Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FxgYUdGX3TumTjKJEOMLobg4lv0.roa
File: FxgYUdGX3TumTjKJEOMLobg4lv0.roa (raw, json)
Hash identifier: NdDJFc5FVvgDHE83T/pxLYTpmD5q/o1wWqVYcrpTlKE=
Subject key identifier: 17:18:18:51:D1:97:DD:3B:A6:4E:32:89:10:E3:0B:A1:B8:38:96:FD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 170D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FxgYUdGX3TumTjKJEOMLobg4lv0.roa
Signing time: Mon 23 Sep 2024 09:51:15 +0000
ROA not before: Mon 23 Sep 2024 09:51:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 113.196.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5901 (0x170d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 23 09:51:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=17181851D197DD3BA64E328910E30BA1B83896FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:f2:c7:58:a3:55:8b:fb:40:31:3e:e1:17:
6e:f7:68:eb:26:5e:e9:0d:e9:74:04:d8:cb:61:15:
c7:bb:18:66:0c:08:bb:f4:4b:ee:04:a0:33:e6:6d:
24:85:ae:d8:d5:02:ea:a5:69:62:a2:28:96:d8:a6:
f0:31:54:83:67:6b:23:f5:34:0f:f2:83:ef:ea:cb:
10:da:a5:bb:81:97:ed:33:11:a5:28:13:e9:d4:46:
e0:6d:dd:6b:c2:6a:aa:71:b2:54:1e:6b:a3:c5:9c:
aa:f1:a4:d8:a2:b9:f7:c6:5d:b6:9a:5c:1e:d8:5a:
fc:6b:97:4d:ec:2d:fb:bd:4f:3e:a8:e4:80:30:fa:
25:5e:b3:ba:48:9a:22:c7:45:3e:bc:bc:82:02:fb:
b6:51:01:01:c3:d9:52:88:36:b7:83:37:6c:fd:25:
b9:2f:c4:c9:80:7b:9a:fa:9b:4a:3d:0a:39:dd:38:
b7:f2:cb:f4:b6:62:86:59:b0:13:7d:8d:0c:78:7e:
1e:8c:14:0d:2a:a2:13:22:13:19:52:b7:ff:b4:27:
5b:68:ad:55:e9:f2:0d:28:ab:ab:a1:7d:4d:52:84:
aa:97:fb:be:3c:cc:ff:fb:7b:a1:83:69:2a:9f:72:
09:ee:0b:86:40:a9:f1:ed:e0:2e:97:3a:0a:5c:ff:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:18:18:51:D1:97:DD:3B:A6:4E:32:89:10:E3:0B:A1:B8:38:96:FD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FxgYUdGX3TumTjKJEOMLobg4lv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.192.0/19
Signature Algorithm: sha256WithRSAEncryption
c4:e6:13:2d:90:1a:91:fc:cc:4d:cf:72:08:85:07:68:22:6c:
e8:49:cb:42:1b:9c:a0:27:17:ec:0b:6e:ea:7a:ea:c4:e7:90:
ea:40:90:1b:40:1e:fb:a6:11:3c:16:08:56:9c:be:10:39:97:
7a:68:d1:4c:d1:f6:b6:1d:cf:46:f8:7f:d8:d1:19:03:83:6e:
09:e3:4e:d3:85:e7:19:ba:96:6e:e6:18:06:f2:ac:9b:73:cf:
20:fc:2a:2d:48:ed:de:25:81:f9:0d:d3:4c:4b:e2:bc:88:e5:
8e:b8:f1:74:f0:f9:94:f9:cd:4c:c9:94:17:62:cf:eb:73:41:
42:bf:fb:80:1c:44:6d:52:0f:48:a2:65:e9:86:ab:3c:ae:e6:
8e:21:b1:8d:a0:06:bb:3f:e6:25:71:f2:be:55:d9:66:89:36:
4f:01:b4:e8:53:b8:7d:3f:76:e5:4c:a8:e1:30:db:08:8a:f2:
37:2e:c4:31:89:80:8b:b7:4e:3f:18:1e:46:b3:21:85:fd:92:
ca:60:ef:08:0b:d8:87:4b:12:83:26:5a:3e:ba:a6:38:82:c7:
40:be:73:e5:09:89:ac:2f:50:8f:00:5b:db:63:bf:3c:e1:c2:
e5:7d:da:bf:fc:52:42:a2:a9:7b:11:01:cf:51:ae:ec:e7:6a:
3a:61:ec:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:24 2025 by rpki-client