Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PPuyKVuXeEngYx3LOnFvtIqL7Bs.roa
File: PPuyKVuXeEngYx3LOnFvtIqL7Bs.roa (raw, json)
Hash identifier: afqrTsHWPjDKTnGrotT/hR3vfdxU8TRUrRnNccNFXAs=
Subject key identifier: 3C:FB:B2:29:5B:97:78:49:E0:63:1D:CB:3A:71:6F:B4:8A:8B:EC:1B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16D7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PPuyKVuXeEngYx3LOnFvtIqL7Bs.roa
Signing time: Mon 26 Aug 2024 05:22:41 +0000
ROA not before: Mon 26 Aug 2024 05:22:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 211.74.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5847 (0x16d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3CFBB2295B977849E0631DCB3A716FB48A8BEC1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8c:33:9b:e6:94:00:a5:da:0c:cd:88:3d:60:
29:75:a5:9e:4c:4c:35:6f:02:96:05:6e:cb:7a:12:
87:0f:5a:87:be:44:7b:bc:ac:18:bb:16:99:b8:b3:
28:a7:af:2f:3d:9b:a8:56:21:bd:1f:c7:e7:f0:6b:
8f:92:bc:10:92:3d:60:85:b3:4f:38:4e:26:a5:42:
d4:f2:1a:2f:79:0b:cb:f7:fc:a3:3d:6a:ce:e4:d7:
54:26:02:2c:4e:b3:9f:fd:17:df:76:f3:a7:03:f7:
b8:c6:78:f9:28:b5:ac:1e:9a:87:b9:3b:d3:a1:3e:
05:40:b5:d2:22:96:5b:66:1a:b8:40:ca:d6:20:2d:
40:18:62:2e:a4:65:78:37:d1:fe:fc:24:16:aa:09:
1c:17:b7:91:e1:d5:88:98:a7:36:86:ff:f1:fa:82:
18:ab:77:39:18:9b:06:9e:85:2c:8f:f5:f2:af:ec:
5e:17:7a:fa:6e:6b:35:8f:02:9c:20:b9:ed:57:5e:
e9:1b:c0:15:3d:c0:73:52:f1:99:24:1e:ef:d7:5d:
08:e0:b7:db:e6:a1:6a:cd:07:52:5c:93:16:13:b4:
42:e4:81:02:b2:7d:00:0e:b0:8a:18:0f:5b:88:22:
7f:da:5a:7c:4e:ce:ad:3f:b3:7c:f1:1d:56:32:f3:
0f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FB:B2:29:5B:97:78:49:E0:63:1D:CB:3A:71:6F:B4:8A:8B:EC:1B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PPuyKVuXeEngYx3LOnFvtIqL7Bs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:da:f0:ef:36:41:f2:7a:de:a5:84:8b:6b:ce:7c:39:8b:1a:
c8:4b:cc:94:01:14:95:30:f2:77:c7:61:13:9d:cd:9d:2f:85:
bb:87:c8:55:78:9e:94:2e:07:23:bb:91:97:10:50:13:97:e0:
d5:e6:ef:59:30:28:71:dd:78:b6:10:82:e6:0c:bb:72:19:c3:
31:79:89:de:4a:e4:f8:79:09:73:3f:67:9b:5a:a8:eb:6a:76:
07:9e:99:95:a4:ef:4a:31:59:d5:de:34:df:fa:cd:88:01:36:
33:a2:dc:ff:ad:be:f8:a2:27:38:74:49:6b:0d:e3:d0:b7:8e:
06:55:06:cb:90:15:91:fc:c6:99:88:e1:84:9b:60:0d:6c:af:
e3:76:a7:9e:a0:c3:b4:d4:28:44:16:a5:9d:13:60:bc:3f:35:
65:05:76:ef:6f:78:11:41:76:2c:37:d3:7c:98:ac:51:24:79:
bf:77:63:88:2a:44:c9:4d:57:7a:ec:36:89:65:04:d7:dc:ca:
56:af:28:3c:99:39:4d:72:cf:43:8d:41:1b:09:a3:3c:49:00:
7b:10:93:4b:15:66:01:5f:fe:33:e7:fe:83:46:84:bc:a4:61:
01:23:30:b0:4e:17:72:56:f3:fc:9d:54:98:5f:a5:e9:00:fa:
7e:c8:ed:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:38 2025 by rpki-client