Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WRLsqwnhqsle7YGCRPZ4Ik8wLx4.roa
File: WRLsqwnhqsle7YGCRPZ4Ik8wLx4.roa (raw, json)
Hash identifier: 3lpmdnH4m53QgGiGjFXMQ3GRBNctN0shJIw13aIO/x4=
Subject key identifier: 59:12:EC:AB:09:E1:AA:C9:5E:ED:81:82:44:F6:78:22:4F:30:2F:1E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 168C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WRLsqwnhqsle7YGCRPZ4Ik8wLx4.roa
Signing time: Mon 26 Aug 2024 05:22:19 +0000
ROA not before: Mon 26 Aug 2024 05:22:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5772 (0x168c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5912ECAB09E1AAC95EED818244F678224F302F1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8e:e9:b1:6f:22:de:7b:6a:84:3b:95:b3:03:
9f:08:03:16:38:43:68:21:4a:0b:1b:a0:2e:3a:14:
12:07:17:0b:7e:35:c2:2e:ab:00:e2:aa:f3:44:25:
9c:c6:5c:74:a7:b4:d5:a8:ff:82:42:60:86:d0:79:
79:75:b9:5f:22:61:87:8e:d9:15:3f:1f:fb:72:5c:
e1:a7:9e:5f:ce:0f:b9:b0:58:92:7a:1d:ba:49:bb:
0d:0f:0f:95:27:63:5b:a4:75:df:ea:fe:ef:e8:68:
dc:a8:45:f7:64:03:71:5d:2a:87:86:71:e6:f0:f0:
8d:01:d5:7f:3f:3f:73:05:46:6e:c4:b5:3d:bb:a2:
0e:d1:97:3b:69:2e:2a:51:c1:03:76:7f:f9:f6:d5:
ac:c6:9e:60:9e:cf:2a:11:14:ea:3c:d5:97:31:62:
ae:5b:3e:9e:91:b1:7a:e4:4c:6e:6c:76:99:4c:00:
a7:8b:10:5c:37:07:00:66:4a:2f:67:cf:ab:99:33:
6d:27:ee:a7:b9:85:4c:c9:e4:e0:7b:8c:8d:23:02:
bd:c2:04:6f:df:c9:90:6d:bf:1d:aa:12:0e:dc:b2:
0e:3b:8d:5d:b4:90:50:88:be:cf:f2:61:a0:61:5c:
4a:63:4f:f9:59:a8:9f:77:e8:5c:e6:c8:20:fd:89:
62:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:12:EC:AB:09:E1:AA:C9:5E:ED:81:82:44:F6:78:22:4F:30:2F:1E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WRLsqwnhqsle7YGCRPZ4Ik8wLx4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:b0:b5:53:9a:43:79:f6:3b:88:c4:8d:42:53:65:89:85:28:
0f:6f:b1:b4:7a:d1:7a:4c:c5:f7:8a:2a:bf:94:cf:bf:56:b0:
5e:86:9d:bd:38:b6:44:69:82:d3:13:43:72:65:a0:da:80:e5:
72:94:83:19:95:01:61:e3:df:c0:fc:29:a3:68:69:7b:9f:fe:
d4:5b:c6:63:d1:c7:10:b8:c7:7b:af:c5:b6:0e:cb:1f:c4:60:
91:a0:8b:b6:e5:73:3b:34:18:45:7e:a4:fc:ce:1e:6f:f7:b9:
7b:88:70:a3:f1:62:a5:ba:02:2e:d7:0f:ea:fe:54:03:fa:9e:
22:00:99:e7:32:99:7f:29:7b:67:c6:13:9a:71:e2:4a:3c:78:
2c:0e:a8:74:45:00:50:60:a6:f2:cf:70:c3:58:b1:3d:27:2e:
b5:18:6b:b0:16:b0:ef:58:49:61:a2:6a:43:b0:3b:cd:2d:3c:
91:fe:64:bc:4f:e5:db:35:f1:4c:54:8e:2b:08:82:fc:d6:02:
a2:0e:d2:c8:21:05:d4:c1:83:29:4f:37:60:79:b9:6b:fd:52:
ac:aa:49:28:18:25:35:42:6d:c0:69:2a:ce:72:f9:09:c3:9c:
89:4f:6d:41:f3:a2:27:b4:09:1e:df:db:8f:c7:39:1c:d5:5c:
9f:09:4d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:28 2025 by rpki-client