVx_BdD5g2Q.roa (raw, json)
Hash identifier: rRzZRWg++mtG6fJDbkUNJQ84MODGVna3XrhDmCxV430=
Subject key identifier: 0F:87:26:FE:C5:54:52:88:46:00:FD:AD:7D:5C:7F:05:D0:F9:83:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1643
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4cm_sVUUohGAP2tfVx_BdD5g2Q.roa
Signing time: Mon 26 Aug 2024 05:21:58 +0000
ROA not before: Mon 26 Aug 2024 05:21:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131586
IP address blocks: 175.183.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5699 (0x1643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:58 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0F8726FEC55452884600FDAD7D5C7F05D0F98364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:f4:f1:f1:7f:5a:18:5b:33:50:c5:08:2d:
be:48:d2:fe:69:68:4c:34:e8:4f:2f:00:1f:be:ef:
b9:5f:76:30:27:60:3b:06:33:09:7d:71:2a:15:ca:
53:66:4d:d8:e0:06:af:ba:43:74:8d:2e:f1:5a:73:
67:03:f4:ff:51:96:41:c4:c4:5a:8e:de:36:07:25:
39:35:55:06:6b:0b:3c:c0:15:5e:ff:b2:3d:52:4f:
fb:ba:5d:18:bf:d9:2e:57:2d:21:9c:e2:48:6f:31:
3c:d3:22:5c:76:a2:24:ef:d9:10:d6:e9:36:c4:a7:
04:3a:ea:ab:9d:38:4d:39:41:cd:d6:a7:b1:09:63:
10:c4:1a:dd:d8:5d:42:41:8b:40:2c:bf:c4:70:10:
36:37:93:54:0d:36:95:21:97:93:5c:22:9d:99:d5:
83:c0:9a:b8:d7:b8:3c:38:eb:d1:4c:6e:2b:f9:74:
c8:19:e7:90:5a:a0:0e:fa:7e:34:7a:6f:c2:6d:af:
7e:c9:2c:cd:c7:a0:1f:bd:71:ff:34:3e:5c:d9:45:
39:0f:47:4f:13:56:4e:41:c4:51:e9:56:1b:3b:99:
5c:cb:27:63:11:b2:04:82:6e:50:98:2f:b2:1e:39:
8b:d8:69:fd:e1:f8:4b:26:32:aa:0f:8b:f3:39:3c:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:87:26:FE:C5:54:52:88:46:00:FD:AD:7D:5C:7F:05:D0:F9:83:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4cm_sVUUohGAP2tfVx_BdD5g2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.136.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:73:9c:91:25:47:48:6a:3c:89:05:e7:04:5c:02:cc:62:39:
0c:41:3b:e1:e5:3c:b1:6f:0f:8d:b9:49:e4:20:e6:f3:2b:2f:
e0:f5:d2:3b:0a:3e:6b:7a:e2:6c:48:2b:27:22:9d:34:4f:b1:
8f:fa:9a:28:5b:bb:91:22:03:c2:bd:94:16:e6:b3:72:83:14:
5d:13:98:ff:b4:ce:be:e6:ef:44:f3:6a:52:fe:0e:93:88:16:
93:a0:8e:0a:5b:77:7e:39:c1:6b:21:a6:d4:8c:d2:9f:06:c8:
2e:59:be:25:7a:03:00:3a:00:e1:6e:1b:30:90:d3:7a:41:cc:
ab:7e:5b:d7:6d:c3:e8:44:1f:76:a7:cd:46:f8:ac:38:32:bc:
ab:31:65:ea:c0:68:62:1f:bf:5f:48:c6:38:a3:ce:e8:ed:e3:
83:3b:65:ba:1d:60:85:d4:45:36:6f:44:32:c7:99:fb:4c:51:
68:8b:78:42:fa:d6:12:98:3c:ce:33:cc:e6:89:ca:93:24:e5:
50:36:45:73:8c:0c:55:3d:f8:54:b4:4c:da:e2:d2:4c:a5:14:
4e:0e:34:46:2a:c3:eb:4b:d7:b6:d3:8f:a2:ea:8f:f5:af:d9:
20:60:6c:88:f8:bc:ca:28:79:96:f6:fd:77:4f:e6:7e:57:3d:
48:cd:1c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:26 2025 by rpki-client