Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PySrRjymHPpodycpV35jWMB51IM.roa
File: PySrRjymHPpodycpV35jWMB51IM.roa (raw, json)
Hash identifier: awXZdjD1osw9EUN1xefPr4Nbdwj7VufF+RjG5Sqt6IQ=
Subject key identifier: 3F:24:AB:46:3C:A6:1C:FA:68:77:27:29:57:7E:63:58:C0:79:D4:83
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 169D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PySrRjymHPpodycpV35jWMB51IM.roa
Signing time: Mon 26 Aug 2024 05:22:23 +0000
ROA not before: Mon 26 Aug 2024 05:22:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 113.196.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5789 (0x169d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3F24AB463CA61CFA68772729577E6358C079D483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:4d:1e:e9:3d:49:06:20:98:21:6a:fb:40:
64:09:d6:45:d7:99:e0:83:3b:da:26:60:06:62:3b:
f7:ef:b6:5e:c9:57:6c:e0:ee:16:21:32:bc:5c:30:
a0:7e:8a:f3:52:db:e2:0d:44:08:f7:62:96:80:9c:
cd:52:12:e3:10:02:0b:f5:3a:e9:13:e3:2d:31:9b:
13:89:1f:71:a4:68:74:bf:83:5c:b6:5b:32:53:f2:
a3:01:f4:7f:e0:07:6d:c5:88:1b:81:e5:17:b8:0c:
ac:e0:9d:63:a0:cf:a9:1a:90:c8:a1:03:0f:14:93:
18:9a:77:04:45:9c:4f:c6:cb:8c:56:97:95:65:be:
c8:44:e9:a4:7b:0a:b3:fb:5c:97:ed:2a:a5:d2:35:
39:ff:fc:88:e7:07:71:24:60:e8:20:11:20:88:16:
09:0e:51:21:6b:5e:0d:b7:1b:58:cf:70:af:2a:6c:
b0:d1:cb:0d:ad:92:93:39:bc:49:4a:0b:22:b4:4f:
e4:de:72:af:79:45:af:55:85:1a:a3:a2:13:d9:a2:
4e:61:45:fc:50:f7:8e:fd:ad:00:36:8c:1c:0c:e0:
18:9e:54:72:84:50:81:0a:8e:26:86:a2:0c:68:7a:
48:b5:55:87:5c:58:05:03:60:a0:64:a6:6c:59:8d:
07:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:24:AB:46:3C:A6:1C:FA:68:77:27:29:57:7E:63:58:C0:79:D4:83
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PySrRjymHPpodycpV35jWMB51IM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.128.0/17
Signature Algorithm: sha256WithRSAEncryption
18:b9:a4:c4:58:50:e9:ed:bb:26:54:95:64:52:d4:e4:d0:92:
e4:42:d6:6f:25:31:77:85:9c:87:a3:19:6d:2b:b6:51:6d:4b:
a6:08:ab:b3:4c:e6:35:d4:2c:a9:da:d1:ab:fe:88:28:1b:a1:
55:dd:45:f4:7c:2c:01:28:6e:d5:66:1e:c2:57:f8:61:76:23:
31:7c:2b:8c:07:b5:e8:12:24:8c:e9:2a:42:72:96:28:0e:df:
8b:24:6e:17:46:36:dd:4e:e7:e2:f8:c2:b0:52:01:84:6d:de:
68:40:b3:8c:43:e8:da:bc:33:f3:b9:c7:09:3b:a1:51:86:d3:
37:4b:f0:a0:d6:8c:01:23:b1:7c:39:b6:40:4b:22:6f:6e:65:
c3:59:78:74:d3:2c:bc:6b:86:62:5e:1d:e7:09:14:82:d8:55:
fd:bd:67:be:d4:81:38:5b:1a:46:0a:11:ee:3f:f9:29:bc:55:
77:c5:a2:0c:89:3c:8a:08:fe:81:f5:86:08:a4:8b:81:24:c8:
97:f2:7d:08:cf:b8:f8:b3:34:85:56:d8:51:64:e8:0c:e2:45:
c5:72:ab:2b:fa:81:8d:4c:cb:b3:1b:1f:43:d5:9e:49:63:df:
df:6f:50:9f:2f:3a:38:be:5e:32:a4:bf:dd:dc:fd:3d:a4:a3:
5e:e6:d3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:48 2025 by rpki-client