Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjeQkiVBlHZzWmRcCaun7o6hhA8.roa
File: GjeQkiVBlHZzWmRcCaun7o6hhA8.roa (raw, json)
Hash identifier: V+YnqOlZhSGHd5B4H9nvkdOxvA3etbThSaO+LgGY1m4=
Subject key identifier: 1A:37:90:92:25:41:94:76:73:5A:64:5C:09:AB:A7:EE:8E:A1:84:0F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1617
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjeQkiVBlHZzWmRcCaun7o6hhA8.roa
Signing time: Mon 26 Aug 2024 05:21:45 +0000
ROA not before: Mon 26 Aug 2024 05:21:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 220.229.66.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5655 (0x1617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1A37909225419476735A645C09ABA7EE8EA1840F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:31:f5:79:d9:84:57:76:61:4c:c1:b6:be:59:
3d:b0:21:46:75:6c:11:59:b8:88:41:d0:db:e8:9c:
e3:37:6c:99:09:a2:32:cb:4c:ae:82:e2:49:a5:ed:
1f:ee:7d:bc:61:35:11:ab:b8:d9:a1:23:cc:39:5a:
75:b6:45:e6:94:46:9e:8f:50:d0:db:ac:6d:43:57:
1e:b0:32:c5:77:b8:2c:25:78:2f:50:88:a9:13:07:
ab:67:e8:57:ea:c1:c0:a0:a9:b4:9e:c6:8a:f7:69:
62:28:8e:2d:7b:ca:2e:54:20:ae:34:14:b6:f7:16:
3b:23:06:f7:6a:46:c4:de:a1:e1:66:cc:0f:0d:b0:
ed:44:32:f3:2b:ce:9b:4e:bf:d1:1d:1a:47:45:47:
e3:f9:5b:98:4f:ca:6b:71:4b:b6:0a:35:7c:f6:4b:
d4:24:e5:14:07:d2:f8:a3:35:25:c7:3c:6a:44:12:
04:69:78:00:65:f6:26:79:8e:5c:4a:2d:02:e6:0c:
7b:3e:71:39:c1:85:f9:dd:28:fd:87:a8:b6:e7:c9:
fa:46:fc:ac:cd:9e:95:26:de:80:50:e8:f2:f0:f2:
15:b7:68:73:e8:67:83:46:01:1c:54:a5:45:46:98:
43:60:55:b4:c9:09:3f:39:4a:c5:26:a0:fc:81:1f:
10:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:37:90:92:25:41:94:76:73:5A:64:5C:09:AB:A7:EE:8E:A1:84:0F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjeQkiVBlHZzWmRcCaun7o6hhA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.66.0/23
Signature Algorithm: sha256WithRSAEncryption
60:04:53:e3:23:f4:59:80:bc:e9:7c:f2:f0:c2:cf:98:b5:bc:
64:6f:10:fb:d9:8a:9d:03:ca:0d:7d:23:ef:9f:18:e2:cc:d1:
42:be:8a:05:21:f1:4d:13:52:cb:89:34:b8:d8:92:09:a3:10:
8e:c3:16:a6:f4:b8:72:ce:fe:5c:75:5c:96:3e:5c:48:55:38:
d7:b3:4b:e2:84:60:de:a5:46:ef:21:a1:04:b6:d7:69:a7:ea:
be:73:57:a9:36:c6:d0:04:b5:54:fd:f7:5c:43:0c:c6:c2:7d:
f3:37:6d:72:59:c1:22:59:13:d2:3b:4e:5c:3c:a6:d8:6a:d2:
1b:2a:b2:98:f0:b7:a3:8b:57:4c:00:41:85:c4:02:83:8b:11:
dd:4f:df:e6:7e:17:ec:44:19:18:6f:b9:de:c4:f1:ba:48:6e:
15:6b:de:9b:7b:98:5e:b3:87:13:17:a4:c2:2f:fa:86:65:28:
d4:da:b0:66:5a:08:80:2b:6b:a2:23:48:3c:63:a8:8a:f6:a5:
40:0e:4f:12:4e:4f:19:bc:4c:a3:ba:67:e8:e5:45:8e:14:ec:
a9:31:7f:40:f1:28:81:b6:46:ff:81:2f:cc:42:d9:ba:59:18:
30:c0:b9:25:ab:af:1e:86:d5:36:a1:1c:5a:6b:3d:95:bf:41:
65:de:2a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:56 2025 by rpki-client